This evening, I attended an ISACA Belux Chapter meeting about the following topic:
“One year after: what really happened and what didn’t. What do you expect next year?” (Read the announce).
In December 2007, our local chapter performed an exercise: (try to) define the upcoming security threat for 2008 (meeting notes here). Today, one year later, they came back on the previous conclusi200ons and we made the same exercise! There were nine people, all of them active in IT security but coming from broad horizons (financial sector, audits, lawyer, /consultants) and two ISACA representatives. It was held as an open discussion during three hours.
The presence of a lawyer was very interesting. He gave us nice information about the law (general aspects) and examples (like the terms of use on a website to accept requests of material removal). So, what will be the “hot” security topics for 2009 (almost in Belgium) ?
- Budget costs (is it really a news?) but without affecting the quality of services provided by the security teams;
- Startups life will be difficult: they will be profitable, able to convince new investors, acquired or … shut down;
- PCI effect (Payment Card Industry);
- More compliance, audits and pentests;
- DLP – Data [Loss|Leakage] Prevention
- Mobile security;
- Virtualization security;
- Social networks (like LinkedIn or Facebook);
- The emerging generation or “techno-generation” – our children are born with a mouse and a keyboard!
- Web protection
Back at home now!