By Members of the Deloitte Cyber Team

In the wake of widespread digital transformation, security will take center stage

Across the globe, ways of life are becoming increasingly more digital. From organizations adopting more efficient processes to end-users purchasing more sophisticated gadgets, technology at large is converging. With this, comes the need for stronger security protocols - especially in the wake of government regulations and standards. Organizations and consumers alike will seek stronger security practices across a variety of environments such as the internet of things (IoT), identity and access management (IAM) and more. 

Mike Wyatt, Principal, Deloitte Cyber

• Cloud Service Provider (CSP) identity services will start to overtake the use of traditional identity management COTS products. We are seeing significant investment by the CSPs to grow the identity management capabilities beyond managing CSP infrastructure services and towards providing core application identity capabilities. As the center of gravity moves from the data center to cloud, the importance and adoption of these services will skyrocket.
• Consumer Identity and Access Management will likely grow at twice the rate of enterprise. Driven by digital transformation initiatives paired with the importance of developing 1-1 relationships between businesses and their customers, CIAM will cement its position in the next wave of identity programs.
  

Sharon Chand, Cyber Talent Leader, Deloitte Cyber

• In the wake of the California Consumer Privacy Act (CCPA), privacy regulation will continue to proliferate across the United States. Other states will follow the lead from California's footsteps and develop their own legislation. Furthermore, organizations will feel additional pressure from consumers who desire transparency and will increasingly make purchasing decisions accordingly. Acting in accordance with pressure from the government and public to prioritize privacy will come essential to organizations' bottom lines.

Sean Peasley, Internet of Things (IoT) Security leader in Cyber Risk Services 

• Without built in security, IoT devices and their users will suffer. In today's age of connectivity, security for IoT devices must be brought to the next level. In 2020, widespread transformation will become a necessity as organizations will need to build security into devices and applications rather than bolting it on to existing technology. Repercussions of not prioritizing this will become dire as connected devices evolve from seemingly trivial tools such as thermostats and refrigerators towards higher stake technology such as autonomous vehicles and more. Without building security into these environments, organizations will put end-users' physical safety, privacy and more at risk.
  

Deborah Golden, US Cyber Risk Services leader

• The issue of cyber trust and ethics will come to the forefront in 2020. With the coming election, while the security of voting machines and social media influence have been leading the coverage, what will come to the forefront this year will be the issues around voter fraud. There are still challenges around falsification of voting. More focus needs to be put on how we make the average person savvy when they go and vote and not be tricked while in the process for registration.

• Policy and governance on election issues will reach a crisis level. 2020 will bring a need for guidance on how to transcend governance across local, state and federal. Even if we collectively lack resources, together, state and local governments can do basic back-up hygiene and extend cyber awareness training, working off of a stronger probability at federal funding. After 9/11, federal governments were funding local governments directly for Homeland Security protections, so maybe this time around, cyber resilient funding could be triggered.

##