30 Nov 2017
Continuous Adaptive Risk and Trust Assessment (CARTA)
According to Gartner, Continuous Adaptive Risk and Trust Assessment (CARTA) will be one of the top strategic technology trends for 2018 and beyond. CARTA is an adaptive security approach that will help organizations to overcome the barrier between application teams and security teams. In a world where hackers remain a huge threat to businesses, this approach will provide enterprises with much-needed proficiency in risk management.
With the CARTA approach, we will see less of firewalls in businesses as software developers will work with security teams to incorporate multiple security testing points into DevOps. This trend is known as DevSecOps. Security in applications will start early in the development stage as teams will identify threats that face an organization and eliminate them before releasing the applications. With this approach, development teams will balance the need for security with the need for speed.
CARTA relies heavily on data analytics. After deployment of technologies, for example, machine learning and anomaly detection will help organizations to identify the threats that bypass their prevention systems. Analytics will also facilitate faster detection and automated response to security risks hence enterprises will spend less money and time responding to security breaches.
Risk assessment and management with the CARTA approach will not focus on a single enterprise, but businesses will be able to assess threats to their ecosystems. This means that organizations can continuously monitor the security of their partners' enterprises, digital brand reputation, control, and infrastructure, and if one of the companies is a threat, they can remove it from the ecosystem.
Lastly, the CARTA approach will be vital to enterprises planning to acquire new technologies as it will help them to evaluate vendors for compliance. Businesses can, therefore, view the CARTA approach as a strategic tool in their organizational IT risk management.
To learn more about cyber security, please contact our team today.