Pack analyst btn         PAC        
 
Home » Blog » Cybersecurity mesh – the next big thing for distributed organizations?
Wolfgang Schwab

by Wolfgang Schwab

22 May 2023

tagsTags

Cybersecurity mesh – the next big thing for distributed organizations?

Cybersecurity is increasingly complex while headcounts and budgets are limited. Recent developments such as work from anywhere (but the office) – boosted by Covid-19 – and hybrid multi-cloud architectures require new cybersecurity approaches and architectures.

What is a cybersecurity mesh?

The most common definition of a security mesh currently is as follows: a composable and scalable approach to extending security controls, even to widely distributed assets. Its flexibility is especially suitable for increasingly modular models that are in line with hybrid multi-cloud architectures. It enables a more composable, flexible, and resilient security ecosystem. Rather than each security tool running in a silo, a cybersecurity mesh allows tools to interoperate through several supportive layers, such as consolidated policy management, security intelligence, and identity fabric. In other words, the traditional siloed approach will be broken up, different security solutions will share information, and management will be centralized.

What’s new?

Security meshes are not a new security solution. They are an architectural overlay to existing security solutions, designed to:

  • create a more dynamic environment for security across the network by allowing individual security services to communicate and integrate;
  • provide a more scalable and flexible security response, making an organization’s security posture more agile;
  • improve the defense posture by facilitating collaboration between analytical and integrated security solutions;
  • create an environment where cybersecurity technology can be easily deployed and maintained.

The four layers of a cybersecurity mesh

  1. Security analytics and intelligence – Centralized security analytics and intelligence leads enable the majority of data to be collected, consolidated, and analyzed in a central location in real time. This improves risk analysis capabilities, threat response times, and mitigation of attacks.
  2. Identity and access management fabric – This provides capabilities such as directory services, adaptive access, decentralized identity management, identity proofing, and entitlement management.
  3. Centralized posture and policy management – This translates central policy into the native configuration models of individual security tools and provides dynamic runtime authorization services. It allows IT teams to more effectively identify compliance risks and misconfiguration issues.
  4. Dashboards – They offer an aggregated view of the security ecosystem, enabling security teams to respond faster to security events.

Recommendations

A successful cybersecurity mesh strategy needs to consider both network operations and cybersecurity. The core building blocks of a mesh architecture are ZTNA, adaptable cloud security, and open architectures. The openness of the architecture is the key to preventing vendor lock-in. When starting to think about adopting a mesh architecture, users need to select the mesh vendor carefully:

  1. The more tools you already use from a specific vendor, the easier it will be to integrate them into the mesh.
  2. Make sure the mesh vendor has APIs and interfaces for all infrastructures, security tools, and applications to be used in the foreseeable future.
  3. Make sure there are ways to implement APIs that might be needed in the future.

If you want to share your feedback or personal experience, please leave a comment or drop me an e-mail.

Latest Blog Posts

Le secteur industriel pourrait connaître une légère embellie en 2025

Malgré une dynamique de réindustrialisation maintenue en France en 2023, certains secteurs ont renoué avec la désindustrialisation en 2024. Elle est en partie due à la crise économique et aux tensions géopolitiques mondiales, qui ont entraîné une explosion des coûts de l’énergie en 2022/2023 avec des impacts en 2024. Deux secteurs ont ...

Event Date : January 31, 2025

Read more

Navigate the Agentic AI maze by making customers - not technology - the focal point of discussing adopting innovation

How should organizations think about adopting innovation in the age of the feeding frenzy around AI? Finding their bearings on adopting innovations such as Generative and Agentic AI is immensely challenging for organizations.

Event Date : January 31, 2025

Read more

CGI to swoop for UK apps services specialist BJSS

CGI has unveiled plans to acquire BJSS, an applications services specialist based in the UK with more than 2,400 employees. The share purchase transaction is expected to close in February, while the value of the deal has not been disclosed. PAC has followed BJSS’ progress closely for a number of years. It burst onto the scene as one of the ...

Event Date : January 29, 2025

Read more

Strengthening the Digital Fortress: Cognizant's Cybersecurity Practice Overview

In today's rapidly evolving digital landscape, cybersecurity is no longer just a technical requirement—it's a cornerstone of business resilience and credibility. Cognizant's Cybersecurity Practice, built on the promise of "Cyber Excellence & Risk Resilience Assured," provides a robust framework to address the complexities of modern cyber ...

Event Date : January 29, 2025

Read more

PAC RADAR series on AI-related service: what service providers in Europe can do for AI and GenAI projects

PAC launched its INNOVATION RADAR series on AI-related services to gain a clearer picture of IT service providers' portfolios in Europe, France, and Germany and the current project landscape. We conducted in-depth interviews with 25 providers and gathered detailed information on their AI and GenAI-related service portfolios and capabilities, ...

Event Date : January 16, 2025

Read more

Share via ...