The impacts of critical security platforms being unsupported and no longer receiving critical security updates present significant risk to the Business Operations whereby new and modified vulnerabilities could be open to exploit without a full Defence in Depth security framework.
New vulnerabilities are no longer occurring solely on on-premise Infrastructure; Businesses need to consider the threats associated with roaming users, Cloud platforms and 3rd Party vectors. This presents the need for a converged and integrated security architecture.
The problems are not just limited to Technical focus; there are challenges to adopting new or refreshed technology whilst trying to balance Cost and Process expectations. This includes Operating Expenditure challenges in the current world of ‘As A Service’ operating models and the need for Businesses to operate more efficiently, often adopting Agile methodologies.