The 2025 Cisco Segmentation Report, with 1,000 respondents, was launched final month and has prompted me to suppose extra deeply concerning the evolution of the decades-old cybersecurity idea and the way it continues to adapt to fulfill the wants of contemporary enterprises. I beforehand wrote that whereas 79% of respondents think about segmentation a high precedence, solely 33% implement it totally. The survey outcomes additionally revealed attention-grabbing insights into why segmentation stays a foundational idea.
The evolution of segmentation and the event of various segmentation approaches make the idea ultimate for implementing a proactive strategy to enterprise cybersecurity as we speak. For years, organizations have utilized macro-segmentation to divide networks into smaller sections, which helps restrict the unfold of profitable assaults whereas enhancing total resilience. And now, augmenting macro-segmentation with micro-segmentation implementations permits safety groups to separate environments into separate networks AND isolate particular workloads based mostly on habits or identification. This twin segmentation strategy is well-suited to guard as we speak’s distributed, cloud-first community infrastructure and the functions, knowledge, and customers that depend on these vital networks.
That is the primary a part of a three-part sequence that delves deeper into the survey outcomes and what they reveal concerning the present state of segmentation.
Macro-Segmentation (On It’s Personal) Is Not Sufficient to Meet Right this moment’s Cybersecurity Challenges
Macro-segmentation alone is inadequate as a result of current modifications in fashionable software structure. Trendy functions are now not monolithic, and they’re now not constrained by a subnet or VLAN. In consequence, these functions are decentralized and composed of a number of workloads. This new decentralized structure has boosted software efficiency, scalability, maintainability, and reliability; nonetheless, it has made it difficult to know what’s occurring on the workload degree.
Nonetheless, the shortage of visibility and management on the workload degree makes conventional safety approaches (together with macro-segmentation) difficult. It’s no marvel that cybersecurity groups are struggling to guard as we speak’s extremely distributed, cloud-first digital infrastructures.
Organizations Must Implement Macro-Segmentation and Micro-Segmentation in Tandem
Augmenting macro-segmentation with micro-segmentation implementations allows safety groups to separate IT environments into sections whereas isolating particular person workloads based mostly on their habits or identification. This permits a proactive strategy to cybersecurity, leading to sooner restoration occasions, improved operations, and constant enforcement of segmentation insurance policies.
1. Faster Restoration Occasions
Respondents from organizations which have totally applied each macro- and micro-segmentation report that breach containment and restoration take a mean of 20 days to finish. In distinction, respondents from organizations that haven’t totally applied each macro- and micro-segmentation report that restoration takes them a mean of 29 days.
It is a huge, huge deal. Slicing restoration time by one-third limits the breach’s impression and prevents its future unfold. Simply think about the harm that risk actors can inflict in these further 9 days. The mixture of macro- and micro-segmentation slows down attackers. It additionally supplies defenders with extra visibility and management over particular person workloads, providing insights into the assault chain that allow them to shortly determine which belongings should be quarantined, taken offline, and recovered.
2. An Alternative to Align Groups
Segmentation tasks require coordination throughout a number of groups with a number of layers of duty, necessitating full alignment all through the group. For instance, a improvement group is aware of who created an software, however it might not have visibility into who’s utilizing the appliance or how the appliance is getting used. A failure to coordinate throughout groups can result in over-permissioning—a standard mistake that creates important dangers for organizations.
In response to the survey, organizations (usually) depend on three separate groups for implementing and managing segmentation—IT infrastructure or community (87%), Safety/ SecOps (77%), and DevOps/ Cloud Engineering (71%). The method of implementing each macro- and micro-segmentation can enhance alignment between these groups and remove a lot of the danger related to over-permissioning. Persevering with with our improvement group instance, the drive towards segmentation can deliver the event group nearer to these managing and securing the community by establishing a standard vocabulary and shared aims.
Amongst survey respondents at organizations which have totally applied each macro- and micro-segmentation, 87% report that their groups are totally aligned, in contrast with 52% of these at organizations with out full implementation.
3. Constant Enforcement
In response to the report, two-thirds (63%) of respondents at organizations with full implementation strongly agree that automation is vital to scaling and maturing segmentation tasks, versus 50% with out full implementation of each. Automation allows organizations to scale their segmentation insurance policies throughout your entire group (or not less than the place it is sensible), leading to extra complete and constant enforcement, and finally, stronger safety controls. Organizations that don’t make use of satisfactory automation should manually create and keep insurance policies, which may simply fall behind safety necessities over time.
A Twin Method Allows a Proactive Cybersecurity Technique
The flexibility to implement micro-segmentation at scale at the side of macro-segmentation has turn into foundational to fashionable enterprise safety methods and the zero-trust safety mannequin. This permits organizations to get well extra shortly, higher align their groups, and implement segmentation extra constantly—together, permitting for a proactive strategy to cybersecurity. Though segmentation is an outdated idea (from an IT perspective, after all), it stays a vital element of a proactive enterprise safety strategy—primarily as a result of its adaptation for contemporary environments.
In my subsequent weblog, I’ll define the challenges organizations are going through as we speak when implementing segmentation tasks. Within the meantime, obtain the 2025 Cisco Segmentation Report to higher perceive the state of segmentation as we speak.
We’d love to listen to what you suppose! Ask a query and keep linked with Cisco Safety on social media.
Cisco Safety Social Media
LinkedIn
Fb
Instagram
X
