Ensuring endpoint security has always been a key challenge for enterprises. But whereas it was once enough to install antivirus (AV) software across a network and expect a reasonable level of endpoint protection, this is no longer the case. With the proliferation of bring your own device policies in the workplace and the wide variety of smart devices available to end users, not to mention the growth of IoT, there are more endpoints than ever, and endpoint security has never been more under threat. Get the latest from CSO by signing up for our newsletters. Various studies put the number of security breaches originating at endpoints between 70 and 95 per cent.

Every day, it seems, we read headlines about a new data breach or cyberattack. Then we talk about how to improve cybersecurity to prevent similar attacks from happening in the future. Chief among the issues to address is a lack of security personnel to fill vacant positions: How can we improve security if we don't have the people to perform the work? The IoT is imminent – and so are the security challenges it will inevitably bring. Get up to speed on IoT security basics and learn how to devise your own IoT security strategy in our new e-guide.

So what is machine learning? Put simply, it is the science of enabling computers to learn and take action without being explicitly programmed. This is achieved through complex algorithmic models applied to data. From this are derived data-driven predictions or decisions. What has this to do with information security?

In February this year, hackers managed to steal 81 million from the central bank of Bangladesh after exploiting vulnerabilities with a sophisticated malware. In January this year, press reports highlighted how highly destructive malware infected three regional power utility service providers in Ukraine, which led to a power failure. In June last year, CNN reported how hackers successfully managed to ground 1400 passengers, as Poland's national carrier was forced to cancel 20 flights due to an attack on its IT systems. In an age of connected machines, these incidents show how hackers can cause irreparable damage. Despite putting in place the best IT infrastructure, some of the biggest firms have got hacked, as vulnerabilities exist in every enterprise and hackers only need one loophole to sneak in an enterprise and steal data.