In 2023, cyber-attacks are expected to increase, resulting in real-world harm for organisations and individuals alike, with cumulative costs due to exceeding 10 trillion by 2025. Check Point Software Technologies brings 4 CISO perspectives on the future of cybersecurity.
These 4 CISO perspectives are actually based on the cumulative experience of Check Point Software Technologies’ four decorated and distinguished cybersecurity professionals, sharing their cybersecurity knowledge and roadmap.
Jonathan Fischbein, Global CISO of Check Point Software Technologies along with Field CISOs Deryck Mitchelson, Cindi Carter and Pete Nicoletti covering the EMEA and Americas regions for the company have put forth the 4 CISO perspectives on cybersecurity.
CISO Jonathan Fischbein:
“Cybersecurity challenges will get worse in 2023. The good thing is that there are now a multiplicity of solutions that address prominent security challenges, and there are easy-to-use management dashboards available that allow security professionals to decrease complexity. However, the industry as a whole is moving to more consolidated security models, a trend that will continue across the next year…” says Fischbein.
“On a different topic, there is a shortage of skilled person-power in cybersecurity and budgets are not increasing at the speed of attacks. I truly believe that the industry may need to foster high school programs to begin training students in their high-school years. Security teams also need to recruit students early in their university years, placing them in security internships.”
Today, most security practitioners finish university and then start as entry-level employees. However, unfortunately, most organisations want to hire practitioners with 2-4 years of experience. So this is a huge challenge.
“In 2023, we need to develop stronger strategies to cultivate, attract, train and employ the next generation of cybersecurity professionals.”
CISO Deryck Mitchelson:
“In 2023, I predict that we will see the skills shortage driving managed services, rather than in-source. I also believe that we will see bigger asks directed towards vendors when it comes to fully managing the reduction of supply chain risks and vulnerabilities.”
Another prediction for 2023 is that the threat surface will start to recede slightly. Cloud transformation will slow due to cost and complexity; with many firms considering bringing workloads back in-house, or to private data centres, ultimately reducing the overall threat surface.
Further, as businesses look to remove cost and complexity from the entire digital and security stack, consolidation will become a “real” priority.
“Lastly, we will see much more debate around and push for security regulation, especially with critical services as the current carrot and stick approach continues not to work.”
CISO Cindi Carter:
“In 2023, I encourage everyone to do better. Do better as a security leader – do better in helping to socialise cybersecurity within an organisation. Do better in terms of the security team being there to support the organisation.”
A lot of CISOs are rather gun-shy; hesitant to talk to the business about cybersecurity. Do better in trying to foster that human connection. Do better to expand your knowledge base – about solutions and threats alike.
“In 2023, I predict that cybersecurity leaders will rise to the occasion by sharing the knowledge that they have. Someone may be looking to learn what you already know, so share that as a gift.”
CISO Pete Nicoletti:
Supply chain attacks and breaches will continue accelerating: Most companies do not do a good enough job of managing the risk of the components they are using and don’t have good visibility into their SBOM or a complete strategy.
“We are one year closer to quantum encryption rendering all conventional encryption worthless. Unlike the Y2K hype and fizzle, this affects everyone. New encryption algorithms that are quantum-proof need to get attention now.
“Cloud misconfigurations by humans will continue accelerating and the resulting breaches will expose more customer information and cause more disruption.”
In 2023, build end-to-end security in order to secure your entire value chain. Strive for cybersecurity excellence.