2023 Cybersecurity Shifts: Proactive Measures, Supply Chain Focus, and Neurodiversity
In 2023, the cybersecurity landscape is set to shift significantly, with a focus on proactive measures to prevent ransomware attacks rather than penalizing companies that pay ransoms. This comes as CISOs are expected to measure and report their performance in managing business risk and protecting IT assets. Simon Ractliffe, regional vice president of Qualys for Australia and New Zealand, predicts that German organizations, including financial institutions, critical infrastructure operators, and healthcare providers, will comply with regulations against ransom payments.
To tackle the growing threat of ransomware, enterprises are urged to take a proactive role in reducing their supply chain risk. This involves supporting suppliers' security posture to create a robust defence against cyber attacks.
Embracing neurodiversity in organizations can also help lessen the skills gap crisis in cybersecurity. Managers should be trained to understand and support neurodivergent team members in technical roles, as they often bring unique strengths and perspectives to the field.
More companies are expected to adopt software bill of materials to understand and track their components' vulnerabilities. This will enable them to identify and mitigate potential risks proactively.
However, legislation against ransom payments may drive ransomware breaches further underground, fostering a culture of secrecy. Therefore, the focus should be on mandating measures to prevent attacks rather than penalizing companies that pay ransoms.
In 2023, CISOs will be held more accountable, with performance requirements added into their employment contracts. As German organizations prepare to comply with regulations against ransom payments, the cybersecurity industry is set to evolve, with a greater emphasis on proactive measures, supply chain risk reduction, and embracing neurodiversity.
