This year has brought big news, significant changes and increased awareness of the evolving cyber-threat landscape. From a threat landscape perspective, we have seen some important developments. Let’s start with the stark realities:
- Threat agents have increased sophistication of their attacks and their tools.
- It has become clear that maturity in cyber activities is not a matter of a handful of nation states. Rather, multiple nation states have now developed capabilities that can be used to infiltrate all kinds of targets–both governmental and private–in order to achieve their objectives.
- Cyber-threats have gone mobile; attack patterns and tools that targeted desktops a few years ago, have been migrated to the mobile ecosystem.
- Multiple new digital battlefields have emerged including critical infrastructures, cloud computing, social networks, big data and the internet of things.
The evolution of cyber threats requires a new leadership approach, given that no matter what the security solution is to an existing problem, the problem itself will evolve and the leadership strategy driving the security solution needs to evolve with it. Key first steps include: