2022 Cybersecurity Trends – Cyber Work Podcast Interview
In January 2022, the Kudelski Security CEO was interviewed by Infosec’s Chris Sienko, on the top risk and cybersecurity trends for 2022. The podcast can be accessed here.
The more things change; the more they stay the same, right? With cybersecurity trends, you wouldn’t be far off from the truth. Every year opinion leaders outline the main cybersecurity trends to watch, and often enough, the only substantial difference in content is the publication date.
That said, nothing stays exactly the same. What was once an emerging trend eventually becomes a widely accepted norm. What the “cybersecurity trends you need to know about” become “cybersecurity trends you need to take action on.”
In this podcast, former Kudelski Security CEO Andrew Howard, discusses some of the biggest cybersecurity trends in 2022. He outlines how the theme or practice in question has evolved, what the current state of play is, and what reflection or action security leaders need to take. The six cybersecurity predictions include:
- It’s time to pay attention to quantum computing.
- Confidence in the safety and longevity of encrypted data is waning.
- Ransomware will remain the threat of choice for attackers.
- The supply chain will be the new frontier for cybersecurity.
- Hybrid work is widening the employer-employee trust gap.
- While still recommended, cyber insurance is not a panacea.
In addition to these predictions, Andrew covers President Biden’s cybersecurity directive for federal agencies to patch known vulnerabilities as well as his three cybersecurity wishes, and the top cybersecurity skills students should be learning. The interview breaks down largely as follows:
- 0:00 – Andrew Howard talks about his own experience getting into cybersecurity.
- 4:00 – How has cloud security evolved over the past few years? By now most everyone is in the cloud to some extent, and most are using hybrid approaches whether they know it or not.
- 8:20 – Quantum computing is the next cybersecurity innovation on the horizon. And regulated industries have begun to take note due to the challenge of securing sensitive data using current algorithms in the future.
- 10:54 – Ransomware continues to be the tool of choice for nefarious actors to monetize threats. Andrew offers up practical ways to address ransomware challenges.
- 12:57 – Cybersecurity supply chain issues are two-fold. Operational technology environments will have to catch up to the enterprise in terms of security, especially as we see attackers moving up the supply chain, attacking their target’s third-party vendors to gain access to an environment. This will be the new frontier for cybersecurity.
- 16:18 – How has the hybrid work environment impacted security? It may be creating an employee-employer trust deficit that will require closer attention to access control and insider threats.
- 18:42 – 2021 was the year of cyber insurance. But is it all it’s cracked up to be? Maybe not if providers begin excluding things like ransomware from coverage in the fine print.
- 20:35 – The Department of Defense released a directive to close security gaps in the government networks and systems in the next six months. How much impact will it have?
- 22:15 – The host waves a magic wand, and Andrew gets to change three things in cybersecurity. He would: resolve the security protocols in the Internet earlier, fix authentication behind email, and reduce reliance on security awareness and training.
- 28:10 – Andrew offers advice to 2022 cybersecurity students, including the top skills to learn for a great cybersecurity career: problem solving skills, data analytics skills, scripting automation programming skills.
- 30:58 – Andrew offers a peek into what’s driving the interest in Blockchain security heading into 2022.