Bob Bailkoski, Global Chief Executive Officer of Logicalis Group, International IT Solutions and Managed Services Provider.
Since the pandemic, flexible working has become the new norm—whether fully remote or using a hybrid model, the majority of global workers today expect some degree of flexibility. That has meant a significant shift in infrastructure and new security considerations for many organizations.
Today’s employees have access to multiple devices and operating systems, not all of which are necessarily in the control of organizations. My company’s recent global CIO survey found that “of the 83% of CIOs who experienced cyberattacks in the last 12 months, only 43% feel prepared for another breach.” AI is reshaping cybersecurity, both as tools for defenders and as weapons for attackers, and that is only exacerbated by an increasingly remote workforce. That is why it has become increasingly important for CIOs and IT leaders to strike the balance in managing this area.
Benefits And Challenges Of The AI Era
The transformative potential of AI is enormous, particularly with the advancements in quantum computing and generative pre-trained transformers (GPTs) and their potential to boost business efficiencies through automation. The technologies are also fast becoming crucial tools for CIOs and IT leaders to bolster their security with the ability to identify and triage cyber threats.
AI can scan systems and codebases to identify potential vulnerabilities, and generative AI can predict and design potential exploits, even for zero-day vulnerabilities where previously hackers were able to exploit security flaws before developers had a chance to fix them. More importantly, AI offers the benefit of being able to automate specific security responses, such as isolating infected machines or blocking suspicious traffic, which should accelerate reaction times and help businesses contain attacks early.
Still, generative AI introduces new risks for businesses, too. Device security is one of the biggest cyber threats businesses face, particularly as the definition of “workplace” becomes more divergent. A recent World Economic Forum report highlights that advancements in adversarial capabilities, such as convincing phishing emails, tailored social media posts, malware and deepfakes, pose the most significant cyber threats from generative AI. Generative AI may also enable attackers to develop zero-day ransomware, which can cause significant financial and reputational losses for organizations. There is also the risk of employees inadvertently leaking sensitive data when using public GPTs.
At the same time, hybrid and remote working also mean that networks need to be able to support IoT, 5G and edge computing. The infrastructure needed to successfully support remote workforces often means complex hybrid cloud environments also need to be secured. According to the PWC Global Digital Trust Insights Report, the hybrid cloud is the top security concern for nearly half of all organizations.
Steps To Secure Your Workforce
AI is becoming a crucial tool for companies and cybercriminals alike, and risks no longer exist in silos, so it’s important to consider your entire digital footprint to limit business consequences. With “anytime, anywhere” working here to stay, proactive steps need to be taken to protect our workplaces, connectivity and cloud infrastructure. Based on my experience in IT solutions and security, here are a few areas I recommend focusing on:
1. Staying On Top Of Emerging Threats: Cybersecurity threats are not only on the rise, but they are also getting increasingly more sophisticated. To help mitigate the risks these present, ensure that your IT security teams are going through continuous training to stay ahead.
2. Fostering A Culture Of Security: It is not just the tech teams that need to stay up to date on security risks; employees across the whole organization need to be aware of the latest types of threats. With AI enhancing the sophistication of threats such as phishing emails, I recommend implementing companywide training and insights to foster a culture of security at every level, particularly in a hybrid working environment.
3. Preparation, Preparation, Preparation: A key tool in managing the threat of AI is through modeling and simulations. Regularly running simulation tests and tabletop exercises can help your employees put into practice all that they learn through training. It can also help your IT teams catch and fill gaps before a real threat arises.
4. Demonstrating Cyber-Conscious Leadership: To ensure security at every level, lead by example. Make sure you and your leadership team are involved in any digitization projects from the very beginning, and take time to undergo the same general cybersecurity training required of your employees.
5. Finding The Right Security Partner: My company’s survey found that in the past year, there has been a 300% surge in demand globally for AI-ready managed security services to help ensure employees are protected wherever they are in the world. If you don’t currently have the resources or time to create your own cybersecurity team, consider working with a strategic security partner. (Full disclosure: My company offers these services, as do others.) When seeking a security partner, look for one that has a strong track record and can provide the tools and expertise needed to safeguard your organization and integrate security across your existing infrastructure.
When it comes to AI, the opportunities are great—but so, too, is the risk. In order to leverage the benefits while also limiting the risks they pose, it’s important to take an intelligent approach to security. These steps can help leaders ensure that their infrastructure is properly protected, particularly as workforces become increasingly disparate and more and more employees work outside of the “traditional” office environment.
Forbes Business Council is the foremost growth and networking organization for business owners and leaders. Do I qualify?
Read the full article here
