In the ever-evolving landscape of technology, artificial intelligence (AI) automation is becoming an increasingly pivotal element for businesses. As organisations prepare for significant advancements in the coming years, six notable trends are emerging that are set to reshape businesses' approaches to security, compliance, and operational resilience. This insight has been provided by Pierre-Martin Tardif, a member of the ISACA Emerging Trends Working Group and an experienced professional in IT and cyber security.
One of the foremost trends involves preparing for post-quantum cryptographic migration. This entails raising awareness among top management to allocate sufficient resources for the transition. As many businesses rely heavily on cryptography across various platforms, there is a pressing need to identify its usage within organisations—covering areas such as libraries, Internet of Things (IoT) devices, communication protocols, and database systems. Tardif noted the importance of prioritising critical systems during this transition. He suggested that a potential strategy could involve using hybrid protocols which blend classical and post-quantum cryptography, enabling organisations to migrate at a gradual pace.
The finalisation of operational technologies (OT) oversight is another critical focus area. Tardif highlights that it is essential to enhance OT's cyber resilience and integrate these technologies into current cyber security operations. He observed a long-standing convergence in this domain, which has been ongoing for over a decade. Enabling AI to monitor these systems for unusual behaviours could significantly bolster security efforts, especially given that many legacy systems may lack the capabilities to collect definitive security data. Tardif recommends deploying an intermediate security framework as a possible solution to address this gap.
The article also stresses the need to enhance foundational cyber security practices. This includes effective identity management, network micro-segmentation, and automated threat responses while supporting a zero-trust architecture. Key elements such as robust identity and access management systems that enforce principles like least privilege and multi-factor authentication have been highlighted as essential to creating a dynamic and transparent access management environment.
As AI becomes more integrated within organisational frameworks, Tardif points out the necessity of learning how to conduct cyber security effectively for artificial intelligence pipelines (AIOps). At the same time, constructing a solid business case for AI-based cyber security innovations, particularly in the realm of zero-day attack detection, is becoming increasingly important. Given the rapidly evolving nature of cyber threats, the establishment of international and domestic regulations governing AI’s compliance and resilience will soon take centre stage.
Increasing regulatory requirements are impacting how businesses maintain global compliance, especially regarding privacy and critical infrastructure. With regulations such as the European Union's GDPR and California's CCPA outlining strict guidelines, organisations must contextualise these legal frameworks within their security protocols. Tardif stressed that this integration is essential for aligning with requirements set forth by directives like the EU’s Digital Operational Resilience Act (DORA), which focuses on the financial industry.
Finally, Tardif emphasises the significance of collaboration with third parties, particularly by identifying their Software Bill of Materials (SBOM) and proactively communicating vulnerabilities throughout the supply chain. As businesses become more interconnected, understanding the dependencies on these external parties will remain a priority for security leaders aiming to enhance their overall security posture.
As organisations reflect on these developments, Tardif's insights provide a glimpse into the future of AI automation and its potential impacts on business practices. Understanding and adapting to these trends will be crucial for establishing resilience in the face of ongoing technological advancements.
Source: Noah Wire Services