As organisations search to reinforce security and person expertise, passwordless authentication strategies – reminiscent of biometrics, {hardware} tokens, and many others. – will regularly substitute conventional passwords. The shift in direction of passwordless authentication is pushed by the necessity for stronger identification verification, decreased susceptibility to phishing, and improved person comfort. Whereas challenges reminiscent of interoperability and privateness considerations persist, developments in know-how and rising business help are paving the way in which for widespread adoption. Within the close to future, passwordless authentication will turn out to be a foundational ingredient of safe entry methods throughout varied sectors, providing a extra resilient and user-friendly method to identification verification.
Shakthi Priya Kathirvelu – VP and Head of Data Safety and IT (Funding Societies | Modalku Group)
One in all my key targets this 12 months is to take our cybersecurity consciousness programme to the subsequent degree – The ABC Programme, which focuses on Consciousness, Behaviours, and Tradition. Cybersecurity tradition is the shared values, beliefs, and assumptions that affect how individuals assume and behave with regards to cybersecurity. A constructive tradition is non-negotiable and it impacts many areas of cyber threat. It should align with the corporate’s general targets and values to make sure that cybersecurity enhances the corporate’s processes and expectations.
Stephanie Liew – Chief Data Safety Officer of APMEA (British American Tobacco)
Whereas multinational firms have the assets to no less than make an effort to degree the taking part in area with hackers, small- and medium-sized enterprises (SMEs) and people wrestle with an absence of assets and experience – coupled with funds and manpower cuts made at each financial downturn. Because the cybersecurity divide reveals indicators of widening additional with the unstable menace panorama, 2024 can be a 12 months of bridging this divide – each for SMEs in addition to people. I anticipate that it will take form throughout the ecosystem of regulators, enterprises, and know-how suppliers in 11 key areas.
Steven Sim – Head Group Cybersecurity (PSA Worldwide)
1. GenAI is the most important problem for CISOs in 2024. Microsoft and Google are rolling out their enterprise AI options. Use of GenAI may have a big impact on private information privateness and enterprise ethics.
2. Crypto hacks are coming again. We should see the institutional adoption of digital property this 12 months after the SEC’s approval on Bitcoin ETFs. Hackers are incentivised to compromise digital property exchanges and DeFi protocols for the huge financial returns.
3. Geopolitical disputes are disrupting enterprise operations like international provide chains. Cyber wars are all over the place and inflicting billions in monetary losses.
Thomas Kung – Chief Data Safety Officer (Rakkar Digital)
For 2024, my crew/organisation want to:
1. Optimise incident response occasions – by fine-tuning our SIEM (security data and occasion administration) and UBA (person behaviour analytics) techniques. This strategic enhancement is aimed toward swiftly figuring out and mitigating threats, thereby safeguarding our infrastructure extra successfully.
2. Improve information safety and compliance – we’re dedicated to fortifying our information safety measures to not solely meet however exceed governance necessities.
3. Bolster cybersecurity consciousness – reinforcing the significance of cybersecurity inside our company stays a prime precedence, with an goal to empower each worker with the information and instruments wanted to contribute to our collective digital defence.
4. Refine our zero-trust structure.
Tran Phu Nghia – Chief Data Safety Officer (Nova Group)
My prediction or greatest fear is on AI-powered cyber-attacks, which can be one of many key cybersecurity threats in 2024 as cybercriminals leverage available AI and ML know-how to automate assaults and bypass conventional security measures.
My organisation is presently reviewing our company governance and processes earlier than incorporating AI applied sciences into our enterprise and IT surroundings. Concurrently, we’re reviewing our IT security strategic roadmap to see how we will combine superior AI-driven options to reinforce our menace detection and response towards this new pattern.
William Loh – Head of IT Safety, Asia (ING Financial institution)
The maritime business is experiencing a revolution in connectivity, fuelled by the deployment of Starlink the world over’s fleets. The once-isolated vessel is now as linked as any enterprise and faces cybersecurity threat with probably real-world penalties. Adequately addressing this threat would require the business to reinforce cybersecurity on board – implementing the identical applied sciences, processes, insurance policies, and coaching which were vital to guard the enterprise.
A second revolution – the popularisation of ChatGPT and different GenAI platforms – provides extra threat to the ever-evolving advance of cyber threats. Rising to satisfy these challenges would require a extra subtle method to cybersecurity, emphasising security automation and AI for menace detection and response.
Xerxes Philip Kiok Kan – Head of Data Safety (CISO) (Anglo-Japanese Ship Administration)
This 12 months, we goal to:
1. Undertake a proactive method to compliance and regulatory requirements together with PCI-DSS (Cost Card Trade Data Safety Normal), ISO 27001 ISMS (Data Safety Administration System), and ISO 27701 PIMS (Privateness Data Administration System).
2. Enhance the cybersecurity tradition inside the organisation.
3. Enhance cybersecurity resilience to make sure enterprise continuity.
4. Collaborate with and contribute to the cybersecurity neighborhood.
5. Purchase extra private, skilled, and management cybersecurity certifications.
6. Modernise the organisation’s cyber and bodily security operations.
7. Implement a strong framework for identification and entry administration by establishing clear insurance policies for person authentication, authorisation, and lifecycle administration.
Yaroth Chhay – Senior Vice President & Head of Data Safety Division, CISO (ACLEDA Financial institution Cambodia)
My prediction for 2024 is a rise in subtle social engineering that makes use of GenAI, resulting in account takeover or credential loss by way of phishing. It is going to be in a position to remove typical indicators of phishing reminiscent of awkward formatting or grammatical errors, making it much more troublesome to detect.
Yohannes Glen Dwipajana – VP, Head of IT Safety (INDODAX Nasional Indonesia)
