Intelligent CISO Issue 57 | Page 19

cyber trends
However , the reality is that millions of cybersecurity positions around the world remain unfilled and there simply aren ’ t enough experts on the global market to fill those gaps , particularly those with a strong background in AI and ML . In the face of a global talent shortage , security leaders should adopt a prevention-first approach to guard against malicious actors . This will become increasingly important as the gap widens between threats faced and the number of security workers available to handle them .
Prepare for more software supply chain attacks
If cybersecurity leaders look back at some of the most prominent supply chain attacks during the last couple of years , then names like SolarWinds , Kaseya and Okta come to mind . Attackers targeting the software supply chain frequently exploit systems and services that are in widescale use within industries and across geographies .
In fact , BlackBerry research revealed the magnitude of software supply chain cybersecurity vulnerabilities in today ’ s organisations – with 80 % IT of decisionmakers stating that their organisation had received notification of attack or vulnerability in its supply chain of software in the last 12 months , with the operating system and web browser creating the biggest impact . Following an attack , respondents reported significant
John McClurg , Senior Vice President and CISO at BlackBerry
operational disruption ( 59 %), data loss ( 58 %) and reputational impact ( 52 %), with nine out of 10 organisations ( 90 %) taking up to a month to recover .
This attack vector typically requires skill and planning to execute , making it well-suited to APT adversaries that www . intelligentciso . com