Industry executives and experts share their predictions for 2024. Read them in this 16th annual VMblog.com series exclusive.
How 2024 will shape up in cybersecurity
By Jitin
Bhandari, VP, Cloud and Network Services Technology at Nokia
Each passing
year comes with evolution, especially in the world of cybersecurity. New
technologies emerge, threat landscapes shift, and regulations tighten. As we
look to a new year, it becomes imperative for communications service providers
(CSPs) to anticipate their own needs. While there are many challenges and
opportunities within the cybersecurity landscape, organizations will need to
invest in cutting-edge technologies, adapt to new cryptographic standards, and
align with regulatory requirements to be better positioned to navigate this
ever-evolving world.
GenAI -
Driving fundamental changes to the threat landscape
In 2024, we can
expect AI to play an even more significant role in both defending against and
perpetrating cyber threats. Generative AI, or GenAI, has been making waves in
the cybersecurity industry. This technology is reshaping how organizations
detect and respond to threats.
One of the
significant advantages of GenAI is to expedite security incident forensics
which speeds up cyber threat resolution time and quality. It will also help
identify sophisticated attack techniques that traditional security tools might
miss. Additionally, it empowers cybersecurity teams to proactively defend their
networks and streamline their operations. However, it's crucial to recognize
that malicious actors are also harnessing the same technology for multi-stage
attacks which makes it essential for CSPs to establish a zero-trust
architecture resistant to GenAI.
Ransomware
on the rise
Malicious
actors are using more sophisticated and targeted ransomware attacks against the
telecom industry, leveraging zero-day vulnerabilities and the long
cyber-criminal tradition of exploiting weak passwords to gain access to
networks. In a recent GlobalData
survey, more than two-thirds of CSPs cited ransomware as an area that needs
substantial improvement for their security capabilities in 5G. To combat this, CSPs
must implement multi-factor authentication and regularly back up their data to
mitigate the impacts of a successful ransomware attack.
Embracing quantum-safe
technology
By 2024, we
will witness increased use of quantum-resistant encryption methods, which will withstand
attacks from quantum computers and protect the future of our data. With the
rapid advancements in quantum computing, the traditional cryptographic methods
that protect our data are at risk - in particular, data security. CSPs rely
heavily on these algorithms to protect their networks and sensitive data. Not
investing in quantum-resistant encryption methods can impact customers as the
telecom industry will not be able to offer secure digital communications and it
can give hackers an opportunity to break the public-key cryptography that secures
many IT systems today.
Investing in
the research and development of Post-Quantum Cryptography (PQC) is essential in
developing cryptographic algorithms that are believed to be secure against an
attack by a quantum computer. The telecom industry must collaborate closely
with cybersecurity experts and policymakers to establish standards and
practices that protect against quantum threats.
Navigating
the regulatory changes in telecom worldwide
Compliance is a
driving force behind cybersecurity operations, and 2024 will witness a
continued wave of country-specific regulatory changes, adding complexity to the
cybersecurity landscape. New regulations like Europe's Network and Information
Systems Directive 2 (NIS 2), the UK Telecommunications Security Act (TSA), and
other data protection laws are remodeling and strengthening compliance and
reporting requirements. Organizations must adapt to the high expectations for
reporting security incidents to regulators to avoid hefty fines and
reputational damage.
Organizations
that align their cybersecurity practices with emerging regulations gain a
competitive advantage and build trust with customers and partners by
demonstrating a commitment to data protection and privacy.
Looking
ahead
As we set our
sights on 2024, CSPs have a range of strategies available to navigate this dynamic
landscape and be better prepared for the threats of the future. Staying
informed, adopting innovative security approaches, and proactively addressing
these challenges are key. For CSPs who lack in-house resources, collaborating
with a trusted partner can bring valuable support to your security journey.
##
ABOUT THE AUTHOR
Jitin Bhandari is CTO and
Vice President of the Cloud and Network Services (CNS) business group at Nokia.
The CNS portfolio includes software solutions across core networks,
orchestration, assurance, analytics & insights, security, private wireless
(CSP and enterprise) and enabling 4G, 5G and IoT services for mobile, fixed and
cable networks. Jitin leads software technology strategy and disruptive
innovation for the mid & long-term horizon, accelerating transformation of
networks, operations, analytics to cloud native, 5G and beyond. Jitin is known as a communications
visionary with end to end expertise of networks, operations and services with a
unique ability of big picture strategic focus and proven ability to deep dive
and execute. Jitin has 20+ years of experience in the software/IT/telecom
industry and is based out of Austin, TX.