Industry executives and experts share their predictions for 2025. Read them in this 17th annual VMblog.com series exclusive. By Ganesa Subramanian Vaikuntam, VP & Global Head
- Cybersecurity Business Group at TCS
As next-gen technologies continue to gain momentum across
industries, they also give rise to new and complex security threats. From generative
artificial intelligence (GenAI) and cloud security to supply chains and Zero
Trust, there are several focus areas that will not only shape the increasingly
complex cybersecurity threat landscape. They will also help organizations
prioritize their security investments, prepare for evolving threats, and build
the necessary resilience to operate without a disruption.
Tata Consultancy Services (TCS), a global leader in IT
services, consulting, and business solutions, recently released a 2025
Cybersecurity Outlook. This list of seven technology trends and topics will
undoubtedly shape enterprises in 2025 and beyond:
1. Influence of GenAI in
cybersecurity on the rise
GenAI is transforming
organizational operations but is also being exploited by cybercriminals for
advanced attacks like deepfakes, phishing, data manipulation, and new malware.
In response, organizations must fight fire with fire by deploying GenAI-powered
threat detection and response systems.
2. Cloud security remains
crucial
As cloud computing adoption
continues to accelerate, organizations need to implement strong security
protocols like encryption, access controls, and continuous monitoring.
Maintaining proper cloud configurations is crucial to prevent unauthorized
access and breaches, and those moving to multi-cloud or hybrid environments
will need to adapt their security measures accordingly.
3. Elastic supply chains will be
relevant for operational integrity
In 2025, organizations will need
flexible, resilient supply chains due to changing geopolitics and partner
ecosystems. Leaders must develop proactive strategies to adjust their supply
networks, while protecting sensitive data and maintaining regulatory compliance.
Enhancing supply chain resilience will be increasingly vital for preserving
operational integrity in the face of uncertainty.
4. Emerging business models will
underscore the need to be secure by design
At a time when digital
technologies, IoT capabilities, and advanced connectivity are driving new
business models in EV charging, DERMS, autonomous vehicles, and other connected
factories, organizations must secure their value chains to ensure these businesses
are safe by design. By 2025, the growth of IoT devices will require stronger
device hardening, secure communication channels, and ongoing vulnerability
assessments to maintain momentum in business growth.
5. Cybersecurity Mesh
Architecture will pave the way for Zero Trust security
Organizations are moving from
traditional security models to zero-trust architecture, which requires
continuous authentication and limited access to minimize threats. By 2026, most
large enterprises will adopt zero-trust methods, consolidating security tools
to be more efficient. In order to adapt, organizations must use integrated
platforms for orchestrating and automating cybersecurity while working towards
Cybersecurity Mesh Architecture (CSMA) for dynamic, collaborative, and secure
environments.
6. CSOs will adopt an
‘automation-first' approach to Managed Detection and Response
Modern Managed Detection and
Response (MDR) combines Security Information and Event Management (SIEM),
Security Operation Centers (SOCs), Security Orchestration, Automation and
Response (SOAR), Extended Detection and Response (XDR), threat hunting, threat
intelligence, and various attack simulations. These components must integrate
seamlessly under an "automation-first" approach for strong cyber defense
against new technologies like Gen AI, quantum computing, and 5G expansion. By
2025, organizations are likely to seek more industry-specific and integrated
cyber-physical security solutions.
7. Back to basics: Cyber
resilience will be essential for business security
Now more than ever, a robust cyber
resilience strategy is crucial for organizations to handle unexpected cyber
incidents and will require taking a fresh look at the basics: regular backups,
detailed incident response plans, and business continuity measures. Something
as simple as regular drills can enhance organizational preparedness and
response capabilities. Promoting a culture of resilience will help minimize
downtime and disruptions from cyberattacks.
With geopolitical shifts and evolving technology, global
cybersecurity is undergoing a major transformation, and enterprises are looking
for ways to leverage GenAI to secure their businesses. GenAI is enhancing
operational efficiencies, but organizations must equip themselves to counteract
cyber threats. It is imperative for organizations to harness these advancements
and implement GenAI-powered threat detection and response systems to stay ahead
of the curve.
In this era of rapidly evolving technologies, a robust and
proactive cyber resilience strategy is not just an option, but a necessity for
enterprises to effectively navigate and mitigate unforeseen incidents in this
new era of cybersecurity.
##
ABOUT THE AUTHOR
Ganesa Subramanian Vaikuntam is VP & Global Head - Cybersecurity
Business Group at TCS. He is responsible for shaping TCS's Cybersecurity
strategy and capabilities to ensure that our customers' digitally transformed
businesses are secure from current and emerging cyber threats. He is a dynamic business leader with over 28
years of wide-ranging experience, primarily in the IT industry, in various
leadership roles. He has successfully established and scaled multiple businesses, achieving
strong financial and operating performance. He has an extensive experience in
building globally distributed, high-performance teams to ensure customer
success. He strongly believes in the power of technology to transform
businesses and has been at the forefront of enabling organizations transform
and grow, by leveraging digital technologies.