COVID-19 first crept into my scene back in February when I decided not to attend RSA for the first time in 20 years in order to avoid catching a horrific-sounding new virus emerging out of China. Even back then, it felt like this virus was going to dig in and that life would not go back to normal anytime soon—if at all.
Now, seven months later, the virus is still dominating the way people live, socialize, dine, worship, shop, work, learn, play, litigate, marry, entertain, tend to their health, do business, and interact with their governments. (That’s the short list.) And almost all of these changes involve technology.
What does this mean to us as cybersecurity professionals?
- First, it means many security pros are getting laid off as businesses are negatively-affected by the economic downturn. Why? Because business models that worked in 2019 no longer work in today’s ‘new normal.’
- So, if we haven’t already, we need to ask ourselves why our businesses are failing during this change and what we can do about it.
- Then, we must get ahead of the curve through security innovation (and that means a lot more than just securing remote workers).
Turning to Tech
Consider that almost all these COVID-related changes are driving people, even our grandparents, to use new applications and platforms that they never used before, primarily to mimic some form of social gathering that can’t yet be replaced with the virtual experience.
The obvious example is video conferencing, which is now being used for instructing students, conversing with family and friends, talking to our doctors, holding remote meetings and conferences, and providing entertainment (such as SNL and American Idol did recently).
We are also ordering more groceries and takeout online, which is prompting innovation and growth in the area food delivery service, an area that is still lacking but trying to catch up. And more people also filing taxes and their unemployment claims, voting by mail, and using other government services online.
World in Turmoil
Innovation is messy, according to Dave Cole, CEO of cloud-native discovery company, Open Raven, during a recent podcast with Ashwin Krishnan. In it, he explained how he tried holding company meetings in virtual reality, for example, which he said didn’t turn out so well because communication was difficult in the VR room. However, the opportunity is there, and maybe someday the tech will improve to meet the demand.
Innovation is also messy because the world we are innovating in seems to have gone crazy, creating risk scenarios we hadn’t planned for. For example, Zoom, the top video conference platform in use, comes from China—which is known for stealing IP to advance its economic advantage. China is also on the FBI’s list of the top three countries trying to influence the November elections.
These same adversaries are stoking political tensions, Black Lives Matter riots and deadly COVID nonsense over social media platforms that people around the world are turning to for information around on these issues. There are also criminal adversaries bent on inhibiting rsponse to the COVID crisis by getting ransomware into health care providers and ventilator manufacturers.
Butts in Gear
In a call to action, the World Economic Forum in May advised security professionals, particularly leaders, to think more strategically and take leadership during the crisis. Yet, it is easy to get caught up in just fixing the problems as they arise.
To innovate, we need to think five years ahead and anticipate problems arising as the result of political, social and economic trends, according to Ann Cleaveland, the Executive Director at UC Berkeley’s Center for Long-Term Cybersecurity (CLTC) during a webcast with Microsoft CTO Diana Kelley.
For example, she asked, as we move more of our lives online due to social distancing, will people eventually be involved in a social movement to protect themselves online?
Note, too, that the Industry is hurting for security workers even though it is also still laying off, with Cybersecurity Ventures predicting a shortage of 3.5 million cybersecurity professionals in 2021.
In particular, I believe hirers will be looking toward expertise that can understand the new threats that accompany technical innovation in this post-pandemic world, and can innovate security around these trends.
Let’s keep this discussion going and maybe formalize a forum around this topic! Please reach out here or on messenger if you’d like to share and talk.
Recent Comments