The first phase of digital transformation came as the perimeter dissolved. Before this, organisations focused on infrastructure security – think firewalls, intrusion detection and anti-virus – and, as we entered the second phase of digital transformation, we moved our focus to applications. As our workforce changed, we realised that applications were the weakest link in our cyber defences. Now, we are in the third phase of digital transformation where we have gone back to who we are and what we can have access to – particularly as the workspace of tomorrow is driving a very different business environment.
At NTT Security, we believe we must move even further forward and enter the fourth phase of digital transformation, which means implementing a cybersecurity model that focuses on embedding cyber into the business to enable business resilience. Ultimately, it means the ability to proactively protect and, if necessary, recover quickly and effectively from attacks right across the business.
Our goal has to be to reduce the attack surface and understand the real risks in business. We need to predict, which requires putting the risks that a business faces in context. We need to analyse to make our people more efficient. We also need to identify and contain any potential breach quickly and effectively by hunting within a business and beyond into emerging threats. Our digital world changes quickly and we need to be agile and be able to adapt quickly.
Finally, we have to secure our digital world by embedding cyber resilience into every aspect of our business. In a connected world, whatever your commercial or technology aspirations, you have to plan, deliver and maintain the necessary cybersecurity for business resilience.