Semafone, a provider of data security and compliance solutions for contact centers, sees trouble ahead for companies which don’t have their cybersecurity in order but also predicts new regulations will have a positive impact on the market. CEO Tim Critchley, Global Solutions Director Ben Rafferty and Head of Information Security Shane Lewis, share their top five predictions for 2018.
Mainstream breakthroughs for futuristic technologies
The rise of AI, robots and autonomous vehicles will continue at a rapid pace. Voice assistants and their interaction with connected devices and IoT will result in spoken commands outstripping traditional keyboard interactions for the first time in the home – and in business before too long. Legitimate uses may even materialize for cryptocurrencies, spoiling the fun for the speculators.
Hackers will go into overdrive
Cyber criminals will increasingly use artificial intelligence and machine learning to create automated attack systems that learn how to defeat security barriers as they spread.
IoT devices and autonomous vehicles will be the subject of DDoS (Distributed Denial of Service) attacks of ever increasing ferocity and duration.
Default security on most connected devices across the world remains weak and in 2018 another global malware or ransomware attack, similar to WannaCry, will hit the headlines simply because companies and organizations still do not adequately patch their systems.
Cybersecurity will become a government priority
Cybersecurity will become a consumer protection issue and governments around the world will be forced to regulate the connectivity of consumer devices in the same way that they do today for electrical connections and battery power.
In the U.S., we may finally see culpable senior executives sent to jail. The Data Security and Breach Notification Act will enforce custodial sentences for white collar crimes relating to data breaches. And if leaks in the U.S. in 2017 are anything to go by – from 200 million Republican voter records to 33 million Dun & Bradstreet records – it could be a dramatic year.
Some large fines will be imposed on organizations in Europe or the U.S. as a result of a breach of the General Data Protection Regulation (GDPR), particularly if an organization fails to meet its obligations on transparency and covers up a breach. That said, it is unlikely to be the four per cent of global turnover often mentioned in relation to GDPR. Regulators such as the ICO in the U.K. will want to help educate industry on their new data protection obligations rather than punish them straight away.
The security skills gap will widen
The downside of the GDPR is that the need for organizations to appoint a chief data officer will draw many skilled security professionals away from the coalface and into compliance and privacy management roles, widening the skills gap for CIOs and CISOs still further.
“We’re seeing an increasingly complicated compliance landscape that has to take into account the advance of technologies in the AI and IoT fields, along with new sectors such as the cryptocurrency market,” Mr. Critchley said. “Regulators are having to race to keep up, but there’s no doubt that the GDPR in Europe, along with the Data Security and Breach Notification Act in the U.S., will make a huge difference to the security of customer data. We are optimistic that 2018 will be the year when organizations at last start doing what they should have been doing already – taking information security seriously.”