Read Atos perspectives on current cybersecurity challenges for key global market sectors.
Industry Insight: Telecom, Media & Technology
The Telecom, Media and Technology sector is at the heart of major technological advances and convergence, heralding a new era for operators and their customers.
As ubiquitous digital connectivity and services becoming like the 2nd oxygen for consumers and businesses, Telcos aspire to become platform providers to move up the value chain and drive revenue growth. Significant investment is being made across 5G, fiber, edge, hybrid multi-cloud, data-driven operations and customer engagement platforms.
Media companies are transforming to become Digital Media Enterprises to remain relevant to consumers and optimize cost. The Internet and mobile connectivity have disrupted the traditional media value chain, and content delivery at any time, anywhere, and on any device is now expected by every user. The key investment priorities for the sector being digital transformation, IP broadcast, cloud migration, content digitization & monetization, automation and audience experience and engagement.
Cloud adoption continues to grow with new use cases and server less computing in the high-tech sector. Technologies such as AI, High Performance Computing, Industry 4.0, IoT, 5G private networks, edge and cloud-native applications are playing a crucial role in this journey.
Alongside this, strong competition to attract and retain talent is driving investment in modern digital workplace solutions enabling proactive employee experience and engagement.
The rollout of new digital capabilities is helping revolutionize the experiences and services that the companies can offer their people and customers. But with new opportunities come new regulations around data control and privacy. Cybersecurity must be built in by design to ensure regulatory compliance and to foster trust in customers.
Securing systems and networks requires visibility on the performance of security services end to end, from user device to the cloud. By automating infrastructure configuration there can be instant patching in the event of a breach.
As the organizations aspire to become very agile and achieve faster time-to-market, high feature release velocity (100-1000 features/releases per day) becomes a critical factor. The security policies of the organizations can become a barrier to achieve this degree of agility. But, security can become an enabler, not a barrier for agility by implementing security-policies-as-code across the DevSecOps pipeline.
Advances in technology can significantly improve an organization’s response to risks and attacks. As the TMT industry comes to grips with new technologies, so must their response to cyber-attacks, whether these originate from criminals or from state actors.
New digital landscapes and the speed of digital transformation are changing the way we do business. As the surface attack area is expanding, so the threats are evolving. As world#1 in managed security services, Atos brings a unique combination of experience, capabilities and solutions to help the TMT sector predictively detect and respond to advanced and emerging security threats.
Atos works to support telecom operators and media companies in accelerating their digital transformation, by ensuring the availability of their critical infrastructure, securing and managing their equipment, as encrypting their data flow – including “any-haul” in RAN and MEC. Atos assists its end customers in identifying risks, develops the end-to-end security strategy to protect critical business and data, and works to identify security threats.
Industry Insight: Health & Life Sciences
Today’s healthcare organizations face a daunting and ever-increasing level of cyber risk. Healthcare providers must protect sensitive customer data, while enabling appropriate sharing at the right time to improve customer care.
The pharma and biotech industries are driven by the collection, analysis and sharing of valuable information between researchers. New technologies, like connected medical devices, must ensure the data they collect stays confidential.
The varied range of security needs means that the Health & Life Sciences sector has unique vulnerabilities and requirements. Coping with such a wide array of demands is made no easier by the perceived absence of a single partner to whom healthcare organizations can turn.
It is also vital for organizations in the sector to respond to long-term changes to the healthcare system. Rapidly rising costs, the difficulties or delivering healthcare in remote areas and a shortage of skilled and experienced health professionals are issues felt worldwide. As the population of industrialized countries continues to age and the number of people suffering from chronic conditions increases, the need for long-term care is growing.
Metaverse technologies including Augmented Reality (AR) and Virtual Reality (VR) will help leverage scarce expertise in the future. This can help in emergencies, where dedicated expertise might not be found in a hospital but could be accessed by liaising with an expert in a different location providing support during surgery. They can help researchers across the world collaborate more easily, but these in themselves create new cybersecurity challenges and vulnerabilities.
Healthcare organizations often rely on a series of vendors to help them manage security, typically with non-integrated point solutions requiring additional onsite staff and expertise. This results in higher costs, an increased risk profile, and promotes “technology sprawl,” a problem that can severely compromise their capacity to identify and address potential incidents. For healthcare organizations, strategic planning and consulting can be a valuable first step in reducing these risks.
In this challenging environment, how we secure and share data, sometimes across regulatory boundaries, will be key to an organization’s success.
Industry insight Financial Services & Insurance
Digital services have transformed the Financial Services and Insurance sector. The shift online has reduced costs, improved efficiency and competitiveness, and improved customer journeys.
However, it has also created new opportunities for both criminal and state actors to exploit vulnerabilities.
The sector has responded by becoming a leader in cybersecurity. The costs, both financially and reputationally, are too great to get things wrong. But a rigorous approach to securing every single transaction must be balanced with usability and accessibility for customers. Adding complexity discourages use, while too many false positive rates on transactions can harm customer relationships.
The move to cloud has also increased risks. While cloud has brought a range of benefits for both consumers and the sector, it has also opened up new vulnerabilities. Cloud providers can ensure the security of cloud services, but if an organization doesn’t know who is accessing its network or sharing data, or if endpoints aren’t secure, cyber criminals can strike and move through networks at speed.
Digital ID will be a significant tool in helping to maintain security. Technologies like biometrics, can help increase trust in the process. With the addition of artificial intelligence and machine learning, red flags can be processed in near real-time to avoid the costs of retrospective fraud mitigation.
But for many in the sector, the regulatory environment has still not caught up with the needs of consumers or the industry. The responsibility for security has to be shared between the sector, their digital service providers and customers. Institutions must be able to understand their obligations. The right evolution of the regulatory landscape will combine incentives to share best practice with mandatory requirements, but much of this is yet to be decided.
In a world where fraud, risk and compliance dynamics are constantly changing, our role is to help organizations identify issues and manage this landscape as well as responding to threats as they appear. At Atos, we are the trusted partner to some of the world’s biggest banks and insurers, because we understand that trust in security systems, once lost, can have catastrophic impacts on confidence. This doesn’t just impact an individual brand but has knock on effects to the whole industry.
With new technologies and changing regulatory environments, the Financial Services and Insurance Sector must constantly update and refine its approach to cybersecurity to remain best in class.
Industry Insight: Public Sector & Defense
The digital delivery of government services, which has been accelerated by the pandemic, has transformed how citizens interact with government and, in many cases, changed how those services are designed.
With ever increasing demands from citizens, particularly in developed countries with ageing populations who require more government support, digital transformation programs have helped deliver more for less.
While digital services are delivering efficiencies and value for money for the taxpayer, there is also an increased pressure on government budgets.
In the UK, for example, government departments are looking to reduce its civil service by around 20% to save taxpayers money, while maintaining service and customer satisfaction levels. This can only be achieved by delivering more digital services, building and running well constructed systems and doing it all at scale, safely and securely.
However, while digital services are delivering efficiencies and value for money for the taxpayer, they have also increased the attack surface for bad actors, making securing services even more challenging.
At the same time, all governments are facing an extremely competitive jobs and skills market in cybersecurity. With limited budgets, it is increasingly difficult for them to secure the right talent and skills. As headcounts reduce and with a high turnover of people, providing essential continuous training and development in cybersecurity is often impossible, leaving governments one step behind cyber threats.
To secure systems, increasing automation and digitization to deliver more for less requires a new approach from governments to innovation. Standardization of systems and increased use of robotics, process automation, artificial intelligence and machine learning along with process re-engineering can eliminate waste and improve services.
These must all be designed with the right cybersecurity framework in place to deliver services safely and securely.
As a starting point, digital identities must be core to any digital transformation. This means using technology and procedures to securely identify a person and enable authentication, non-repudiation, confidentiality, and privacy. Combined with initiatives promoting European sovereign cloud infrastructures, this citizen ID approach needs to rely on a coordinated trust model that guarantees data privacy and provides a user-friendly digital transformation.
This can only be achieved people with the skills and knowledge to maintain systems, detect and respond to cyber attacks along with designing robust strategies to protect systems from internal and external threats.
At Atos, we work with governments to optimize systems, that leverage intellectual and financial capital to create better public services safely. It is critical that governments continue to partner with cybersecurity experts like Atos to ensure that systems are secure to maintain trust with the public and protect sensitive information. Only then can we deliver the services citizens expect at a reduced cost for taxpayers.
Digital Vision: Cybersecurity 3 – Further Insights
From across Atos and beyond, find out more about cybersecurity challenges and how organizations can respond to cyber threats