Prior to the conference, we had the opportunity to chat with Ilias Chantzos, Global Privacy Officer and Head of Government Affairs programs for EMEA of Broadcom. Ilias shared his insights on security and regulatory compliance, what makes a strong cybersecurity culture, the importance of skilled cyber talent, and his prediction on the biggest obstacle for security leaders in 2023.
Ilias leads the global privacy program of Broadcom across the company’s multiple business units and regions. He also represents Broadcom before government bodies, national authorities, and international organizations in EMEA advising on public policy issues.
Ilias Chantzos was a panelist in the session “Cyberlaw and privacy: Legal requirements and compliance challenges for corporations” together with Liliana Musetan, Head of Cybersecurity at the General Secretariat of the European Council, Stefano Mele, Partner at Gianni & Origoni International Law Firm, Anna Pouliou from Deloitte, Daniel Seiler from the National Cyber Security Centre (NCSC), and Spencer Mott, CSO at Booking.com at the Global Cyber Conference 2022.
How can security leaders better help their organizations build a strong culture of security?
Education, communication, and rigorous enforcement of the rules are in my opinion the best mix. Train people around security, explain why certain actions are necessary, and have the automation to enforce the rules, not in a punitive but ideally in an educative manner. Often the user will be the first and one of the most effective lines of defense or will be a crucial factor in mitigating the impact.
What is the number one challenge to a secure digital transformation in cyber security?
Understanding and deploying your capabilities and transformational efforts in a manner that meets the security threat while remaining regulatory compliant.
What are the most common misconceptions that you believe businesses have about cyber security?
Cybersecurity is a cost or an obstacle. It is both, but it is also something we cannot any longer live without. Heightened security is a must to address risks and challenges in a very complex and increasingly divided world.
Cyber security is a constant battle, with demand for cyber talent continuing to increase and outpace supply. How do you see that situation evolve?
The current situation will continue. Automation/AI are important tools in the fight against evolving threats therefore we will continue to rely on more tools to manage the plethora of information, but the presence of skilled human talent will also be a major requirement.
What do you foresee will be the biggest obstacle for security leaders and practitioners to overcome in 2023 and beyond?
See my answer to the first question especially as technology evolves with capabilities around the use of AI ethically or the use of pervasive encryption or the ability to anticipate user behavior (and react accordingly). The efficacy of the measures, the deployment of new capabilities, the ethical dilemmas, and the compliance aspects across users and the supply chain are what I think will keep us busy for a while.