Analysis, research and consulting firm "Gartner" predicts that by 2024 the responsibility for failure protection systems from security incidents, will be largely borne by 75% of business CEOs.
Gartner Vice President of Investigation Katell Thielemann said regulators and governments would respond immediately to the increase in serious security incidents that result from the failure to safeguard CPSs. Part of their reaction will be to increase their drastic measures and regulations.
It is worth noting that on USAThe FBI, the NSA and CISA have already increased the frequency but also the details they provide about threats emerging with regard to the critical systems infrastructure, most of which are privately owned industry.
According to Thielemann, CEOs will no longer be able to argue to justify the existence of inadequate or incorrect security policies in businesses their. In addition, Gartner noted that the costs for companies in terms of compensation, litigation, insurance, regulatory fines and loss of reputation will be quite high. The financial impact of security incidents on CPSs, which will risk even the loss of human lives, is projected to reach $ 50 billion by 2023.
Gartner defines CPSs as systems designed to orchestrate sense, computation, control, networking, and analytics to interact with the physical world, including humans. Therefore, CPSs support all efforts of connected IT, business technology and Internet of Things (IoT), where security issues cover both cyberspace and other areas such as assets, critical infrastructure and healthcare environments.
Hence its leaders technology should help business CEOs understand the risks that CPSs represent, as well as the need to have the necessary interest and budget to secure them. The more connected the CPSs are, the more likely a security incident is to occur.
With the evolution of technology, of which "smart" cities are part, and evolving autonomous vehicles, there are dangers, threats and vulnerabilities in the field of cyberspace. However, many companies are not aware of the CPSs that have already been developed within them, either because of outdated systems associated with networks companies from non-IT groups, or due to new business automation and modernization efforts.