Latest news with #ChrisDimitriadis
Business Wire
3 days ago
- Business
- Business Wire
AI Use Is Outpacing Policy and Governance, ISACA Finds
LONDON--(BUSINESS WIRE)--Nearly three out of four European IT and cybersecurity professionals say staff are already using generative AI at work – up ten points in a year – but just under a third of organisations have put formal policies in place, according to new ISACA research. AI use is outpacing policy and governance, ISACA finds. The use of AI is becoming more prevalent within the workplace, and so regulating its use is best practice. Yet not even a third (31%) of organisations have a formal, comprehensive AI policy in place, highlighting a disparity between how often AI is used versus how closely it's regulated in workplaces. Policies work twofold to enhance activity and protect businesses AI is already making a positive impact– for example, over half (56%) of respondents say it has boosted organisational productivity, and 71% report efficiency gains and time savings. Looking ahead, 62% are optimistic that AI will positively impact their organisation in the next year. Yet that same speed and scale make the technology a magnet for bad actors. Almost two-thirds (63%) are extremely or very concerned that generative AI could be turned against them, while 71% expect deepfakes to grow sharper and more widespread in the year ahead. Despite that, only 18% of organisations are putting money into deepfake-detection tools—a significant security gap. This disconnect leaves businesses exposed at a time when AI-powered threats are evolving fast. AI has significant promise, but without clear policies and training to mitigate risks, it becomes a potential liability. Robust, role-specific guidelines are needed to help businesses safely harness AI's potential. 'With the EU AI Act setting new standards for risk management and transparency, organisations need to move quickly from awareness to action,' says Chris Dimitriadis, ISACA's Chief Global Strategy Officer. 'AI threats, from misinformation to deepfakes, are advancing rapidly, yet most organisations have not invested in the tools or training to counter them. Closing this risk-action gap isn't just about compliance – it's critical to safeguarding innovation and maintaining trust in the digital economy.' Education is the way to get the best from AI But policies are only as effective as the people who understand - and can confidently put them into practice. As AI continues to evolve, there is a need to upskill and gain new qualifications - 42% believe that they will need to increase their skills and knowledge in AI within the next six months in order to retain their job or advance their career - an increase of 8% from just last year. Most (89%) recognise that this will be needed within the next two years. For more on the 2025 AI pulse poll, visit For ISACA resources on AI, including free content guides as well as training courses and certifications on AI audit and AI security management, visit Notes to Editors All figures are based on fieldwork conducted by ISACA between 28 March and 14 April 2025, amongst a total of 561 business and IT professionals in Europe. In total, ISACA surveyed more than 3,200 business and IT professionals worldwide. About ISACA ISACA ® ( has empowered its community of 185,000+ members with the knowledge, credentials, training and network they need to thrive in fields like information security, governance, assurance, risk management, data privacy and emerging tech. With a presence in more than 190 countries and with nearly 230 chapters worldwide, ISACA offers resources tailored to every stage of members' careers.
Forbes
02-04-2025
- Business
- Forbes
The Time Is Now For Quantum Computing Preparation
Insights from Chris Dimitriadis, Chief Global Strategy Officer, ISACA. Quantum computing is commonly characterized as an emerging trend to be on the lookout for in the future. The trouble is, nobody is certain when that future will arrive—and it may be much sooner than most people anticipate. According to IBM, "Quantum computing is an emergent field of cutting-edge computer science harnessing the unique qualities of quantum mechanics to solve problems beyond the ability of even the most powerful classical computers." While quantum is going to evolve computing to the next level, enabling innovation in several industries and accelerating AI sophistication to unprecedented levels, it also comes with problems, one of which relates to cryptography. Large-scale quantum computers will be able to break existing public key infrastructure (PKI), turning our existing cryptosystems useless and compromising the confidentiality and integrity of communications and data. The problem definition is simple. The global digital economy relies on cryptography, which will become obsolete in the post-quantum era. The transition from pre- to post-quantum cryptography is not an easy task. We need to prepare for a post-quantum future before it's too late. Cryptography is a foundation of cybersecurity and shapes our lives as we know them—it's present in all sectors, from financial services to the automotive industry. Any public key cryptographic protocols that exist now will be made redundant when quantum computing becomes the norm. Imagine banking transactions, e-commerce, email systems, Industrial IoT, or mobile communications without security in place, or digital identities, websites, devices, or user authentication being compromised. With this in mind, governments and organizations must start mapping their cryptographic assets now and begin to plan for the migration to post-quantum cryptography. Unlike when a major regulation or policy comes into effect, when there is a clear date to work toward, the so-called Q-Day—when quantum computers will be able to crack standard encryption—comes with no guaranteed timeline. While it's generally estimated that commercial quantum computing is about a decade away, nobody can say with certainty when quantum might upend our day-to-day lives. Much like we have witnessed in recent years with artificial intelligence, innovation in the quantum space has the potential to accelerate forecasted timelines, and the resulting impact on cryptography and security would be severe. In addition to the security impact, there are many other ways in which quantum computing could be highly consequential, ranging from the positive (speeding up computational tasks, enabling new products and services) to the alarming (major disruption to existing business models, presenting new regulatory and compliance challenges). It is also worth thinking through the potential ramifications of the intersection of quantum computing and AI, in which the potency of quantum computing could be further supercharged by AI's learning and pattern recognition capabilities. Although the various possibilities of quantum's aftermath can feel overwhelming to consider, a great way to lessen anxiety is to begin preparing. There are many steps organizations can take to begin positioning themselves for the implications of quantum computing, such as: Governments also will have an important role to play. Many governments might not be prioritizing quantum now, but they should consider being more proactive, as this is not something that can be handled reactively given the massive impacts. Foundations must be laid imminently in order to be able to handle the transition when it does eventually happen. There have at least been some signs of progress, including the passage of the Quantum Computing Cybersecurity Preparedness Act in the United States. The act emphasizes collaboration with the National Institute of Standards and Technology (NIST), which has been leading efforts to develop and standardize post-quantum cryptographic algorithms. NIST has already published FIPS 203, describing a new algorithm that protects from quantum attacks, as well as SP 800-227 (draft) to suggest a resistant key encapsulation mechanism (KEM) toward establishing shared secrets to enable secure transactions and authentication in the post-quantum era. The quantum era could be approaching faster than many expect, and its implications—especially in a security context—are too significant to ignore. With proactive preparation, risks can be mitigated and possibilities to leverage its positive potential can be leveraged. Organizations and governments should begin integrating quantum considerations into their strategies, investing in post-quantum cryptography, and providing ongoing training to their security professionals. The foundations laid now will dictate whether a quantum-powered future is defined more by peril or by possibility. Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?
Associated Press
05-03-2025
- Business
- Associated Press
IT Professionals Suffering From Burnout as Demand Rises for More Hires and Support in the Sector, ISACA Finds
The wellbeing of European IT professionals is at risk, as almost three quarters (73%) have reported experiencing work-related stress or burnout. That's according to new research from ISACA, the leading global professional association helping individuals and organisations in their pursuit of digital trust. This work-related stress is manifesting in different ways, with three in five (61%) citing a heavy workload as a contributor, as well as tight deadlines (44%) and lack of resources (43%). Nearly half (47%) found that difficult or unsupportive management were impacting workplace wellbeing. Alongside these internal issues, external challenges including the wider skills gap in the sector mean that more work is being placed on the shoulders of existing staff. Nearly half (45%) of European IT professionals decided to pursue a job in the sector because they enjoy the problem solving and creativity aspect, and 47% choose to remain in their current job because they find it to be interesting. Over two thirds (68%) of professionals surveyed note they had a salary increase or promotion within the last two years. But for those looking to enter the sector, it can prove difficult - 30% of IT professionals said that specialised skills required for specific IT areas is the third highest challenge in Europe. Chris Dimitriadis, Chief Global Strategy Officer at ISACA, said: 'With skilled employees in such high demand, it is in companies' best interests and simply the right thing to do to make sure the tech workforce feels supported, motivated, and invested in. Younger IT professionals are switching jobs at a much higher rate, highlighting the need for better retention strategies, including clear career growth pathways and a focus on work-life balance. At the same time, experienced professionals must be given the support they need to stay engaged and continue contributing their expertise. A balanced, well-supported workforce is key to sustaining the industry's growth and innovation.' A quarter of IT professionals (24%) cite a lack of mentorship or guidance when entering the sector. Only 15% of European IT professionals have a mentor at all. This is despite over three quarters (76%) feeling that good mentors or role models are important to them. European IT professionals recognise the benefit of qualifications in furthering their development – 90% have participated in certifications to advance their career, and almost three quarters (74%) said that their employer provides or pays for certifications as part of their career development. The report can be accessed at . Learn more about SheLeadsTech at Notes to Editors All figures are based on fieldwork conducted by ISACA between September 27 and October 12, 2024, amongst 7,726 global respondents and 1,340 European respondents working in IT fields. SOURCE: ISACA Copyright Business Wire 2025. PUB: 03/05/2025 07:00 AM/DISC: 03/05/2025 07:03 AM
