NTSC Blog

Navigating the Future of Cybersecurity: Insights from the NTSC Conference

Navigating the Future of Cybersecurity: Insights from the NTSC Conference

Author: Michael F.D. Anaya, Founder of DecodingCyber


In an era of rapidly evolving digital threats, we at the National Technology Security Coalition (NTSC) were elated to host our 7th Annual National CISO Policy Conference. We brought together the top minds in cybersecurity to discuss pressing issues and future strategies. Our Washington, D.C. conference highlighted several critical themes shaping cybersecurity in the coming years. It was filled with prominent personalities, insightful discussions, and poignant topics; all warped into an electric DC atmosphere!

Let’s dive into some of the highlights.

Private and public sector partnerships are critical

The conference was started by Harry Coker, the National Cyber Director of the Office of the National Cyber Director (ONCD), emphasizing the importance of bipartisan cooperation in
cybersecurity. Coker stressed that his office "is here to support all Americans" regardless of political affiliation. Coker advocated for better threat intelligence sharing between the government and private sector, expressing a desire for real-time information exchange to combat threat actors. It isn’t just the public sector's role to bolster cybersecurity; the private sector plays a vital part. Microsoft's Dr. Timothy Maurer, Senior Director of Global Cybersecurity Policy, introduced the company's Secure Future Initiative, focusing on three pillars:


1. Secure by design - “Security comes first when designing any product or service.”
2. Secure by default - “Security protections are enabled and enforced by default, require no extra effort, and aren’t optional.”
3. Secure operations - “Security controls and monitoring will be continuously improved to meet current and future threats.”


This multi-year effort aims to enhance cybersecurity across Microsoft's products and services.

Throughout the conference, speakers emphasized the need for harmonization between the private and public sectors. As the cybersecurity landscape evolves, collaboration and information sharing between the two will be crucial in developing effective strategies to combat emerging threats. When addressing emerging threats, many in the private and public sectors recognize that artificial intelligence (AI) will be the key to the future.

Artificial intelligence needs to be embraced

AI has emerged as a double-edged sword in cybersecurity. While acknowledging AI's potential as a tool for malicious actors, experts also highlighted its capacity to empower defenders. Michael Hansen, Senior Solutions Engineer at Check Point Software Technologies, noted that bad actors already use AI to craft more convincing phishing emails, with users falling for these scams in under 60 seconds.

Maurer conceded that bad actors have the upper hand when using AI today; however, he sees this changing in the future. He believes AI offers the possibility for faster software rollouts and more secure coding practices, giving defenders the upper hand once those two elements are widely used across the industry.


Later in the day, a panel discussion among industry cybersecurity leaders was centered on AI, including AI governance. It revealed that organizations are taking varied approaches. Some companies have initially blocked all AI tools to assess risks before allowing controlled usage, while others have implemented guidelines for open AI platforms. Given the technology's varied use cases and value, the consensus was that AI governance must be addressed yet adaptable. Other discussions touched on the implications of AI. Michael McGlynn, the Chief Information Security Officer for World Wide Technology, cited that AI presents a huge opportunity to unlock "the ability to upskill those earlier in their career." By carefully integrating AI into training programs, it can help propel people in their careers, ultimately aiding organizations in being better equipped to address threat actors. Cyber threat actors are global; they operate in a borderless world, leading to inevitable geopolitical complications.

Geopolitical conflict is being cyber-enabled

The geopolitical dimension of cybersecurity took center stage during a conversation with Dmitri Alperovitch, author of World on the Brink: How America Can Beat China in the Race for the Twenty-First Century. Alperovitch drew parallels between the Russia-Ukraine conflict and potential China-Taiwan tensions, warning that the latter could have devastating global consequences. The conflict with China is sometimes understated in the public’s eye. Alperovitch acknowledged that as a challenge and advised that the US should openly acknowledge that China is an adversary. He characterized the current US-China relationship as "Cold War II," marked by intense cyber espionage and competition across multiple domains.


Those domains span industries and geographical boundaries, even reaching rural areas. Small-town America and underserved communities face tremendous challenges in cybersecurity. Coker expressed concern that these areas might be “target rich, cyber poor" and offered potential solutions such as closer collaboration between federal and local governments and early cybersecurity education for children. However, this situation is a bit more problematic, as Coker feels many Americans might not fully understand the severity of cyber threats.


As the conference explored both global geopolitical tensions and local cybersecurity challenges, it became clear that a comprehensive and multi-faceted approach is necessary to address the complex cybersecurity landscape of the future.

In conclusion

At the NTSC, we aim to address these pressing issues by facilitating dialogue, education, and advocacy by uniting public and private sector leaders around national policies to improve national cybersecurity. We are proud that our National CISO Policy Conference unified leaders across the spectrum and provided valuable insights into the future of cybersecurity. The conference highlighted the complex and multifaceted nature of modern cybersecurity challenges, from the role of AI and geopolitical tensions to the importance of public-private partnerships. As technology advances and threat actors become more persistent, a proactive, collaborative, and adaptable approach will be essential in safeguarding digital assets and ensuring national security. As such, we will be here to help ensure our members and associated parties benefit from the latest cybersecurity trends, technology, and the expertise of cybersecurity professionals behind all of it.