What do you do when your CISO asks you for a 10-year cybersecurity strategy? Cybersecurity strategies typically address shorter time frames due to the dynamic technology environment and threat actors' abilities to quickly implement advanced technologies. This session will discuss the development of a 10-year strategy using a combination of bottom-up, top-down and scenario planning approaches.
1: Provide an overview of short-term (1–5 year) cybersecurity strategy development.
2: Provide an overview of long-term (5–10 year) cybersecurity outlook development.
3: Provide a framework for communicating the strategy (e.g., NIST functions).