In recent years, we’ve seen organizations struggle, as cryptographic algorithms and protocols were deprecated from standards. With post-quantum discussions picking up, we wonder: when should we be ready, and will we be? How do we best prepare for changes in algorithms and standards? What are the best practices to enable cryptographic agility? When is the right time to plan for what’s next?