HRO session 2: From visibility to addressing: advancing cryptographic readiness at scale

From visibility to addressing cryptographic risks at scale

This is a forward-looking challenge that only high-resilience organizations are proactively tackling. CISO’s often legacy cryptographic tech debt, limited board awareness and face unclear vendor roadmaps, while quantum risk is still considered “not immediate.”

Discussion:

• How are CISOs building cryptographic asset inventories across hybrid infrastructures and how to set priorities?
• What triggers or thresholds (e.g. regulatory, threat intelligence) are being used to justify Post-Quantum Cryptography planning?
• Are PQC efforts centralized (crypto teams) or federated (business units)?
• What does crypto agility mean operationally in terms of response to key compromise or algorithm deprecation?
• How do you get board-level buy-in for cryptographic modernization?

This second roundtable session is part of the Highly Resilient Organizations Program. Do you want to join? Registration is possible at short notice.