Proactive cyber defense: a necessity in the digital age

The increase in incidents related to cyber crime, which have recently hit law enforcement agencies and one of the country's online payment providers, highlight how in this digital age nothing is inviolable. Importantly, these high-profile attacks occurred during military exercises and a time of rising geopolitical tensions in the West Philippine Sea. In this scenario, an escalation of sophisticated attacks related to the current geopolitical situation is to be expected. We therefore believe it is essential to "connect the dots", because neglecting this aspect could prove to be a serious mistake.

The importance of a proactive cyber defense posture

The country needs to realize the importance of adopting a proactive approach to cyber defense to ensure the security of its digital ecosystem. This means abandoning the current fragmented, disconnected and autonomous strategy, going beyond the simple legal-criminal sphere. It is necessary to adopt a philosophy of "proactive defense", investing in preparedness, innovation, resilience and deterrence. Understanding our adversaries and ourselves is key in this context. Current geopolitical tensions highlight how cyberweapons, together with information warfare techniques, are used intensively due to their "lower conflict threshold" and difficulty of attribution.

Beyond the technological approach to cybersecurity

The traditional approach to cybersecurity is organization and technology focused. However, the constant weaponization of cyberspace indicates that the impact is becoming social rather than organizational. Malign actors, both state and non-state, continue to innovate and explore system vulnerabilities. Sophisticated attacks are aimed at disrupting services and infrastructure and undermining institutions. The use of artificial intelligence and social engineering now allows "hack the human to hack the net" and spread disinformation. These developments underscore the need to go beyond the simple 'castle' principle of building sophisticated firewalls to ensure cybersecurity.

Towards a collective and innovative cyber defense strategy

Our cyber strategy should encourage cooperation and innovation by clearly defining roles and lines of responsibility. The private sector plays a vital role in achieving a proactive approach to cyber defense. While significant investments have been made in cybersecurity, most of them are focused on protecting data, systems and intellectual property. A collective defense strategy will involve identifying critical sectors and creating a common space for sharing information and best practices. Ultimately, innovation is a critical component of a proactive cyber strategy. The government's collective defense strategy should encourage the participation of academia for research and development. New educational programs can be developed to provide the necessary skills. The inclusion of civil society organizations can foster awareness and ensure that privacy rights are preserved.