Episode 7 - Key Takeaways from NYMJCSC: Confronting AI-Powered Misinformation and Quantum Security Risks

Click to Subscribe to the Together we defend Newsletter to get the latest updates!

?

Brief Newsletter description: In today’s increasingly complex cyber landscape, the power of partnership is more crucial than ever. Together We Defend, Divided We Fall, is crafted for senior leaders in the defense industry who understand that the only way forward is through collaboration. Each issue offers critical cybersecurity insights, strategies, and best practices focused on the unique challenges of defending our nation’s most vital assets. From the latest threat intelligence to emerging technologies, we equip you with the knowledge to fortify your operations. Join us in fostering strong partnerships and unified defense strategies, because in facing the largest challenges, together is the only way we can truly succeed.

?

Opening:

?

A slightly different twist on this week's episode, The Oxford Computer Group (OCG) recently had the honor of sponsoring the NY Metro Joint Cyber Security Conference, where thought leaders and innovators in cybersecurity gathered to share their insights. This event was filled with engaging discussions on AI, quantum risks, and the evolving challenges in cybersecurity. The OCG team enjoyed connecting with attendees, and the sessions offered a wealth of knowledge on the future of cybersecurity. My colleagues and I bring you highlights from our favorite sessions.

?

Building Trust and Strengthening Cybersecurity Collaboration

?

The keynote session, led by Colonel (Ret.) J. Carlos Vega, CISSP , Co-Founder of the Army Cyber Institute (ACI), focused on the importance of trust in building effective cybersecurity partnerships. Titled "Building Trust, Managing Expectations: Strengthening Cybersecurity Collaboration," Colonel Vega emphasized that while technology is critical, fostering trust and managing expectations between organizations and stakeholders is equally essential. He highlighted the role of clear communication and collaboration in creating successful partnerships. His message reinforced that, in cybersecurity, human relationships are just as important as the technology we deploy. I particularly felt right at home in that message as this is very close to the "Why" of this Newsletter!

?

AI and Quantum: Navigating New Risks

As you might expect, two major themes emerged at the conference, with the intersection of AI and quantum technology at the center of discussions. These technologies hold the potential to transform both cybersecurity defenses and the risks we face. Here are a few key takeaways from the sessions:

?

Insider Threats Do More Harm Than External Attackers

Speaker: Tim Schnurr, CRISC , Inquisitive IT

Timm's session shed light on the significant risk posed by insider threats, often more harmful than external attacks due to the trust and access insiders hold. He explained how AI-powered tools can detect subtle changes in user behavior, allowing organizations to identify potential insider threats early on. His session stressed the importance of combining AI-driven analytics with human oversight to create a solid defense against these internal risks.

?

Our Observations:

Timm’s session underscored just how sensitive the topic of insider threats can be. Dealing with internal risks requires a delicate hand, as you’re often investigating people who are trusted within the organization. What struck me was the idea that while AI-powered behavioral analytics can flag unusual activities, it’s crucial that we don’t treat these findings as gospel. Instead, they should serve as data points in a larger investigation, allowing us to make informed decisions without jumping to conclusions.

This approach is especially important for compliance officers who must balance vigilance with fairness. AI can be a powerful tool in identifying potential threats, but it’s the human oversight understanding context, intent, and the bigger picture that ultimately ensures the right course of action is taken. The session was a reminder that protecting against insider threats isn’t just about technology; it’s about managing the human element with care and precision, ensuring security without eroding trust.

?

New AI and Quantum Risk and Security

Speaker: Michael Melore, CISSP , Senior Cybersecurity Advisor at IBM

Michael's session explored the growing risks posed by AI and Quantum computing, both of which are advancing faster than traditional cybersecurity can keep pace. While quantum computing today is not widely accessible, He pointed out that it's only a matter of time before it becomes mainstream, at which point it could be used to break current encryption methods and exploit systems. He emphasized the importance of adopting quantum-safe cryptography and preparing for these emerging risks sooner rather than later.

?

Our Observations:

Michael's session was a reminder that while quantum computing may seem distant now, its accessibility is rapidly approaching. What also resonated was the dual-edged nature of AI. It can both defend and attack. This calls for a balanced strategy, using AI to strengthen defenses while staying vigilant about its potential misuse. The session reinforced the idea that we must be proactive. We need to start thinking this way and build it into our roadmaps

?

Unmasking Digital Deception: Defending Your Organization Against AI-Powered Misinformation

Speaker: Nick Loui , CEO Peak Metrics

Nick's session explored the rising threat of AI-generated misinformation, which is becoming a powerful tool for manipulating public perception and undermining trust. He discussed how AI is increasingly used to create deepfakes and spread false information, posing a significant challenge for organizations. He recommended using AI detection tools to identify and block misinformation before it spreads, while also training teams to recognize digital deception. His session served as a reminder that as AI advances, so too must our defenses against its misuse.

?

Our Observations:

Nick highlighted how this is rapidly evolving, posing a significant challenge to both public trust and organizational security. What really resonated with me was the growing sophistication of deepfakes and how easily they can be used to manipulate narratives. This presents not just a technical challenge, but a reputational risk that can damage trust quickly.

One key takeaway was the need for AI-driven detection tools. While the threat comes from AI, the solution also lies with AI, which can detect and combat misinformation before it gains traction. However, as Nick emphasized, it's not just about the tools, we need to train our teams how to recognize and respond to misinformation as this is equally important going forward. We must act preemptively to protect our organizations from the risks of misinformation.

?

A Toast to Cybersecurity: The Cyber Breakfast Club

After a day of inspiring sessions and thought-provoking discussions, attendees gathered across the street from the Times Square Microsoft Technology Center at Beer Authority for the The Cyber Breakfast Club . This relaxed gathering allowed participants to continue the day’s conversations in a more informal setting, while enjoying time with fellow cybersecurity professionals. It was the perfect way to unwind and wrap up an eventful day. Thank you @Cyber breakfast club for the fun and awesome selection of tasty beverages and snacks!

?

A huge thank you to Nick Hebert - Enterprise Services/Software Sales , Francisco U. & Alexander Stubbs for your outstanding contributions in making this a successful event and sharing your favorite topics for this week's #TogetherWeDefend episode

?

As always, remember….

Together we defend, divided we fall

#CyberSecurity #InfoSec #MSFTadvocate