We still need to talk about ransoms. And do some serious policy work about them.
Perhaps a focus on backups, and funding for the infrastructure for resilience would be worthwhile ?
Board and it requirements for ensuring that things work, demonstrating that resilience is successfully engineered for, and funded against the competing priorities for the organisational funding.
Events show that organisations need IT infrastrucure that has appropriately funded budgets, do that they are not hampered with legacy vulnerable systems & software within their organisations that can be exploited and monetised.
How will the transformational investment be found to get from where we are to the future, against every othe funding priority?
Here be dragons.