Why is the attack surface of modern organisations growing, making a security breach a question of "when" rather than "if"?
Digitalisation, hyper-connectivity, new technologies, complex supply chains and a shortage of skilled staff all keep expanding what attackers can reach.
Several converging drivers keep expanding the attack surface. Digitalisation and connectivity: almost everything is now digital and networked — people, machines and products — so there is far more to attack. New technologies (e.g. AI, cloud, IoT) boost efficiency but also raise susceptibility to cyberattacks. Supply chains are global and complex, giving attackers many indirect entry points into otherwise well-defended organisations. Skills shortage: forecasts suggest Switzerland alone will lack tens of thousands of IT specialists by 2030. Lack of visibility: "I can't protect what I can't see" — you cannot defend assets you don't even know you have.
Tip: The takeaway phrase is "a breach is a question of the when, not the if" — so the goal of security shifts from pure prevention to fast, competent response.