“Japanese organizations are probably already doing what they must or can,” said Yugal Joshi, Partner at Everest Group. “Some of these are basics like regular vulnerability assessment, penetration testing, hacker days, etc.”
Joshi emphasized that adopting advanced technologies is equally crucial. “For them to do cyber defense more diligently, they need well-staffed CISO functions and use AI and automation in their operations. In addition, leveraging learning from other parts of the world, which Chinese hackers have targeted, will also help them,” he noted.
He added that employee readiness must remain a top priority, particularly given the sophistication of phishing and social engineering tactics often employed by attackers. “Employees are the weakest link in cyber defense, and they need to be coached, educated, and constantly trained,” Joshi said.
