In 2020, the cybersecurity landscape evolved, and today, Chief Information Security Officers (CISOs) have a chance to grasp these developments.

In the rapidly changing digital landscape, two distinct classes of enterprise are emerging: digital nationalists and digital globalists. The former fear the loss of national sovereignty, while the latter believe that national sovereignty is a thing of the past and advocate for the sharing of data.

This evolution is influencing the balkanization of digital preferences, with the cloud and internet leading the way. This balkanization is causing the internet to fragment into four potential versions, each favouring technologies native to their own countries.

Toby Bussa, VP analyst at Gartner, has stated that opportunities lie ahead for "fit and fragile organizations" in the next decade of cybersecurity. However, the role of the Chief Information Security Officer (CISO) is not without its challenges.

CISOs often face the reputation of being the "chief information scapegoat officer" due to the disconnect between where cybersecurity responsibility is shared and where technologies pick it up. CISOs need to navigate this complex landscape, considering what factors are controllable and whether they will remain controllable in the future.

Investments in cybersecurity have primarily been made due to the pandemic, a cyberattack, or catching up from underinvestment in the past. As we look ahead, CISOs should also consider "mega trends" that are out of their control, such as technology trends, threats, regulations, and pandemics.

Attackers have matured through nation states and ransomware has shifted its focus from consumers to enterprises. This means that CISOs must be prepared to face increasingly sophisticated threats.

The CISO's influence as a leader is crucial, with the ability to influence risk treatment, organizational risk appetite, and budget. The CISO who can perform well today while keeping an eye on the future is best suited for the next decade of cybersecurity.

However, cybersecurity leaders are grappling with further distrust due to international regulation and emerging technologies. Since 2010, security solutions have adopted cloud technology, AI, and more consumer-like technologies. This has led to a shift in the role of CISOs, with the role becoming more advisory in the next decade, focusing on risk, resiliency, trust, and safety.

International governments may challenge the dominance of cloud infrastructure and platform services, leading to the development of cloud environments purpose-built to address regional and nation-state requirements. This balkanization is a force that cybersecurity leaders will have to contend with, especially if they are operating in leading organizations with global operations.

Gartner's 2020 CIO survey indicates that cybersecurity surpassed AI and Robotic Process Automation (RPA) deployment in investments. This suggests that organizations are recognizing the importance of cybersecurity in the face of increasing threats and complexities.

In the next ten years, uncontrollable factors such as geopolitical tensions, digital transformation complexity, economic instability (e.g., trade wars, financial crises), and rapid industrial changes will influence organizations. These factors will increase the demand for CISOs to focus on adaptive cybersecurity strategies, managing digital risks, and ensuring organizational resilience under uncertainty.

The next 10 years will require an accountability shift in organizations. CISOs should have futurist tendencies to avoid staying reactive and diminishing their ability to lead. By anticipating and adapting to the changes in the digital landscape, CISOs can help their organizations navigate the challenges ahead and thrive in the evolving cybersecurity landscape.