Cybersecurity Shifts Focus to Business Continuity as Threats Escalate
Cybersecurity is no longer solely an IT concern; it’s rapidly becoming a core business mandate. Recent developments indicate a significant shift in how organizations approach security, with a growing emphasis on resilience and business continuity. Experts predict a pivotal change by 2026, driven by the increasing sophistication of cyberattacks and the expanding attack surface.
The CISO’s Evolving Role: From Protector to Steward
Fortinet forecasts that 2026 will be a turning point, marking the year when Chief Information Security Officers (CISOs) transition from solely protecting data to actively stewarding business continuity. This evolution is fueled by the systemic integration of artificial intelligence (AI) and the accelerating pace of threats. According to Fortinet, mitigating risks arising from automated decisions made at machine speed requires a proactive, business-aligned security strategy.
This strategic shift is reflected in Fortinet’s financial performance. The company reported a 14% annual revenue increase, reaching US$6.8 billion in fiscal year 2025, with a non-GAAP operating margin of 35%. Fortinet’s Founder, Chairman, and CEO, Ken Xie, attributes this growth to the convergence of networking and security, particularly within unified Secure Access Service Edge (SASE) and security operations markets.
Mexico Faces Heightened Cyber Risk, Demanding C-Suite Involvement
The threat landscape is particularly volatile in Mexico, prompting Microsoft to adopt a “security-first” engineering culture under its Secure Future Initiative (SFI). Ricardo Garita, Cybersecurity Director for Mexico, Central America, and the Caribbean at Microsoft, anticipates that identity-based attacks and ransomware will dominate the region by 2026.
This escalating risk necessitates a fundamental change in how cybersecurity is perceived and managed. Microsoft argues that cybersecurity must be treated as a core business risk, requiring the direct involvement of the C-suite rather than being relegated to the IT department.
AI’s Identity Challenge: A Looming Threat
The rise of AI introduces new complexities to cybersecurity, particularly concerning identity management. Juan Carlos Carrillo Herrera, CEO of OneSec, highlights a critical parallel to the 2026 Formula 1 technical reset, noting that the sheer volume of machine identities—now outnumbering humans by a ratio of 80:1—could hinder AI’s potential.
For Mexican firms aiming to capitalize on the projected US$15.7 trillion global GDP boost driven by AI, mastering a “local setup” that respects regional privacy laws and investing in upskilling their cybersecurity teams is paramount.
Silos as the Primary Failure Point
Traditional, fragmented risk management models are proving inadequate in the face of today’s interconnected threats. As Alfredo González, Founder & CEO of Nautech de México, explains, modern cyberattacks are “compound risks”—complex combinations of technological, human, operational, economic, and geopolitical factors. These interconnected threats bypass organizational silos, rendering traditional, compartmentalized security approaches ineffective.
Organizations must break down these silos and adopt a holistic, integrated approach to risk management to navigate the increasingly complex and rapidly evolving cybersecurity landscape. The future of cybersecurity hinges on recognizing that the greatest vulnerability isn’t the threat itself, but the internal divisions that prevent a unified defense.
