In anticipation of GSX, we sat down with presenters of upcoming sessions in order to get a better understanding of the topics at hand. This week we are featuring, “Supply Chain Resilience in an Era of Global Disruption: Protecting Physical Assets and Information Flow,” presented by M. Brian Reid, CPP, at Confidential. Read on for what he had to say and don’t forget to register for GSX 2025!
Q: How did you become interested in your topic?
A: As was likely the case for many who have an interest in this topic, the COVID-19 pandemic heightened my interest in this specific subject. Before that, my work in the fields of business continuity and critical infrastructure assessment focused on in-depth analysis of the field. As the progressive dependency on technology strengthened and deepened the nexus between physical and logical security, I recognized the increased opportunity for events and bad actors to exploit weaknesses in the supply chain and the sheer impact this could have on the availability of goods and services but also the economic fallout across the globe in many instances.
Q: Tell us about your presentation and why security professionals should have this topic on their radar.
A: Supply chain resilience represents a critical point of convergence where traditional physical security and cybersecurity intersect with operational continuity, making it essential for security professionals to understand the importance of this concept. The impact of a supply chain disruption can be felt directly by an organization as well as indirectly. The resultant implications can also become interwoven with other aspects of the business, thereby increasing the overall organizational risk profile. Effective security management works much better when we, as security professionals, are as proactive as possible.
Q: What advice would you give security professionals interested in this topic?
A: If I could offer some words of advice to mid-career and early-career security professionals, it would hinge on knowledge and networks. Expand your knowledge base beyond traditional physical security silos by building working relationships with and developing an understanding of cybersecurity, procurement, operations, logistics, and business continuity teams. Supply chain resilience requires practitioners to be able to speak the language of security and continuity, as well as possess a solid understanding of operational concepts and best practices. Invest time in understanding how your organization’s supply chains function at a granular level, and also examine the broader protection picture to determine how physical and cybersecurity integrate with business continuity. Additionally, seek opportunities to engage with other professionals in a collaborative and learning-focused environment, such as GSX 2025.
Q: How do you see this issue evolving in the next 2-5 years?
A: We live in a rapidly evolving and complex world. Anyone who claims to be able to see future trends 10 years out is either a direct descendant of the French seer Nostradamus or has not considered how interconnected and interdependent most organizational systems are. This rapid rate of change also creates technological obsolescence within a two-period or less timeframe, especially for web-enabled services, many of which manage the supply chain. Technology infrastructure also requires continuous updates; failure diminishes the efficacy of the tools used to detect and protect against threats. However, there are specific general trends that can be extrapolated into the future, allowing for an awareness of what’s on the horizon. These trends and their potential impacts are rooted in regulatory and legal changes, particularly in the EU at this time, such as the CRA and DORA, as well as the use or misuse of emerging technologies, including Artificial Intelligence, among others.
Q: Why do you attend GSX?
A: I attend GSX because it provides an environment filled with exceptional networking and learning opportunities through the various educational sessions. It is a must-attend event for security professionals seeking to stay current with the latest security industry trends and best-in-class frameworks.