The latest episode of IoT Unplugged featured Devin Yaung, Senior Vice President, Group Enterprise IoT Products & Services at NTT DATA, as he shared his insights into IoT, cybersecurity and the wider technological landscape.
Cybersecurity is a primary concern in IoT, with vulnerabilities ranging from legacy systems to newer, intelligent devices. Yaung emphasised the need for a holistic approach to security, addressing vulnerabilities across the entire value chain—from devices to users. He also highlighted the pervasive risks, such as having ‘backdoor’ entry points, citing an infamous example where hackers accessed sensitive casino data through a smart thermostat, showing that as devices become more connected, both manufacturers and end users must take into account cybersecurity.
To mitigate these aforementioned risks, organisations must consider security by design, assess vulnerabilities comprehensively, and implement layered protection strategies, including secure network architectures and robust risk assessments.
Yaung also underscored the critical importance of awareness and discovery tools to identify network vulnerabilities, especially given the proliferation of legacy systems and outdated devices in industrial and commercial settings. He explained that a comprehensive inventory of devices and systems, coupled with a proactive risk management strategy, is essential.
“There are just so many entry points and vulnerability points today … there are tools that do that, but have you invested in the tools?” said Yaung. “It’s like insurance: do I really believe I need it, or am I just hedging that hopefully, you know, this is an outlier case and I have probably a 5% chance of being hacked? And it’s not a one size fits all.”
Organisations must invest in private networks and advanced tools to enhance security, however, budget constraints and varying levels of digital maturity among organisations often result in inconsistent adoption of robust cybersecurity measures.
IoT implementations are complex and require a balanced focus on four key aspects: security and privacy, ROI, user experience, and technology. Yaung explained that many projects fail to deliver value because they neglect end-user involvement, overburden users with irrelevant alerts, or fail to address cultural resistance to change. He stressed that user-centric design and clear communication about the benefits of IoT are vital to achieving buy-in and ensuring operational success.
In conclusion, while IoT and AI promise significant efficiencies and innovations, their adoption necessitates a thoughtful, systematic approach. Security and privacy must underpin every stage of the implementation process, while organisations must also address regulatory, financial, and cultural considerations. As IoT scales, organisations that align their technological strategies with robust processes and user engagement will be better positioned to harness its transformative potential.
If you’d like to learn more about Devin Yaung’s insights into cybersecurity risks and best practices, tune into the full podcast episode, which is available on Spotify, Apple Podcasts and at the link below.
There’s plenty of other editorial on our sister site, Electronic Specifier! Or you can always join in the conversation by commenting below or visiting our LinkedIn page.