June marks National Internet Safety Month, and many organizations return to familiar checklists: update software, rotate passwords, back up your files. While those steps remain useful, today’s cybersecurity challenges are far more complex. From AI-driven attacks to global ransomware campaigns, defending digital infrastructure now requires a broader, more strategic approach.
To understand how cybersecurity must evolve in 2025 and beyond, we asked industry leaders to weigh in. Their insights point to a common theme: building smarter systems, improving collaboration, and treating cybersecurity as an organization-wide priority. This isn’t just about technology anymore. It’s about culture, coordination, and staying a step ahead in a constantly shifting threat landscape.
Resilience Is the New Cybersecurity Imperative
“In a world where everything runs on digital infrastructure, strong passwords and data backups aren’t enough to keep you safe,” said Rob Gutierrez, Senior Cybersecurity and Compliance Manager at Secureframe. “It’s about building resilience across an entire organization.”
Rather than treating security as an isolated function, Gutierrez emphasizes embedding it into the daily rhythm of a business. When governance, risk, and compliance (GRC) become part of everyday operations, security leaders can break down silos, align teams, and make better decisions based on shared data. This integrated approach allows organizations to reduce blind spots and better adapt to fast-changing threats and regulations.
The shift, he adds, is not just technological but strategic. “When everyone works from the same data and the same playbook, it strengthens the digital supply chain and enables faster, more confident responses.”
Cyber Threats Know No Borders
As cyberattacks become increasingly global in scope, cross-border collaboration is a must. Chris Gibson, CEO of Forum of Incident Response and Security Teams (FIRST) says the effectiveness of global threat response hinges on communication and shared trust.
“I see firsthand how effective cross-border communication and collaboration are the backbone of global cybersecurity,” said Gibson. “Cyber threats know no national boundaries, making it essential for incident response teams, researchers, and organizations worldwide to share information, expertise, and best practices in real time.”
That collaboration doesn’t stop at threat detection – it should continue after an incident is resolved. “An effective post-incident review isn’t just about assessing outcomes, it’s about capturing context, identifying structural issues and sharing learnings beyond the immediate security team,” adds Eireann Leverett, a security researcher and advisor to FIRST. It’s this kind of reflective practice that helps organizations improve over time and prevent similar events in the future.
Gibson notes that building this level of coordination requires investing in training that bridges both cultural and technical divides and establishing common standards for incident response. “When we work together – regardless of geography or language – we strengthen the internet’s resilience for everyone, everywhere.”
AI Brings New Threats and Urgency
The explosion of generative AI has brought both productivity gains and new vulnerabilities. As AI systems are increasingly integrated into core business functions, they also open new attack surfaces that many organizations are still learning to defend.
“Safeguarding against AI-specific threats such as prompt injection attacks requires a new level of vigilance,” said Oliver Friedrichs, Founder and CEO of Pangea. “These attacks exploit AI’s non-deterministic nature to manipulate systems into leaking sensitive data or executing unauthorized actions.”
Friedrichs warns that traditional defenses often fall short when faced with AI-based threats. As more companies connect AI agents to APIs and internal systems, the risks escalate. That’s why he recommends a multilayered defense strategy, including content inspection, injection detection, and AI-specific guardrails.
“With most organizations now using GenAI, comprehensive defense strategies are essential to prevent data breaches and operational disruptions,” he said.
These expert insights underscore a critical point: internet safety in 2025 goes far beyond antivirus software or routine audits. Organizations must rethink cybersecurity as an ongoing, organization-wide effort grounded in resilience, collaboration, and preparedness for the AI age.
Internet Safety Month is a timely reminder that staying secure requires a proactive, forward-looking mindset. Whether it’s updating how teams work together or how systems are designed and defended, the work of protecting our digital future is never finished.
