That computers with incorrect time settings can cause problems is well known, but few realize how crucial accurate time truly is for cybersecurity. From authentication to certificates and forensics - without the correct time, security stops working, and ultimately, so does our society. Cybersecurity expert Emanuel Lipschütz at Cyber Defencely explains why.

When the NIS Directive was implemented into Swedish law in 2018, we spoke of a new era for cybersecurity. But it may never have become the systemic shift many had hoped for. Now, with the new proposed regulations following from NIS2 - coming into force in 2025/2026 - we are facing something entirely different: a framework that fundamentally changes responsibilities, scope, and expectations.

All too often, cybersecurity is seen as something handled solely by the IT department. This is one of the main reasons why overall security maturity remains low in many organizations. Especially now, as both NIS2 and the Swedish Cybersecurity Act impose requirements for governance, structure, and accountability all the way up to executive management, this view becomes particularly counterproductive, especially in a societal context given today’s threat landscape.

After nearly three decades at the European cybersecurity company Conscia, which he originally founded in Sweden as Netsafe at just 17 years old, Emanuel Lipschütz has taken the next step. With his new company, Cyber Defencely, he and co-founder Daniel Reinholdsson aim to challenge the way companies and organizations approach information security – and to build real resilience.

Swedish companies' cybersecurity preparedness has essentially stagnated over the past year, despite increasingly sophisticated threats and a dramatic rise in AI-driven attacks.