Marin Ivezic

Many organizations are in the middle of cryptographic inventory efforts and formulating a strategy for the coming quantum threat. Or at least they should be. Regulators and national security agencies worldwide have issued roadmaps, guidelines, and even regulations urging companies to prepare for the quantum threat, and almost all of them agree on one thing: start with a cryptographic inventory.

In theory, identifying every instance of cryptography in your IT and OT environment is the key first step toward quantum readiness. In practice, however, there is a lot of confusion and challenges around how to do this effectively.

On one hand, some vendors promise a "silver bullet" tool that will automatically find and fix all your cryptographic usages. Some consultants even claim they can produce a usable inventory just by interviewing a few stakeholders. On the other hand, security teams that have attempted comprehensive cryptographic inventories across global, distributed and heterogenous estates quickly realized that it could take them years - if it would even possible to achieve (close to) 100% coverage. So, what’s the pragmatic path forward?

In this webinar, Marin Ivezic will share a realistic approach to cryptographic inventory and outline several parallel steps organizations should start as part of their quantum readiness efforts. Drawing on experience leading multiple quantum readiness programs as both an advisor and a CISO, Marin will discuss how to balance thoroughness with practicality.

The session will cover practical approaches, key challenges and proposed solutions, discuss different classes of cryptographic discovery and management tools (without endorsing any specific product), and common mistakes to avoid, learned from real-world projects.

Attendees will gain practical guidance on kick-starting their organization’s quantum readiness program - from mapping out cryptographic assets to planning for a smooth transition to quantum-resistant security.