About the conference

These threats continue to be prevalent. Ransomware attacks have become more sophisticated, often involving advanced persistent threats (APTs), while phishing campaigns are increasingly leveraging AI to craft convincing messages.

Sweden is in the process of transposing the NIS2 Directive into national law through the proposed Cybersecurity Act. This legislation aims to enhance cybersecurity across 18 critical sectors, including energy, transport, and healthcare. It introduces stricter requirements for incident reporting, risk management, and supply chain security. ​

AI is increasingly being integrated into cybersecurity strategies for threat detection, incident response, and predictive analytics. The European Commission has announced significant investments in AI and cybersecurity to bolster digital resilience.

With the rise of cloud services, securing cloud infrastructures has become paramount. The EU is working on a cybersecurity certification scheme for cloud services to ensure compliance with stringent privacy and data sovereignty requirements. ​

As organizations increasingly adopt technologies like IoT, 5G, AI, and quantum computing, the threat landscape evolves. These innovations bring new vulnerabilities that require tailored security approaches. EU policy and Swedish digital strategies are prioritizing resilience for these emerging technologies, with growing investment and regulation in place.

Sweden’s strategic position in Europe, with key roles in the EU and NATO, makes it a prime target for state-sponsored cyber espionage. Hackers may aim to steal intelligence on Swedish policies, military capabilities, or economic strategies. Sweden’s prominence in tech and defense further increases its vulnerability to sophisticated cyberattacks. The current global geopolitical uncertainty—marked by shifting alliances and rising tensions—intensifies the risk, making Sweden’s cybersecurity more critical than ever.

Collaboration between public authorities and private entities is essential for effective cybersecurity. Initiatives like information sharing, joint exercises, and coordinated response plans are being emphasized to enhance collective resilience.​

Human error remains a significant vulnerability. Training programs focusing on cybersecurity awareness, phishing simulations, and promoting a culture of security are crucial in reducing risks associated with the human factor.

IAM isn’t just a technical control — it’s a strategic pillar.  IAM’s role in enabling secure digital transformation, meeting regulatory demands like NIS2, and empowering business units through decentralized, governed access.