As cybersecurity experts and leaders prepare to come together for Security Congress 2025, we have gathered over 600 submissions of industry knowledge. This impressive volume of submissions has helped us uncover five critical trends that professionals need to know about.

The submission insights provide cybersecurity professionals with an understanding of what is top of mind for their peers, along with how to proactively shape and refine their security strategies. As a result, we have developed an agenda that addresses these key concerns and emerging trends, and we are confident that the sessions will offer some of the best actionable intelligence to date.

Here are the top five trends that will be front and center at ISC2 Security Congress 2025:

  1. The Rise of Agentic AI

Building upon last year's focus on the emergence of generative artificial intelligence, AI remains a dominant theme at this year's Security Congress. AI continues to rapidly evolve and so have the conversations surrounding it. This year, we are seeing a greater focus on agentic AI. 

These sophisticated systems possess the ability to autonomously make critical decisions for organizations without direct human intervention. While agentic AI promises substantial efficiency gains, particularly within Security Operations Centers (SOCs), it also introduces novel risks. Potential vulnerabilities and the inherent lack of constant human oversight require careful consideration from cybersecurity professionals and holistic security strategies that promote growth while preventing harm.

  1. GRC and the CMMC 

Major changes within the U.S. Department of Defense has resulted in businesses incorporating the Cybersecurity Maturity Model Certification (CMMC) into their contracts. This makes Governance, Risk, and Compliance (GRC) even more crucial in today’s evolving cyber and regulatory landscape. 

The need for strategies surrounding cost implications, resource allocation and ensuring ongoing compliance is a focus of this year’s Security Congress, as industry leaders provide steadfast guidance on what’s next for the industry.

  1. Preparing for the Post-Quantum Era

It’s not a matter of if it will happen, but when. Powerful quantum computers that are capable of breaking traditional encryption methods – often referred to as Q-Day – are a nearby threat. Malicious actors take advantage of this anxiety and employ a “steal now, decrypt later” strategy. In response, the industry is actively pushing for the adoption of post-quantum cryptography.

The National Institute of Standards and Technology (NIST) released an initial set of three post-quantum cryptographic standards in August 2024. Raising awareness and encouraging proactive steps towards implementing these new safeguards is an important focus of this year’s conference.

  1. Ethics and Guidance for CISOs

Now more than ever, it is crucial for CISOs to gain essential insights to effectively navigate new and challenging territories. The evolving pressures and complexities faced by security leaders have made it difficult to transition into new roles, secure crucial project funding, and build security programs from the ground up, all while grappling with modern ethical dilemmas. 

This year, there has been a call for actionable guidance, practical strategies, and ethical frameworks tailored for the unique challenges faced by CISOs.

  1. The Emerging Cyber Workforce

Rapid advancements in technologies like AI and automation are reshaping job roles and responsibilities in cybersecurity. This has brought the industry to a pivotal point in 2025, revealing a critical trend: a growing demand for new skillsets within the cybersecurity workforce to navigate emerging technologies.

The overwhelming number of submissions to the new "Careers” category by professionals at top organizations confirms this trend. Security Congress will feature insightful presentations focused on the crucial new skills and adaptability required for career success in cybersecurity.

Get the Latest Research and More

Getting ahead of these key trends is essential for navigating the increasingly complex cybersecurity terrain. The research and insights presented at Security Congress 2025 will be instrumental in shaping effective security strategies for the year ahead.

Stay tuned for deep dives into each of these different content areas! Register forSecurity Congress 2025 to gain firsthand knowledge and prepare for the challenges and opportunities that lie ahead.

Related Insights: