European Companies Insufficiently Prepared for Risks of Quantum Computing

ISACA conducted research on the expectations of European IT professionals regarding quantum computing.

Quantum computing brings new opportunities, but also significant risks for cybersecurity and business continuity. Yet only a small minority of European organizations have a strategy ready to prepare for this.

Quantum Computing Causes Uncertainty About Cybersecurity

Research by ISACA shows that 67 percent of European IT professionals expect quantum computing to increase or change cybersecurity risks in the next ten years. However, only 4 percent say their organization has a clear quantum strategy. This is despite recent developments accelerating the arrival of quantum computing, which is emphasized by Microsoft among others.

In addition to the impact on cybersecurity, IT professionals also fear that quantum computing could disrupt existing business models. For example, 67 percent worry that quantum computers could break current internet encryption before new cryptography standards are widely implemented. Although 56 percent see quantum as a source of business opportunities, concerns about the risks remain high.

According to Chris Dimitriadis, Chief Global Strategy Officer at ISACA, recent breakthroughs could mean that quantum computing will find its way into daily applications within a few years. He believes this will not only enhance the capabilities of AI but also increase the associated risks.

European Companies Insufficiently Prepared for Risks of Quantum Computing

Skills and Strategies Fall Short

Despite the expected impact of quantum computing, many organizations lack thoughtful preparation. More than half of IT professionals indicate that quantum computing is not part of their business strategy or roadmap, and there are no plans to change this. Additionally, 40 percent have not yet considered implementing post-quantum cryptography.

Knowledge about quantum computing also appears to be limited. Only 2 percent of respondents say they have a good understanding of quantum applications. The same applies to NIST’s new cryptography standards: only 5 percent know these well, although NIST has been working on them for over ten years.

European institutions such as ENISA and the EuroHPC Joint Undertaking emphasize the importance of swift action. Initiatives like the Quantum Flagship and Digital Europe should ensure a better-prepared workforce. ISACA advocates for organizations to invest now in quantum skills and strategies to safely and effectively adapt to a future where quantum computing plays a central role.