Cyber resilience in the digital age depends not on stronger walls, but on smarter innovation. For the Global South, reimagining tools, institutions, and partnerships is essential to absorb shocks and sustain digital transformation amid escalating cyber threats.
Image Source: Getty Images
This essay is part of the series: World Creativity and Innovation Day 2026: Sparks and Shields
With an estimated share of 15 percent of global GDP, amounting to US$16 trillion, the digital economy has rapidly become a core pillar of global economic growth. Undergirding this exponential growth is the digital infrastructure comprising, among others, terrestrial fibre optics and undersea cables, satellite communications, data centres, and 5G connectivity. Sitting atop these are critical services and platforms, such as national identity systems and digital payment stacks. Yet, as global dependence on these systems has grown, their vulnerabilities and exposure to ever-evolving threats, including ransomware attacks, state-sponsored campaigns and supply chain breaches, have also expanded. As a result, the cybersecurity of these systems has become the core concern for governments worldwide.
Cyber innovation goes well beyond the development of new technologies. It denotes a fundamental reimagination of tools, processes, and institutions that together shape a nation’s or organisation’s capacity to detect, deter, and respond to cyber threats more effectively and efficiently.
Given their significance, the resilience of the entire digital economy matters more than just the security of individual systems. This includes the ability to absorb disruption, maintain continuity and swiftly recover systems from successful cyberattacks. However, the Global South often struggles with governance, resources and talent challenges in mitigating threats and building cyber resilience. In this context, innovation plays a critical role, helping bridge gaps in funding, talent, and institutional capacity.
Cyber innovation goes well beyond the development of new technologies. It denotes a fundamental reimagination of tools, processes, and institutions that together shape a nation’s or organisation’s capacity to detect, deter, and respond to cyber threats more effectively and efficiently. Framed in this sense, innovation does not presume large budgets or advanced research infrastructure. Rather, ingenuity and willingness to experiment are the enablers of meaningful cyber innovation.
This conceptualisation stands in direct contrast to the prevalent paradigm of cybersecurity that privileges protection through perimeter hardening, erecting firewalls and keeping out adversaries. The rapidly evolving threat landscape has made this paradigm insufficient and irrelevant. With the breakneck pace of advancement in artificial intelligence (AI), secure networks have become as vulnerable to breaches and intrusions as unpatched systems. Consequently, the question is no longer if a cyberattack will occur, but when.
With the breakneck pace of advancement in artificial intelligence (AI), secure networks have become as vulnerable to breaches and intrusions as unpatched systems. Consequently, the question is no longer if a cyberattack will occur, but when.
Innovation plays a pivotal role here in building cyber resilience. While threat actors are using AI and machine learning to launch sophisticated cyberattacks, the same tech tools are also heralding a transformational shift from reactive to predictive security. This is especially valuable for the Global South, which often grapples with limited funding, a talent crunch, and limited access to advanced technologies for building cyber resilience. By leveraging open-source AI tools and cloud-based analytics, these countries can prioritise high-impact vulnerabilities in critical sectors and optimise limited resources.
The rapid advancement of AI has acted as a force multiplier for cyber resilience.
For instance, using AI, anomaly detection proactively hunts for vulnerabilities before they materialise into threats. Furthermore, cloud native security and infrastructure-as-code are empowering organisations to anticipate and prevent threats before they occur. This is especially helpful for resource-constrained government agencies, as these AI-enabled automation tools can help them manage and analyse vast volumes of data more quickly and effectively.
Likewise, zero-trust architecture by implementing the principle of “never trust, always verify,” limits an attacker’s ability to move through the network after initial compromise. Governments worldwide are now implementing this to secure their distributed mobile-first digital networks. All these tools are not just preventing attacks; they are containing them, which is a core resilience function.
Innovation, however, is not just limited to the technological domain. Some countries are also experimenting with open-source tools to build resilience. The use of open-source tools enables countries and organisations to deploy transparent, cost-effective solutions and customise defence posture against evolving cyber threats. By eschewing restrictions imposed by vendor-controlled, proprietary, closed-source software, countries and organisations are able to achieve collective oversight and resilience.
However, the promising opportunities offered by cyber innovation must also be juxtaposed with the realities that countries in the Global South face. As mentioned previously, while these countries face resource and talent challenges in mitigating cyber threats, they encounter similar challenges in innovation.
The most sustainable cyber innovation strategies will need to be a hybrid approach of adopting best practices from the Global North while also promoting domestic innovation capabilities in the Global South. This means prioritising open-source tools and cultivating talent through targeted education and skill-building programmes.
In the Global North, innovation ecosystems have taken decades to mature, with support from the government. While the Global South shows strong innovation potential, not all countries can realise it due to chronic underfunding and a shortage of skilled human resources. Consequently, they are dependent on Western tech tools to achieve resilience. This can potentially create new tech dependency. Therefore, the most sustainable cyber innovation strategies will need to be a hybrid approach of adopting best practices from the Global North while also promoting domestic innovation capabilities in the Global South. This means prioritising open-source tools and cultivating talent through targeted education and skill-building programmes.
Regional cooperation frameworks through bilateral and minilateral mechanisms offer another potential avenue for building resilience. Through collective efforts, they can achieve resilience at a scale that individual states cannot match. The ASEAN-Japan Cybersecurity Capacity Building Centre and the African Union’s Malabo Convention on Cyber Security and Personal Data Protection provide templates for pooling resources to tackle cyber threats.
The centrality of digital infrastructure to public service delivery and economic growth has made security and resilience critical. For the Global South, which has leapfrogged legacy systems to achieve digital transformation, this has become an elevated policy priority. Cyber innovation through tech tools and regional collaborative frameworks offers a credible pathway to achieve cyber resilience. However, to yield substantive results, the Global South also needs to invest in human capital, institutional capacity, and domestic innovation ecosystems.
The fractured geopolitical landscape and erosion of global cyber norms provide a compelling context for the Global South to invest in and innovate within the cyber domain to unlock the full potential of the digital economy. Ultimately, the test of cyber resilience is not whether the attack is prevented, but whether the country or organisation can absorb the shock of a successful cyberattack, restore functionality, and maintain continuity.
Sameer Patil is the Director of the Centre for Security, Strategy, and Technology at the Observer Research Foundation.
The views expressed above belong to the author(s). ORF research and analyses now available on Telegram! Click here to access our curated content — blogs, longforms and interviews.
Sameer Patil is Director, Centre for Security, Strategy and Technology at the Observer Research Foundation. Based out of ORF’s Mumbai centre, his work focuses on ...
Read More +
 (1).jpg)
PREV
