Cybersecurity and AI: Why the Philippines Can’t Afford to Wait

The growing sophistication of cyberattacks is forcing the Philippines to re-examine how it safeguards its most critical assets. Industry experts are sounding the alarm: the government must act quickly to regulate the country’s critical information infrastructure (CII) and strengthen oversight on artificial intelligence (AI) technologies before risks spiral further out of control.

Mark Anthony P. Almodovar of PwC Philippines emphasized that dams, power plants, and telecommunication systems require the “strictest control” to prevent cyber incidents that could disrupt daily life. This urgency has been echoed in multiple legislative proposals from Senate Bill 662 to several House Bills all aimed at ensuring that CII operators adopt stronger measures against evolving cyberthreats.

But the issue extends beyond infrastructure. AI is now being integrated into many organizational processes, and with that comes a new layer of exposure. As Julian Louie Singson of the Cybersecurity Council of the Philippines explained, cybersecurity must stand as the guardrail that prevents malicious actors from exploiting AI-driven tools and systems. While lawmakers have begun to explore the creation of an AI regulatory body, discussions remain in early stages leaving a gap in protections at a time when criminals are moving fast.

Unfortunately, readiness in the Philippines remains low. Cisco’s 2025 Cybersecurity Readiness Index revealed that only 6% of Philippine organizations can be considered “mature” in their defenses, while a majority 52% are still at a “formative” level. Banking, finance, insurance, and telecom firms are generally better prepared, but many manufacturers and small to mid-sized businesses lag behind. Alarmingly, most do not even have a chief information security officer, leaving them vulnerable to increasingly complex threats.

The problem is compounded by talent scarcity. Despite a growing need for cybersecurity experts, local professionals are often lured abroad with more competitive pay. Today, an estimated eight out of ten Filipino cyber experts are working overseas, leaving only around 200 specialists in the country. This brain drain poses a serious challenge to building a robust national cybersecurity framework.

What becomes clear is that cybersecurity can no longer be treated as a siloed IT issue it is an organization-wide, industry-wide, and even national concern. Embedding security into every stage of digital transformation is not optional; it’s essential for resilience.

At Directpath Global Technologies (DGT), we support this vision by helping organizations strengthen their cybersecurity posture. As a Managed Security Service Provider (MSSP), we deliver advanced solutions like Mobile Threat Defense (MTD), Extended Detection and Response (XDR), Vulnerability Assessment and Penetration Testing (VAPT), Vulnerability Risk Management as a Service (VRMaaS), SOC2, WAF, and vCISO services. Through our Artificial Intelligence Division, we also tailor cybersecurity and operational strategies, enabling organizations to adapt intelligently to the evolving threat landscape.

Cyber threats are growing, AI is advancing, and the Philippines cannot afford delay. Whether through stronger legislation, better education, or partnerships with experienced providers, the time to secure our nation’s digital future is now. Source: Business World