People & Culture

If resilience needed a case study, the sidewalks along the streets of Washington, DC post-snowstorm certainly provided one. Just days after the biggest snowstorm of the new year, something quietly powerful happened inside the walls of George Washington University. Despite icy sidewalks and every excuse to stay home, the Jack Morton Auditorium filled up anyway. Cybersecurity professionals, students, public-sector leaders, and curious newcomers showed up, shook off the cold, and leaned into conversations around cyber resilience that couldn’t have been timelier.

Hosted by The Cyber Guild in partnership with George Washington University, the second annual event of, Stronger Together initiated a full-day cyber event featuring a three-part panel discussion followed by a VIP lunch discussion.

We hear that phrase pop-up in more than one circumstance, we are stronger when we’re together. But what is needed for the ‘strength’ part to be true and who or what (in most cyber incident cases) brings us together?

One of the overarching themes panelists responded to in discussion focused on, what cybersecurity resilience looks like when it collides with the physical world and why the future of the industry depends as much on people, imagination, and trust as it does on systems and tools.

So let’s talk about it. Those four major themes that emerged on February 3rd, shaped by the voices of panelists, attendees, and the shared realization that resilience like warmth on a harsh winter day is built together.

What is Cyber Resilience?

Cyber resilience is the ability of organizations, communities, and critical systems to anticipate, withstand, recover from, and adapt to cyber incidents — especially when digital disruptions impact the physical world.

As cyber threats increasingly impact physical infrastructure, cyber resilience is becoming one of the most critical priorities for governments, organizations, and communities.

The Human Role in Cybersecurity Resilience

Several panelists returned to the same idea from different angles…systems fail quietly until the consequences are loud.

Cybersecurity professionals are increasingly being asked to look beyond outages and technical disruptions and ask a harder question: What is the true impact on human life?

Losing power is one thing. Losing access to clean drinking water is another.

This reframing also changes how we think about first responders. In many scenarios, the first people to act won’t be cybersecurity teams or law enforcement. It will be neighbors, coworkers, or strangers nearby. In that sense, cybersecurity becomes deeply human work, rooted in trust, awareness, and preparedness at every level of society.

How often do we rely solely on or immediately turn towards those formally designated as leaders, to make the decision about what the next move should be? The truth is, probably more often than we should.

Empowering people across organizations to make the right decision in the moment without waiting for perfect instructions is essential. That requires a common executive language, shared decision-making frameworks, and a willingness to anticipate failure rather than assume continuity.

Because, as one panelist reminded the audience, there is no “normal” baseline anymore, only deviations we must be ready to recognize and respond to.

Why Cyber Resilience Matters for Critical Infrastructure

Cybersecurity is a powerhouse, but one that must operate with interconnectedness. One of the clearest messages from the panels was that security is a full ecosystem, not a single organization, tool, or authority.

When cyber incidents intersect with the physical world, (namely: transportation, utilities, public events, or emergency response,) decision-making frameworks have to adapt in real time.

As one panelist noted, the challenge becomes asking whether the information you have is still trustworthy, and whether you can act confidently when communications are degraded or incomplete.

That’s where stakeholder mapping and trusted relationships come in. Cybersecurity teams, physical security personnel, local law enforcement, city and state agencies, and emergency responders all need to operate as a combined force. Communication must run in parallel, not in sequence, with law enforcement, and it must be continuous throughout an incident.

Strong cybersecurity ecosystems are built before a crisis. Information sharing ahead of major public events lays the foundation, but so does planning for the moments when communication fails entirely. As emphasized during the discussion, teams must be trained to make decisions in the absence of perfect information.

Or, as one speaker put it more bluntly, cyber attackers love chaos and fragmentation. Our job is to deny them both.

A World of Pure ImagiNation

What if you looked at this a different way. Take a breath and use your imagination. Not the typical request you may get at work, right? For the evolving cyber threat ecosystem, our panelists asked the audience, “how can we out-imagine our adversaries?”

Threat actors are already using creativity to exploit legacy systems, supply chains, operational technology, and emerging tools like adversarial AI and weaponized drones. The growing cyber-attack surface demands not just better technology, but more imaginative thinking.

That imagination factor shows up in unexpected places.

Perhaps the timeliest example of this shows up when preparing to design temporary “little worlds” at grand-scale events like the Olympics. During large-scale sporting events, blending IT and OT security, staging resources in advance, leveraging National Guard support, and running cross-sector exercises brings a wide range of experts to one location who may have never worked together before.

Through the lens of one speaker, “resilience isn’t built in isolation, it’s built together.” This starts by asking better questions:

• What does the full ecosystem look like?
• What or who are we actually trying to protect?
• How do we balance creating seamless public experiences with the responsibility to manage cyber risk?

Sessions like the one held on a frigid cold winter day, when showing up takes literal effort and climbing piles of snow, demonstrate a necessary part of imaginative work. When great minds willing to step into the imaginative zone work together, they help us reframe problems, challenge assumptions, and prepare not just for the next outage, but for the next generation.

Tomorrow Will Come. Let’s Invest in the Future of Cybersecurity

Looking around at a room filled with curious gazes, fixed on the knowledge and insights shared by each panelist, proved that despite the arctic air, people want to be part of this field or at the very least want to learn what they can do to support professionals who protect our society.

The panelists emphasized continuous training as a cornerstone of future success. “Prepare, rehearse, and train” wasn’t just a soundbite, it was a call to action. Recovery teams train differently than prevention teams. Tabletop exercises and war-gaming scenarios can help both to anticipate failures, understand interdependencies, and rehearse decision-making under pressure.

But training isn’t only about today’s workforce. It’s also about asking ourselves, who’s missing from the table?

Future cyber resilience depends on bringing together people with diverse backgrounds, those with international experience, those transitioning careers, and those entering cybersecurity from various fields of study or trade.

This includes students like Sarah, an event attendee working in IT while studying to transition into cybersecurity. She found the event through a simple online search and left encouraged, sharing that the panel’s focus on “the human side of cybersecurity made the field feel accessible rather than intimidating.”

That accessibility matters. We’re not just building systems; we’re building the supply chain of human talent.

The Quiet Work: How Organizations Build Cybersecurity Resilience Over Time

A Cyber Guild board member, Lillian Dunlevy, summed it up simply for our audience, this is about trust in networks and forward thinkers moving in that direction.

When things are working well, when daily life is seemingly uninterrupted by a major event, there’s no panic and there are even fewer questions asked. It’s the quiet confidence that allows society to function, even as cyber threats grow more complex. But that quiet work becomes harder when teams are exhausted, burnt out, or disconnected.

Looking back slightly further into our timeline at early days during the post-pandemic era, our experts acknowledge that there’s an opportunity to rebuild this field with intention by investing in people, strengthening partnerships, building cyber resilience, and embracing creativity as a core competency.

So, to everyone who showed up that snowy day in DC: thank you. You proved that resilience doesn’t wait for perfect conditions. Sometimes, it starts with a full room, a shared conversation, and the willingness to brave the cold for something that matters.