Blog
Your practical roadmap to quantum-safe security
Quantum risk is no longer a distant concern – it is a planning challenge that organisations need to address now. This article outlines why a clear roadmap to post-quantum cryptography matters, how standards and regulation are shaping the transition, and the practical steps organisations can take over the next 12 months to build resilience without unnecessary disruption.
Jump to:
- Why the roadmap matters now
- The risk is not only when the world knows
- Standards are emerging – and regulation is adding momentum
- What a practical roadmap looks like
- What organisations should do in the next 12 months
- The goal is not panic – it is preparedness
By this point in the quantum conversation, most organisations understand the headline risk. Quantum computers are expected to undermine much of today’s public-key cryptography, and the transition to post-quantum cryptography will take time. The real challenge, however, is not simply understanding the threat. It is working out how to respond in a way that is practical, proportionate and aligned with the reality of existing systems.
This is why a roadmap matters. For most organisations, quantum readiness is not a single project or a one-off upgrade. It is a phased migration that touches policy, architecture, procurement, compliance and day-to-day operations. The good news is that the direction of travel is becoming clearer. Standards now exist, regulators are setting expectations, and there are practical steps organisations can begin taking now rather than waiting for perfect certainty.
Why the roadmap matters now
One reason the conversation is changing is that quantum research is no longer progressing along a single, predictable path. Different hardware approaches are being explored at the same time, major technology providers are publishing increasingly ambitious roadmaps, and governments are investing for both commercial and strategic reasons. That does not mean a breakthrough is guaranteed on any given date. It does mean that estimates can move forward more quickly than many security teams are used to.
Another factor is the growing role of AI in scientific and engineering research. As AI is used to support modelling, optimisation and experimentation, it has the potential to speed up parts of the research and development process around quantum systems as well. This does not make predictions certain, but it does add to the sense that long timelines should not be taken for granted. When several technologies begin reinforcing one another, change can arrive earlier than expected.
The risk is not only when the world knows
One of the biggest misconceptions is that moving to post-quantum cryptography will be a straightforward technical update. In some places it may be. In others, cryptography is buried deep inside applications, devices, certificates, VPNs, identity systems and supplier platforms. It may be hard-coded, tightly coupled to older trust models, or dependent on vendors that are not yet ready. That means the transition needs to be managed as a programme of discovery, prioritisation and staged implementation.
It also needs to start before deadlines feel immediate. For organisations handling long-lived sensitive data, the risk is already here because encrypted information can be harvested now and decrypted later. If moving to post-quantum cryptography will take years, waiting for certainty on timing is risky because it reduces the time available to prepare.
Standards are emerging – and regulation is adding momentum
The industry is no longer waiting for post-quantum cryptography to be defined. New algorithms have now been standardised to replace vulnerable public-key methods such as RSA and elliptic curve cryptography in key exchange and digital signatures. That does not remove the complexity of implementation, but it does mean the conversation has shifted from theory to execution.
The regulatory picture is also becoming clearer. In June 2025, the EU and Member States published a coordinated roadmap for the transition to post-quantum cryptography. At a high level, it points to three milestones: begin transition activities and national planning by the end of 2026, complete transition for high-risk use cases as soon as possible and no later than the end of 2030, and work towards broader migration across systems by 2035. The same roadmap also points towards hybrid approaches during the transition, combining classical and post-quantum methods where that is practical.
For organisations in Europe, this is not just a technical trend. It sits alongside a broader regulatory direction. NIS2 raises expectations on cybersecurity risk management for essential and important entities. The Cyber Resilience Act increases pressure on digital products to be secure by design and support future-safe updates. DORA reinforces the need for resilience and strong ICT risk management in financial services. None of these measures turns post-quantum migration into a box-ticking exercise, but together they make it clear that cryptographic resilience is moving into mainstream governance.
What a practical roadmap looks like
The first step is organisational readiness. Someone needs to own the problem. In many businesses, post-quantum migration falls between security, infrastructure, enterprise architecture, compliance and procurement. Without clear sponsorship and clear ownership, it is easy for the issue to remain important in principle but unaddressed in practice.
From there, organisations need visibility. A cryptographic inventory should identify where algorithms, certificates, key exchanges, libraries and hardware security modules are used across the environment. This includes infrastructure, cloud services, applications, partner connections, embedded systems and legacy platforms. Discovery can draw on system and application logs, network sensors, code analysis and structured interviews with application and service owners. The principle is simple: you cannot migrate what you cannot see.
Once that view exists, the next step is prioritisation. Not every system needs to move first. Priority should go to high-risk use cases – internet-facing services, identity and access systems, digital signing processes, regulated environments, supplier dependencies, and any data that must remain confidential for many years. This is where the regulatory roadmap and the business roadmap should meet: focus first on what would create the greatest operational, legal or reputational impact if trust were lost.
The next requirement is cryptographic agility. In practical terms, that means separating cryptography from tightly coupled application logic so that algorithms can be changed without rebuilding entire systems. During the transition, this will often involve hybrid implementations, where classical and post-quantum approaches are used together while standards, tooling and vendor support continue to mature. Hybrid models are not the end state, but they can provide a realistic bridge between today’s dependencies and tomorrow’s requirements.
What organisations should do in the next 12 months
Over the next year, most organisations do not need to complete a full migration. They do need to establish a team, define migration goals, perform a quantum risk analysis and begin building a cryptographic inventory. They should also assess which suppliers and products can support a quantum-safe upgrade path, and where they may need contractual or architectural changes.
At the same time, it makes sense to start with pilot use cases. Internet-exposed applications, browser-based services, VPN access, client devices and critical supplier integrations are often good places to begin because they combine real exposure with a relatively clear business case. Organisations should also begin asking vendors direct questions about post-quantum readiness, cryptographic agility and support for hybrid deployments. If suppliers cannot answer those questions now, that in itself is useful information.
The goal is not panic – it is preparedness
Post-quantum migration is not a reason for panic, and it is not a prediction that every organisation must replace everything immediately. It is a recognition that trust depends on preparation. The standards are emerging, the regulatory direction is becoming clearer, and the organisations that act early will be better placed to move in a controlled way rather than under pressure. In that sense, a practical roadmap to quantum-safe security is not only about meeting a future requirement. It is about building the visibility, agility and resilience that modern cybersecurity increasingly demands.
Prepare for the quantum threat with Conscia’s post-quantum encryption em(…)
Prepare for the quantum threat. Join Conscia’s free six-part email learning journey to understand post-quantum encryption, assess the risks, and learn how to start your journey towards quantum-safe se…
About the author
Kristian von Staffeldt
Chief Security Architect, Conscia Denmark
Kristian is Chief Security Architect at Conscia. He translates the technical aspects of digital security solutions and explains their value to our customers' leadership teams. He has a deep technical background — educated at DTU and certified at the highest levels from Cisco (CCIE), Palo Alto (CNSE) and VMware (VCP-NV), and is also an AWS architect. Kristian uses his technical expertise to explain IT security and its value in a way that everyone can understand.
Related
