As part of an online miniseries, Adam Boynton, Senior Security Strategy Manager, Jamf discusses his industry predictions for 2026.
Can you tell me a bit about yourself, your job role and how long you have been at the company?
I work on implementing Jamf’s strategy across EMEIA, which means I focus on advancing the adoption of Apple-native management and security solutions in the enterprise.
My job sits at the intersection of technology, user experience and business outcomes – helping organisations embrace Apple at scale without compromising security.
I’ve technically been with Jamf for nearly 11 years now. I joined Wandera at the start of 2015 and when Jamf acquired the company in 2021, I continued the journey under the Jamf banner.
What are some of the key trends and predictions you think we will see in the security industry in 2026?
In 2026, deepfake-driven impersonation attacks will escalate far beyond what we’re currently seeing.
The public availability of realistic, real-time deepfake tools means attackers can now convincingly mimic anyone – not just CEOs and public figures but also IT helpdesk staff, security team members or anyone a user instinctively trusts.
This shift will blur the lines between social engineering and identity compromise.
Instead of relying on crude phishing attempts, attackers will imitate internal employees and call users directly, guiding them step-by-step into handing over credentials or MFA codes.
They won’t stop at financial fraud either; the goal will increasingly be to obtain sensitive data, access internal systems or compromise business-critical mobile workflows.
As a result, organisations will rethink how senior leaders show up publicly and employees will become more sceptical of unexpected calls or video requests – even from people they recognise.
Digital identity verification inside the enterprise will need to evolve rapidly to keep pace.
What is one piece of advice you would give organisations and professionals as they head into 2026?
Mobile devices now sit at the heart of critical business operations, which means they’re firmly in scope for frameworks like NIS2 and Cyber Essentials Plus.
In 2026, organisations will accelerate efforts to improve the cyber hygiene of mobile fleets, something that has historically lagged behind traditional endpoint security.
The biggest drivers will be regulatory pressure and the growing recognition that mobile devices are often the easiest entry point for attackers.
Security teams will place greater focus on enforcing OS updates, monitoring the installation of unapproved apps and adopting mobile threat defence tools that can detect phishing, malicious configuration profiles and network-based attacks.
My advice is simple: treat mobile security with the same seriousness as Mac or Windows security.
Invest in the right tooling, build clear policies and ensure protection extends to modern phishing techniques on mobile devices because attackers are already adapting their tactics faster than most organisations are updating their defences.