In recent discussions on energy and digital sovereignty, one theme has become increasingly clear: resilience is no longer just an operational requirement. It is a sovereign capability.
In my recent podcast conversations on energy sovereignty and digital sovereignty, we explored how supply chains, data, AI and cybersecurity are redefining national resilience. These discussions highlight a broader challenge for defense and intelligence organizations: how to maintain control, trust and operational certainty in highly distributed and interconnected environments.
Today’s missions depend on digital ecosystems that span enterprise IT, cloud and the mission edge often across national and coalition boundaries. These environments must not only perform under pressure but also demonstrate control and accountability at every level.
Yet many organizations still approach cybersecurity, infrastructure and data governance in isolation.
That approach is no longer sufficient.
From sovereignty to sovereign trust
Sovereignty is often framed in terms of control where systems are hosted or who owns the infrastructure. In practice, however, sovereignty is about the ability to demonstrate control continuously, especially in complex and contested environments.
As discussed in the podcast series, sovereignty is increasingly shaped by dependencies across energy systems, digital infrastructure and supply chains. This makes it not only a question of control, but of resilience across interconnected systems.
This is where a shift is needed toward sovereign trust.
Sovereign trust extends beyond zero-trust principles. It is about ensuring that systems, data and operations remain verifiably within required boundaries—supported by visibility, governance and evidence.
What worked in an era focused on efficiency is no longer enough in an era defined by resilience, sovereignty and disruption.
The reality of convergence
Modern defense environments are defined by convergence across IT and operational systems, digital and physical domains, and national and coalition missions.
While this enables greater capability, it also introduces new dependencies across partners, platforms and supply chains.
As highlighted in the podcast discussions, resilience today depends on managing this interdependence, not eliminating it.
This raises a critical question:
Can you demonstrate control across your ecosystem at all times even in contested or degraded conditions?
One recurring pattern in coalition environments is that the hardest challenge is not collecting information, but exchanging the right information with the right checks and balances at operational speed. For decision makers in a military loop, the information that is ‘now’ is the valuable one.
Five imperatives for building sovereign trust
To address this challenge, organizations need to rethink how trust and resilience are engineered across their ecosystems. Five imperatives stand out:
- Continuously verify identities and interactions
Trust must be continuously validated across users, systems and workloads. - Design data sovereignty into the ecosystem
Data must remain visible, traceable and governed across organizational boundaries. - Treat cloud and edge as sovereign environments
Control, residency and governance must be built in from the outset. - Strengthen trust in the software supply chain
Visibility into components and dependencies is critical to reducing risk. - Engineer resilience from the start
Systems must be designed to withstand disruption and maintain continuity.
From resilience to assurance
What connects these imperatives is a shift from protecting systems to proving control.
For defense and intelligence leaders, resilience is no longer only about preventing disruption. It is about demonstrating continuously that systems and operations remain secure, governed and reliable.
This reflects a key takeaway from the podcast discussions: sovereignty must be actively maintained across digital ecosystems.
Looking ahead
As digital ecosystems expand, the ability to establish and demonstrate sovereign trust will become a defining capability.
The question is no longer whether systems are secure. It is whether that security and sovereignty can be continuously proven.
To learn more about how defense and intelligence organizations are building secure, resilient digital ecosystems, visit our Defense and Intelligence page or connect with me to continue the conversation.
About this author
Torsten Bernström
Vice-President, Global Industry Lead, Defense & intelligence
Torsten Bernström has been part of IT services industry since the mid-1990s, serving in numerous business and project management roles for both the commercial and public sector industries. At CGI, he is the Global Industry Lead for the Defense & intelligence sector. ...
