CISOs face four key challenges as they prepare to deal with ever-increasing cyberattacks, says Vishal Salvi, CISO at Infosys.
Practitioners are still in a reactive mindset and must become proactive, he stresses in an interview with Information Security Media Group. The sheer pace of technology innovation is making it difficult to keep up. The need for resilient architecture is becoming more critical. And security professionals need to be constantly trained to derive value from security technology investments.
"The lessons learned from these attacks are things that were already known, but things that the industry has not been able to address successfully in the past," he says. "The biggest lesson from all this is: Can we look at the issue of IT [security] hygiene as a zero tolerance issue? What are the steps that the ecosystem needs to take to respond to this requirement?"
In this interview (see audio player link below image), conducted at the recent Fraud and Breach Prevention Summit in Mumbai, where Salvi was a keynote speaker (see: Evaluating India's Cybersecurity Posture in 2017: Lessons for the Industry), he also discusses:
- The need to get more proactive and build resilience into cybersecurity programs;
- His view on what tasks are best suited to be automated;
- Security recommendations for practitioners and vendors for 2018.
Prior to joining Infosys, Salvi was a partner for cybersecurity at PwC. He has 21 years of industry experience in IT service delivery and cybersecurity, having served in roles at Crompton Greaves, Development Credit Bank, Global Trust Bank, Standard Chartered Bank and HDFC Bank. He has extensive management and domain experience in driving information security programs.