CISOs should have an action plan for cyber resilience: Cisco’s Anthony Grieco
For American IT networking major Cisco Systems, India has always been a very important market. The company which believes in baking security into all its offerings, is helping Indian organisations enhance security resilience so they can turn their digitisation into a competitive advantage. In an exclusive interview with TechCircle, Anthony Grieco, SVP & Chief Information Security Officer (CISO) of Cisco, who recently visited India, sheds light on the company’s innovative cyber capabilities, expansion of its security data center footprint, and how Cisco is building a dedicated engineering workforce in India to help organisations strengthen their defences and catalyse their digital transformation journey. Edited excerpts.
In which areas do you see CISOs are lagging currently, both globally as well as in India, and what can they do about it?
CISOs are facing challenges in various areas, primarily when it comes to effectively communicating with the rest of the business. While CISOs typically have a strong security background, they need to relate security to the overall goals of the organization. Security cannot exist in isolation; it must align and integrate with other functions and business objectives. To address this gap, CISOs should focus on enhancing their communication skills and speaking the language of the business. This means being able to articulate security concepts and priorities in terms that resonate with executives and board members who may not have a security background. This will increase their chances of success in implementing robust security measures within the organization.
Technologies like cloud, network security and AI, require a significant amount of upskilling and reskilling. How are you addressing these challenges to reduce the skills gap in cybersecurity?
Cisco has made significant investments in various initiatives to address the skills gap. One such initiative is the Networking Academy, which serves as our platform for skill development. The Networking Academy not only imparts knowledge and certifications but also shares the latest technology advancements. In India alone, we have successfully trained 1.7 million students through the Networking Academy, with many of them completing cybersecurity courses as part of their education. Furthermore, Cisco has committed to training an additional 500,000 individuals in India in cybersecurity over the next three years through the Networking Academy. At Cisco, security, Privacy, and resilience have to be baked into everything whether it's a security product or just aid any digital product. Hence, our primary objective is to enhance skills and equip the workforce with the necessary expertise that aligns with the demands of the technology industry.
What are the trends you're seeing in terms of ransomware attacks and how can CISOs/CIOs tackle the issue of ransomware in 2024?
Ransomware is an incredibly widespread issue, especially with prominent gangs offering ransomware as a service that continues to cause chaos for internet users. They are responsible for nearly a quarter of compromised credentials that are circulated on the dark web, highlighting their significant presence. When considering the trends in ransomware, it is important to note that it is not limited to IT systems alone. Operational technologies (OT systems) are also becoming targets for ransomware attacks. This trend is expected to persist in the future. To combat ransomware, it is crucial to focus on the fundamentals. Establishing strong identity measures and understanding your attack surfaces are essential. Regular patching, staying up to date, and implementing secure configurations are foundational aspects that should not be overlooked. Additionally, security teams must prioritize having comprehensive visibility and understanding of the assets they are protecting. Detecting when an adversary has breached your environment is crucial in the fight against ransomware. That said, resilience is key when dealing with ransomware. Being prepared for detection, response, and recovery is vital for businesses to recover quickly in the cyber space.
How according to you can companies achieve cyber resilience?
Cyber resilience must be considered from a design perspective. It is crucial to design systems that possess the ability to withstand and recover from potential threats. Therefore, it is of utmost importance to have a thorough understanding of the foundational aspects. In the event of a system failure, it is essential to have a plan in place for restoration. It is necessary to thoroughly assess critical systems and data, ensuring a clear understanding of their visibility and the appropriate response in the event of a ransom situation. These practices are vital for maintaining cyber resilience. One activity that is often overlooked by CIOs and CISOs in this field is what we refer to as a tabletop exercise. This exercise involves simulating a scenario where an adversary gains access and attempts to hold your data and information for ransom. It involves gathering all relevant stakeholders from IT and security organizations to discuss and test the response strategies. Notably, cyber resilience cannot be achieved after an attack and hence CISOs should have an action plan for cyber resilience well in advance.
With AI becoming all pervasive, how can AI tools and technologies assist in strengthening cyber defense?
Cisco has been using predictive AI and security for years, giving us a deep understanding of potential threats. The emergence of generative AI brings exciting capabilities to security. We have already started integrating a security chatbot into our portfolio, making it easier for teams to implement security measures consistently. This eliminates complexity and the need for extensive coding. We are just beginning to explore the possibilities, but the pace of progress is remarkable. I am optimistic about the impact this will have on our ability to defend against adversaries.
Over the years, Cisco has acquired several indian companies to strengthen its security space also. Are you looking for similar acquisitions of Indian companies given that Indian startups do a lot of work in cutting edge technology?
Security has always been a top priority for Cisco, and we have continuously strived to be at the forefront of technology and innovation in this domain. Our rich history in India is characterized by a series of acquisitions and investments from a startup perspective. In 2015, we took our first step in India by acquiring Pawaa, an IT security company based in Bengaluru, and subsequently expanded our portfolio with a few more companies. Through our comprehensive programs, we have successfully nurtured and supported numerous startups, providing them with the necessary resources to thrive. As we move forward, we remain committed to acquiring firms and establishing partnerships to drive our future growth.
With increased digitization in India today, how is Cisco playing a part in this market, especially from the security perspective?
I am truly excited about India's potential role in the field of cybersecurity, considering the rapid digitization taking place in the country. The enthusiasm surrounding security is of utmost importance, and Cisco is well-positioned to be a valuable partner in this space. India remains a critical market for Cisco and its second largest Research and Development center outside the US. The company also has a sizeable workforce in India in the space of security engineering. These employees play a key role in the innovation of cutting-edge security solutions, but also supporting Cisco's business model transformation towards software and subscriptions. There are three key things to note. Firstly, Cisco is an approved "Trusted Source" in the government's secure supply chain initiative, with all our products verified as "Trusted Products." Secondly, we are heavily focused on expanding our cloud offerings in India, with significant investments in data center infrastructure in Chennai and Mumbai. Lastly, we are investing in building a strong cybersecurity workforce in India through our Cisco Networking Academy. Over the next three years, we aim to train 500,000 individuals in cybersecurity. With over 15,000 employees in India, along with an additional 20,000 partner employees, Cisco's presence in India is substantial; it is our largest base outside of the United States and a key market for us to continue investing in.