Focusing on our unified SIEM platform for single console monitoring: ManageEngine’s Vaidyanathan

ManageEngine, the enterprise IT management division of Zoho Corporation, is scaling up its artificial intelligence (AI) and machine learning (ML) usage to strengthen its IT security portfolio. The company aims to capitalise on the growing demand for AI-driven security and incident management products. In an interview with TechCircle, Ram Vaidyanathan, Chief IT Security Evangelist at ManageEngine, discusses the company's cybersecurity priorities for the year and its strategy to lead the market by nurturing local talent and AI-led research. Edited excerpts.

What in your opinion are the biggest challenges facing security leaders currently?
Security leaders face a rapidly evolving threat landscape with several key challenges. The cybersecurity skills shortage makes it difficult to find and retain skilled professionals, leaving organisations vulnerable. The rise of AI-powered cyberattacks increases attack sophistication, making traditional defense mechanisms less effective. Simultaneously, leveraging AI for cyber defense requires careful implementation and ethical considerations. Communicating cyber risks to the board in a quantifiable manner remains a challenge, impacting security investments. Additionally, adhering to new compliance standards and data privacy laws demands continuous adaptation, as regulations evolve to address emerging threats and protect sensitive information.
 
Which areas in cybersecurity will be your focus this year and why?
This year, our focus in cybersecurity will be on enhancing Log360 as a unified Security Information and Event Management (SIEM) platform, ensuring that both on-premises and cloud networks can be seamlessly monitored from a single console. Customisations will be key, allowing users to tailor the solution to their unique security needs. We will continue to integrate with other ManageEngine and third-party solutions to provide better network visibility and security context. Additionally, we aim to boost security analysts' productivity by developing hundreds of out-of-the-box detection rules for well-known threats. Leveraging AI-driven detection, investigation, and response will further augment analysts’ capabilities, while automated response playbooks will enable quick and efficient remediation, reducing response times, and mitigating risks effectively, in alignment with our long-term vision of making ManageEngine an end-to-end platform for all enterprise needs.
 
What kind of investments are you making in AI-based security? What's the future of AI-powered security?
 Zoho Corp is investing significantly in AI-based security, developing its Large Language Model (LLM) across ManageEngine and Zoho to provide users with a reliable, secure AI foundation. We are also working on Sia Intelligent Agents, which leverage AI to analyse, reason, and act on security challenges in real-time. These innovations will also be available for solutions within the ManageEngine suite, including security analytics. These agents will enhance threat detection, investigation, and response, making cybersecurity more proactive. Our dedicated R&D division, Zoho Labs focuses on AI-driven innovations, integrating advanced AI capabilities into Log360, our SIEM solution.
 
Technologies like cloud and AI security require significant upskilling and reskilling. How are you addressing this challenge given the substantial skills gap in cybersecurity?
To address the cybersecurity skills gap, organisations should adopt a multi-faceted approach that combines upskilling, automation, and AI-driven augmentation. Investing in internal training programs for security analysts will equip them with the latest knowledge in cloud and AI security. Utilising advanced technologies like User and Entity Behavior Analytics (UEBA) and Security Orchestration, Automation, and Response (SOAR) can help reduce false positives and automate repetitive tasks, enhancing analysts' efficiency. By integrating AI-powered solutions, organisations can bridge the skills gap and empower their security teams to focus on high-value tasks.
 
How much does your team in India contribute to cybersecurity innovation?
ManageEngine and Zoho Corp’s cybersecurity innovation is primarily driven from India, with our development and AI research happening in Chennai and Tenkasi in Tamil Nadu. We are committed to tapping into India's immense talent pool, particularly from remote areas, to drive cutting-edge advancements in security technology. By fostering local talent and AI-driven research, we continue to lead in cybersecurity innovation.
 
How has the role of the CISO evolved or changed in response to the increasing threat, particularly in the last 2-3 years?
The role of the CISO has evolved from a technical function to a critical business leadership role. CISOs now adopt a risk management approach, proactively assessing threats and implementing strategies to reduce vulnerabilities while ensuring business continuity. With the rise of cloud technologies, securing multi-cloud environments has become a priority, requiring expertise in cloud security, Identity and Access Management (IAM), and identity threat detection and response (ITDR). Modern CISOs also advocate for cybersecurity as a key driver of business success, effectively communicating risks to the board, aligning strategies with business goals, and highlighting security as a competitive advantage.
 
What is the company's strategy for further security innovation?
ManageEngine and Zoho Corp's strategy for security innovation emphasises a strong commitment to R&D, with over 50% of our revenue reinvested in this area. We focus on integrating advanced AI into our security solutions, including Log360, to enhance threat detection, alert prioritisation, investigation, and remediation. Our goal is to address real-world cybersecurity challenges by continuously evolving our solutions to keep pace with emerging threats, empowering security teams, streamlining operations, and improving incident response efficiency to ensure resilience in an ever-changing threat landscape.