Incident & Breach Response , Security Operations

Breach Readiness: How Prepared Are Indian Organizations?

Smokescreen CTO Raviraj Doshi on Readiness and Response Trends
Raviraj Doshi, CTO, Smokescreen Technologies

Many Indian organisations are not prepared to detect and respond to breaches, breach readiness assessments conducted by Smokescreen Technologies show, says Raviraj Doshi, the company's CTO, who describes current detection challenges.

See Also: Ransomware Response Essential: Fixing Initial Access Vector

"We've done 'breach readiness assessment' exercises with critical national infrastructure, banking, financial services and insurance and across other verticals. The majority of the organizations were not able to pick on any simulated attacker activity within their networks," he says (see: Adopting Deception to Control the Attack Narrative).

Breaches are becoming more difficult to detect because of malware-less techniques that focus on compromising networks using legitimate credentials and tools, including Powershell, he contends, which current solutions are not good at catching (see: Savvy Hackers Don't Need Malware).

In an exclusive video interview with Information Security Media Group, Doshi discusses:

  • The poor breach readiness posture in Indian enterprises;
  • How to reducing attacker dwell time in a network;
  • Recommendations for improving security based on real-world experience.

Doshi has more than 12 years of experience in information security, including digital forensics, penetration testing and secure code reviews. He specializes in incident response for advanced persistent threats. He is also the co-inventor of a patent-pending technology in the field of stealth malware detection. At Smokescreen, Doshi is responsible for the product development, roadmap and delivery.

About the Author

Varun Haran

Varun Haran

Managing Director, Asia & Middle East, ISMG

Haran has been a technology journalist in the Indian market for over six years, covering the enterprise technology segment and specializing in information security. He has driven multiple industry events such as the India Computer Security Conferences (ICSC) and the first edition of the Ground Zero Summit 2013 during his stint at UBM. Prior to joining ISMG, Haran was first a reporter with TechTarget writing for SearchSecurity and SearchCIO; and later, correspondent with InformationWeek, where he covered enterprise technology-related topics for the CIO and IT practitioner.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.