Breach Response: The New Security ModelIntel Security's Young on How to Achieve Resilient Security
High-profile data breaches such as Target, JPMorgan Chase and Sony may not have directly impacted Indian organizations and customers. But they do signal a shifting threat landscape, and Indian security leaders must incorporate lessons from these incidents, says Chris Young of Intel Security Group.
"Indian security practitioners need to learn their lessons from the breaches and develop the necessary bandwidth to build awareness about cybersecurity within their organisations," says Young, senior vice president and general manager.
Young calls for organizations to develop a new, resilient security model, which requires two key elements.
"One, as a priority, CISOs need to build a new model of security which is dynamic and which can reduce the complexity of security framework, while preparing the team for unexpected attacks," Young says.
Secondly, they must raise the visibility of security issues, influencing the Indian government to make cybersecurity its top agenda item and work with private sector organizations to address the challenges.
In an exclusive interview with Information Security Media Group during his recent visit to Bangalore, Young talks of how the massive security breaches caused during 2014 have had an influence on Indian businesses, and the lessons Indian CISOs need to learn from such instances. He also discusses:
- How to fill the information security talent gap;
- How CISOs can get boardroom buy-in on cyber security initiatives;
- The rise and implications of cybercrime as a service.
Young is responsible for the global operations and business of Intel Security including McAfee. Prior to joining Intel, Young served as a director at Rapid7. He has also been the senior vice president of the security and government group at Cisco, where he was instrumental in rolling out an exclusive security model. Young also focused on security during his stints at VMware, RSA, AOL and other organizations.