Artificial Intelligence

Artificial intelligence is replacing security experts for mundane tasks, IT News, ET CIO


Vinay Tiwari, CISO, RBL Bank
Vinay Tiwari, CISO, RBL Bank

Businesses are keen to see ROI out of most functional domains but one such vertical has its own unique way of reflecting ROI. Cyber security function in any company is one such vertical where investments can never become risk free. Thus CISOs often struggle to make cybersecurity a vibrant, proactive part of strategy, operations, and culture of their organisation.
To decode this strategy, ETCIO talked to Vinay Tiwari, CISO of RBL bank who has highlighted his own experience in making cyber security proactive at the bank with confidence of his management and stakeholders.

“First of all understanding the risk parameters and taking the management through them is very critical and fundamental for any successful cyber security strategy. The business has to put confidence in each risk indicator and should be aware of the current maturity levels to those. These indicators can be compelled through patch management perspective, risk compliance, risk auditing, DLP and other cyber security policies as well. Maturity levels of different security stages can be different and should be transparently present in front of business stakeholders. This kind of strategy helps in settling a robust security posture rather than claiming false statements such as we can never get cyber attacked or believing that we have 100% security which can never get breached,” Vinay Tiwari, CISO, RBL Bank said.

Tiwari believes that there will always be a part of risk involved in any kind of security posture. And he has developed this strategy keeping the confidence of the bank’s CIO and other major stakeholders. His team continuously monitors risk indicators and sources such as internal vulnerabilities, third party activities, external processes and more.

READ  The VA Wants to Use DeepMind's AI to Prevent Kidney Disease

The report is further evaluated continuously, which keeps a check on the security threats and the maturity of the bank’s current security systems. From geopolitical situations to new threat perceptions, Tiwari has worked and the management has also supported with confidence and better investments in a monitoring based security strategy. His team has worked on enhancing monitoring processes and creating a transperent ecosystem of cyber security at the bank.

CISO’s zero tolerance policy

Digital transformation is becoming cognitive with use of AI, data analytics and more. And this makes the CISO role challenging as it not only protects the business from cyber threats but also ensures that the company’s drive towards digital transformation is secured end-to-end for greater benefits. So this dual role is now becoming the reality and thus needs newer strategies for efficient security management. So from designing any product to looking after successful business delivery, the CISO role is now strategically changed to add value to the business. And security functions such as SOC, threat monitoring, cyber resiliency, etc have now become vital parameters for business enablement,” Tiwari highlighted.

RBL bank has enhanced security and with zero tolerance strategy, it has worked upon services such as KYC, and other banking features which are now digitally accessed. Tiwari has been instrumental in the bank’s digital transformation journey.

Next Gen technologies complimenting the Infosec community

Technologies such as Artificial Intelligence, Machine Learning, Data science modelling, etc are now replacing cyber security professionals and their individual tasks in companies.

“One of the most prominent use cases of AI, ML is in monitoring activities. Analysing chunks of data and then breaking them down to see if there’s any sort of malicious activity or compromising malware present which should get eliminated as early as it gets detected by AI/ML engines. So this kind of process is now being led by technology rather than human interventions. These technologies help in assessing phishing websites, comprising emails, malicious attempts and other kinds of vulnerabilities. Security prioritisation is now possible with the help of AI. Access management and user authorisation at the end points with zero trust models and identifying risk or vulnerabilities is now more efficient with such technologies at the bank,” Tiwari added.

READ  Artificial Intelligence Software System Market From Key End-use Sectors to Surge in the Near Future 2020 – 2027 – Market Research Sheets

Evolving role of CISO post pandemic

Tiwari started his journey in cybersecurity when the role of a CISO was all about managing firewalls and was a subset of the main IT function. From there he says he has seen the shift from getting out of IT into a separate risk management domain. And today the role of CISO has become a business and growth enabler and is considered into management domain. This kind of evolution has led this functional role.
“As the threat landscape is becoming treacherous, the role is now to protect business growth. CISOs now need to ensure that business continuity is maintained and the company’s data and reputation is protected against cyber attacks,” Tiwari concluded.





READ SOURCE

Leave a Reply

This website uses cookies. By continuing to use this site, you accept our use of cookies.