Cloud Security
,
Events
,
Governance & Risk Management
BreachLock’s Seemant Sehgal on Proactively Finding Out Where Your Defense Will Fail
Offensive security in the past five years has moved from traditional pen testing to a platform-based strategy due to the ever-increasing sophistications of hackers, the broad expansion of the attack surface and the presence of shadow IT.
A CISO can now push a button and “play the hacker,” said Seemant Sehgal, the CEO of BreachLock. He said defensive security puts the defender “behind the curve” and advocated for giving up the “loser’s mindset” so often seen in cybersecurity – the attitude that you’ve already been hacked, whether you know it or not.
“Offensive security is the only way for you to find out in a proactive way where your layered defense will fail and for what cause at what time,” he said.
In this video interview with Information Security Media Group at RSA Conference 2024, Sehgal also discussed:
- How to build a business case for defensive security;
- The need to “tell a story” to the board to help them see what your read teaming and pen testing results mean;
- How BreachLock solves the problem of scaling and provides a single pane of glass for defensive security.
Sehgal has more than 18 years of experience in the cybersecurity industry. Before founding BreachLock, he was head of cybersecurity at ING Bank. His areas of expertise include cyber resilience, payment security and SOC. Sehgal is a regular speaker at international conferences and has been writing articles for the ISACA Journal since 2015.
This post was originally published on the 3rd party site mentioned in the title of this this site