Chris Ray, Security Architect discusses with Bikash Barai, Co-Founder of CISO Platform & Firecompass, the importance of asset management in effectively triaging and prioritizing cybersecurity vulnerabilities, especially for smaller teams. It highlights the need for security-focused asset inventories to make informed decisions about risks and mitigating controls.
Here is the verbatim discussion.They're learning the things, they have to learn to put out the fires in that moment. They don't have the expertise or the skill set that is often missing. And one of the primary skill sets that's often missing in a smaller team is the ability to triage a vulnerability that's been identified and appropriately decide what priority do. I need to put on this? What risks does it create? What new risks are there? And do we have anything that's already going on that will mitigate this, or what are our mitigating controls? That's something where I see ASM coming in because it takes that asset list, that asset inventory, which sounds really boring. It's just an asset inventory. Sure, Servicenow has been doing that for 20 years, but it doesn't have the security context around it. And that's ASM.
Chris Ray, a seasoned professional in the cybersecurity field, brings a wealth of experience from small teams to large financial institutions, as well as industries such as healthcare, financials, and tech. He has acquired an extensive amount of experience advising and consulting with security vendors, helping them find product-market fit as well as deliver cyber security services.
Bikash Barai is the Co-Founder CISO Platform & a Co-Founder of FireCompass, an AI assistant for IT security decision makers. Earlier he founded iViZ an IDG Ventures backed company which was later acquired by Cigital. Barai has done double B.Tech and master’s from Indian Institute of Technology (IIT), in computer science (Hons) as well as Architecture. He is passionate about AI, cognitive hacking and attack simulation. He is credited for several innovations in the domain of IT Security and has multiple patents in USPTO under his name. Barai has received recognition from UC Berkeley, Intel, Nasscom, Red Herring, TiE, Fortune 40-under-40 in India, etc. He actively pursues painting and magic and has spoken at various forums like the University of California, Berkeley, Nasscom, DSCI, CISO Platform, NUS Singapore, TiE, TEDx IIM, TEDx IIT, RSA Conference USA, etc.
.png)
Comments