A Strategic Perspective on Embracing The Future Of Cybersecurity

Suresh Sankaran Srinivasan’s journey in cybersecurity began over twenty years ago, during which time he has held key leadership roles that provided him with a deep understanding of global cybersecurity challenges. His experience at Vodafone, where he contributed to the setup of the global cyber defense capability, and his tenure at EY, where he led a consulting practice spanning India, EMEA & ASEAN, have been instrumental in shaping his approach to security strategy. At Axiata, he has been fortunate to lead some groundbreaking projects, including the design and operationalization of their Cyber Fusion Center—a center of excellence that enhances the group’s cyber defense capabilities across subsidiaries in multiple countries.

Through this article Srinivasan talks about the importance of cultural adaptation, technological advancements and the need for a proactive approach to risk management.

In an era where cyber threats are not only becoming more frequent but also increasingly sophisticated, the need for robust cybersecurity and data privacy measures has never been more urgent. With more than two decades of experience in the field, I have had the privilege of leading cybersecurity initiatives at some of the world’s most recognized organizations, including Vodafone and EY. Currently, as the Group Head of Cyber Security & Data Privacy at Axiata Group Berhad, I am responsible for steering our cybersecurity strategy across multiple countries, ensuring that we stay ahead of emerging threats.

Cultural Adaptation in Cybersecurity

One of the most significant lessons I've learned throughout my international career is the importance of cultural adaptation in cybersecurity strategy. Having worked in diverse regions, including Europe and Asia, I’ve witnessed firsthand how cultural differences can influence theapproach to cybersecurity. In some regions, there is a greater emphasis on privacy and data protection, while others might prioritize regulatory compliance or threat response. At Axiata, this understanding has been critical in developing a cybersecurity strategy that is not only technically sound but also culturally attuned to the diverse markets in which we operate. This approach has enabled us to implement security measures that are more effective and widely accepted across different subsidiaries.

The HELIOS Platform

One of the most exciting projects I’ve led at Axiata is the development of the HELIOS platform. This innovative security solution leverages artificial intelligence and machine learning to predict, detect, and respond to cyber threats in real-time. HELIOS has been widely recognized for its cutting-edge approach to threat attribution and analysis, offering a proactive and dynamic defense mechanism that evolves with the threat landscape.

Evolving Core Principles of Cybersecurity

As cyber threats evolve, so must the principles that guide our defense strategies. The traditional reactive approach is no longer sufficient in today’s landscape.

We need to adopt a more proactive and predictive stance, utilizing emerging technologies like AI and machine learning to anticipate and neutralize threats before they can cause harm. This shift necessitates foundational changes in how we design and implement our cybersecurity frameworks, moving towards zero trust architectures and adaptive security models.

The Role of the Board in Cybersecurity

In today’s digital age, the role of the board in cybersecurity has become increasingly critical. Cyber risk is no longer just an IT issue; it is a business risk that requires board-level attention. Engaging the board in cybersecurity matters is essential for ensuring that cybersecurity is aligned with the organization’s overall risk management strategy. At Axiata, we have made it a priority to regularly update the board on cybersecurity developments, including emerging threats, regulatory changes, and the effectiveness of our security measures. This engagement ensures that the board is not only informed but also actively involved in decisionmaking processes related to cyber risk management. A well-informed board is crucial for driving a culture of security throughout the organization and ensuring that appropriate resources are allocated to mitigate cyber risks.

The traditional reactive approach is no longer sufficient in today’s landscape. We need to adopt a more proactive and predictive stance, utilizing emerging technologies like AI and machine learning to anticipate and neutralize threats before they can cause harm

Learning from Cybersecurity Incidents

Throughout my career, I’ve learned that every cybersecurity incident provides an invaluable learning opportunity. One such experience involved a sophisticated phishing attackthat targeted a key division within our organization. Despite our strong defenses, the attackers succeeded in compromising sensitive information. This incident underscored the importance of not only maintaining robust technical defenses but also ensuring that our teams are well-prepared and vigilant. As a result, we conducted a thorough review of our security protocols and reinforced our focus on user education and awareness.

Impact of Global Events on Data Privacy

The COVID-19 pandemic and the subsequent shift towards remote work have significantly impacted the way organizations approach data privacy. There’s been a notable shift towards a more holistic view of data security, one that considers not only the technical aspects but also the cultural and organizational dimensions. At Axiata, we’ve observed a growing emphasis on transparency and accountability in data handling practices, driven by both regulatory pressures and the need to maintain customer trust.

Opportunities and Risks of Emerging Technologies

The advent of AI and quantum computing presents both opportunities and challenges for cybersecurity. While these technologies offer powerful tools for enhancing our defense capabilities, they also introduce new risks. At Axiata, we are actively exploring these technologies, focusing on building resilient systems that can adapt to these new threats while capitalizing on the opportunities they present.

Advice for Aspiring Cybersecurity Professionals

For those entering the field of cybersecurity, my advice is simple: embrace continuous learning and adaptability. The cybersecurity landscape is ever-changing, and the skills that are relevant today may not suffice tomorrow. Develop a deep understanding of the fundamentals but remain open to learning new technologies and methodologies. Collaboration is crucial in this field, so build strong networks, share knowledge, and learn from others.

Conclusion

As we move further into the digital age, cybersecurity and data privacy will continue to be critical areas of focus for organizations worldwide. By staying ahead of emerging threats, embracing new technologies, and fostering a culture of security awareness, we can build a safer, more resilient digital future.