Events , Governance & Risk Management , IT Risk Management

Enterprise Cyber Risk: Overcoming the Issue of Siloed Tools

Sumedh Thakar, Qualys, on Enhancing Cybersecurity Through Strategic Risk Management
Sumedh Thakar, president and CEO, Qualys

Cybersecurity is evolving beyond tool deployment toward the strategic management of threats. While companies deploy numerous tools to address security incidents, this siloed strategy may obscure the bigger picture - understanding the comprehensive cyber risk to the business.

See Also: How Enterprise Browsers Enhance Security and Efficiency

Boards are now recognizing that "cyber risk is a business risk," and there is no one-size-fits-all approach, said Sumedh Thakar, president and CEO, Qualys. Thakar advised a holistic assessment of cyber risks, where CISOs play a crucial role in quantifying the risk posture along with its impact on the business and communicating that to the four key stakeholders: CEO, CFO, IT team and compliance team.

"If you are not taking a view of what is the overall risk that is created by cyber infrastructure to your business, then you don't know where to focus, what to fix first and what to prioritize," he said.

In this video interview with Information Security Media Group at RSA Conference 2024, Thakar also discussed:

  • How software diversity and siloed solutions complicate tracking and managing cyber risks;
  • How customized risk scoring helps enterprises use finite resources more efficiently;
  • How bringing patch and vulnerability management together can improve cyber defense.

Thakar leads Qualys' vision and strategic direction. He has undertaken various leadership roles focused on helping the company deliver on its platform vision. Prior to becoming CEO, Thakar was the chief product officer, where he oversaw all things product, including engineering, development, product management, cloud operations, DevOps and customer support.

About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.