Governance & Risk Management , Legacy Infrastructure Security

Securing Digital Transformation for Legacy Systems

Former City of Toronto's CISO on Integrating Technologies, Embedding Security
Kush Sharma, principal for Sharma and Company and former CISO for the city of Toronto

How does one begin to secure the digital transformation journey in two legacy enterprises? Kush Sharma, principal for Sharma and Company and former CISO for the city of Toronto, shares his experience and offers advice on investing in and integrating technologies.

Sharma spoke about his experience in undergoing digital transformation journey in the city of Toronto. "For the systems that were not part of the digital transformation plan in the near future, we had to build custom applications to integrate with technologies that are in the cloud. We had to educate our DevOps teams on security as well as the Privacy by Design principle," says Sharma. "We also took our cyber people and embedded them into those projects with businesses so that they could educate the stakeholders from the beginning."

Sharma says the digital transformation journey is not about putting a process online. "If you take a process and put in online as the same process, that to me is not transformation. This education needs to be embedded in program management from the beginning," he notes.

Sharma had led a similar digital transformation journey at Saputo, a Montreal-based Canadian dairy company.

In a video interview with Information Security Media Group, Sharma also discusses:

  • His thought process before investing in particular technologies;
  • His concerns about digital transformation and rapid digitization;
  • How to ensure seamless integration of technologies.

Sharma is principal at Sharma and Company and is the former CISO for the city of Toronto. As Toronto's first CISO, he was responsible for setting the city’s information security strategy, governance, risk, compliance and cyber functions, reporting functionally to the city manager. Sharma has more than 20 years of public and private sector experience.


About the Author

Suparna Goswami

Suparna Goswami

Associate Editor, ISMG

Goswami has more than 10 years of experience in the field of journalism. She has covered a variety of beats including global macro economy, fintech, startups and other business trends. Before joining ISMG, she contributed for Forbes Asia, where she wrote about the Indian startup ecosystem. She has also worked with UK-based International Finance Magazine and leading Indian newspapers, such as DNA and Times of India.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.