Panel Discussion: Defending Against Emerging ThreatsExperts Discuss Essential Steps to Take
To help prevent and defend against emerging cyberthreats, CISOs must develop a multi-line defense strategy and invest in threat-hunting capabilities and orchestration, a panel of cybersecurity experts advises.
“It is critical to developing a multi-line defense strategy including technology, a risk organization to map risk, CISOs as the third line of defense to deploy controls and having boards invest … fight threats,” says Hong Kong-based Micky Lo, managing director and chief information risk officer, APAC, at BNY Mellon.
Singapore-based Steven Sim, president of ISACA's Singapore chapter, says CISOs should work to improve the ability of SOCs to detect threats early and protect endpoints with a "zero trust" approach as well as an EDR solution.
“For faster detection and response, we need to focus on key areas, including encouraging key stakeholders to invest and empowering the compliance and fraud teams and also the public relations teams to handle the crisis as necessary with a strategic plan,” says Thailand-based Surachai Chatchalermpun, CISO at Krung Thai Bank.
This panel discussion was held at Information Security Media Group’s recent Cybersecurity Summit: Southeast Asia.
In this video, the three experts address:
- How CISOs are adapting to the new business demands;
- New technologies being harnessed to respond to attacks;
- Updating a risk assessment plan to reflect evolving threats.
Lo joined BNY Mellon in July 2013 as chief technology risk officer, APAC. He has more than 30 years of IT experience in the financial service industry.
Steven Sim is the president of the ISACA Singapore Chapter. He has 23 years of experience in the cybersecurity field.
As CISO at Krung Thai Bank, Chatchalermpun manages a 40-member IT security team. Previously, he was the head of IT security at Maybank Kim Eng Securities.