Bipul Sinha
Appearances
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
First of all, thank you so much for this invitation and great to be here. What is clear is that almost every company or government institution have been compromised. They may not have been attacked, but they have been compromised so that one or more of the threat actor is sitting and figuring out what to do.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
So in some ways we need to have defenses and we need to continue to invest on defenses so that things don't get in. But this assumption that you can prevent the unpreventable is not going to work. So you need to really assume that the breaches are inevitable or might have already been happened. But then how do you prepare yourself both on understanding the risk and then doing the remediation?
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
And what we have been telling organizations, both government and private sector is, you need to truly understand what are the tier zero set of services, we call it minimal viable organization that you need to keep your business up and running.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
Whether if you're a bank, then even if you're breached and attacked and something bad has happened, how do you ensure that your counterparty transactions and risks are taken care of? If you're hospitals, how do you make sure that you can take care of your patients and while admitting new patients, while you're trying to recover whatever activities you do?
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
So understanding of the critical assets, the crown jewel, And what is the risk of those assets, assuming that the breach has happened or will happen? And then how do you provide resilience and recovery on this like tier zero, minimal viable organizational concept?
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
And the issue is that everybody is, and the cyber is such a cat and mouse game that everybody is playing whack-a-mole for the last 20, 30 years and not thinking that how do we, protect the unprotected, which is like a small government schools and water plant and local cities, because they don't have either talent or technology or even understanding of what is going on.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
but they open up a whole new door because the kids take the laptop home, log into the home systems and all the rest of it remains open. So we are squarely focused on to ensure that people have this awareness of resilience inside out security. How do you fundamentally secure yourself assuming all else has been compromised?
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
And that's where the focus has to be because you can't win this war by creating taller walls and wider moats.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
So Biden administration actually came up with this cyber policy where they talked about the skin in the game. So as a vendor, when you're selling your technology to a company and particularly for cybersecurity, companies are spending $200 billion collectively in this market.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
And in some ways, the cyber has been the most bogus market because you give more medicine to the patient and patients get sicker and sicker every year. And so one of the things that we thought about was that how do we provide peace of mind to our customers and to give them like this confidence that on the worst day, we'll be there with them.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
And so we came up with this idea of warranty, that if we can't recover your system when you have cyber ransomware attack, then we'll pay you $10 million per incidents so that you can do it by other ways. And for many organizations, 10 million is not a big amount.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
But what it does is that for the companies such as Rubrik, it brings the focus of the whole organization of writing secure code, making sure that you have all the angles figured out to be able to recover our customers because you're designing for the worst day of the customer's life.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
And so that is the culture that we have to have in the whole industry, where we say that we are putting real dollars behind your success. And it has not happened. In some ways, cybersecurity industry keeps getting bigger and bigger, selling more and more products, but at the same time, failing more and more of the customers.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
But Paul? I very much agree with this point that if you look at the volume, velocity, and variability of cyber attacks, and not to mention the complexity of the infrastructure at many organizations that we are dealing with, it has gone beyond human comprehension.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
We have been doing this patchwork for the last 20 years that we have now cloud, then you can create some tooling for cloud, take the log out and put it in Splunk, and then you have some in the endpoints and take the log out, and then somebody's manually figuring out, and then we've gone from SIM to SOAR to now XDR.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
But there's no fundamental shift, quantum shift, in terms of how do we use the machine comprehension, the machine intelligence, what Rob said, AI, to truly comprehend what is really happening across the whole landscape in a holistic way, because humans can't do it. And you can't even augment human to do it. It has to be pure machine activity.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
And that's where I believe is the next frontier, because as much as I love as a software engineer, past software engineer, people will never write good code. And as more and more developers are getting into the field of writing applications and software, the quality will only decrease because it's becoming more ubiquitous. And now with the natural language programming, it'll be even next level.
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
So we need to have the effort to have AI write better code, as Jen said, but at the same time, really use AI to assume that all else has already been bad. And how do we protect?
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
And deep sequence is also pretty complex because it is also a PR exercise. Because out of all the model companies, they were the first one who came up with the open weight model. And they also used the NVIDIA chips by passing their software and directly that gave them the cost advantage. So there was like a lot of
To Catch a Thief: China’s Rise to Cyber Supremacy
BONUS: Live Panel with Top China & Cyber Experts at The New York Stock Exchange
like learning from the US companies, but also a little bit of innovation and a lot more media. So it's a very interesting operation that they ran. And it's an interesting case where in the developer community, it actually created Goodwill. that they had a model which open weight and now is at a reasonable cost because it was directly going after the hardware.