U.S. GOV TAKES ACTION TOWARD CYBER & PHYSICAL SECURITY CONVERGENCE

As the world becomes more interconnected, disparate systems and divisions are becoming more vulnerable to security threat. Security leaders who operate in silos lack a holistic view of security threats targeting their enterprise, so when it comes to risks like exposure of proprietary information and economic damage, it’s no longer a matter of if…but when.

In fact, the US government recently sounded the alarm on the evolving threat landscape. The Cybersecurity and Infrastructure Security Agency (CISA)—which essentially acts as the quarterback for the federal cybersecurity team and helps to secure the nation’s critical infrastructure against threats—wrote about the importance of conversion in their latest playbook.

The Cybersecurity and Infrastructure Security Convergence Action Guide dives into the complex threat environment created by disjointed cyber-physical systems, and the impacts this has on organizations’ security functions. More importantly, it provides a framework that organizations can use to adopt a holistic cyber-physical security approach (…more on that in a few).

But what exactly do they mean by convergence? In their words, convergence is a formal collaboration between previously disjointed security functions. Below is a CISA diagram that visualizes the increasingly interconnected cyber-physical systems of our critical infrastructure, thus creating a complex threat environment that requires a holistic cyber-physical security approach.

Image Credit: The Cybersecurity and Infrastructure Security Convergence Action Guide 2021

Big move. Small steps.

Organizations of all sizes and across all industries can get closer to convergence by creating an approach that’s tailored to their unique needs. Below is CISA’s framework for developing a holistic security strategy by fostering communication, coordination and collaboration:

Image Credit: The Cybersecurity and Infrastructure Security Convergence Action Guide 2021

Let’s put it in perspective: Back in January 2019, a large U.S. energy company faced major financial consequences when an internal probe revealed 127 security violations that ended up costing the company millions, all stemming from non-compliant security practices and lack of collaboration across organizational units. But they course-corrected by increasing oversight, restructuring roles, hosting discussion panels on best practices, adding resources to manage new efforts, and improving systems to track access and vulnerabilities.

But if you ask us, there’s a fourth defining factor that’s missing from the framework: technology. Disparate systems weren’t built to talk with one another, so manually bringing them together doesn’t ever work quite like we want it to. That’s where purpose-built cyber-physical security platforms like Guardian come in, making converged security not only possible but hassle-free as well—with no need to rip and replace the system you already use.

Take it from our Chief Security Officer, Mark Weatherford. “The organizational silos between IT, OT and physical security that have existed for decades are both ineffective and imprudent in today’s threat environment. The technology now exists to converge these historical gaps and provide more visibility, and therefore the ability to respond effectively, to threats in an organizationally collaborative manner that more broadly mitigates risk.”

Want to chat convergence? We’re ready when you are. In the meantime, check out this video and white paper for even more insight on how to eliminate silos and better prepare to identify, prevent and respond to threats.

Let's chat.

David Cassady

Chief Revenue Officer

David Cassady has been selling and leading sales teams in Silicon Valley for more than 30 years. During that time, he’s led a mix of established software players and startups. Cassady has also been involved with five IPOs — and at least as many acquisitions.

As Chief Revenue Officer, David leverages his extensive experience helping software businesses drive growth through skill-building for cloud and SaaS-focused teams. Together with the AlertEnterprise team, David is focused on the intersection of a repeatable sales process, a predictable pipeline and a multi-channel go-to-market strategy that includes physical security system integrators and SAP — all with the goal of driving explosive growth for the company.

Mark Weatherford

Chief Security Officer
Senior Vice President, Regulated Industries

Mark Weatherford brings years of high-level cyber-physical expertise to AlertEnterprise, and as Chief Security Officer (CSO), he guides the strategy of data management and protection by advising cyber-physical security policies and procedures within the company. Weatherford also works in liaison with businesses and executive professionals in the cyber and physical security industries to further accelerate security convergence adoption.

Mark has held numerous high-level cyber-centric positions, including Vice President and Chief Security Officer at the North American Electric Reliability Corporation (NERC), the Department of Homeland Security’s first Deputy Under Secretary for Cybersecurity under the Obama administration, California’s first Chief Security Officer, and the first CISO for the state of Colorado.

Harsh Chauhan

Chief Technology Officer

As Chief Technology Officer (CTO) of AlertEnterprise, Harsh Chauhan is responsible for the company’s engineering technology innovation and solution delivery. A 20-year technology veteran and leader, Chauhan is focused on the growth of the company’s 3D Governance Risk Compliance (GRC) hyperscale cloud platform.

He also continues to develop integrated solutions with leading technology partners like SAP, SAP NS2, and ServiceNow. Before AlertEnterprise, Mr. Chauhan held multiple CTO positions, as well as Product Owner and Head of Development at SAP GRC 10.0, delivering targeted solutions to high-profile SAP clients.

Ruby Deol

Chief Operations Officer

Ruby Deol oversees all business units at AlertEnterprise. With more than 20 years of experience in global sales and support services, Deol nurtures existing client relationships with a customer-first approach. As AlertEnterprise continues to grow in industry recognition and stature, Deol is charged with developing and implementing methods to meet organization goals and facilitate the company’s ongoing transformation.

Kaval Kaur

CFO and Co-Founder

As Chief Financial Officer (CFO) and Co-Founder of AlertEnterprise, Kaval Kaur leads all finance and administrative back-office operations. Kaur is a member of the national professional organization American Institute of Certified Public Accountants (AICPA) and the California State CPA Society.

Prior to joining AlertEnterprise, she was the CFO and Co-Founder of Virsa Systems, a position she held until its acquisition by SAP.

Kaur is a philanthropist at heart, embracing the diversity of the San Francisco Bay area by assisting with and promoting special cultural events. She recently sponsored 2,000 public schools in rural India to advance computer literacy skills for children and is a foster mother to a 10 year old.

Jasvir Gill

Founder and CEO

Leading the charge of digital transformation and security convergence is Jasvir Gill, Founder and CEO of AlertEnterprise, Inc. An accomplished engineer by trade, Gill is driving the long-overdue digital transformation of the physical security industry.

Prior to launching AlertEnterprise, Gill was the founder and CEO of Virsa Systems, where he grew the company into a global leader of application security software. An early pioneer in establishing governance, risk and compliance as a software market segment, he drove exponential growth at Virsa, facilitating its acquisition by SAP in 2006.

In his free time, Jasvir helps drive social and economic empowerment in the community. He’s also a trustee at the American India Foundation.