Interview – Bharat Mistry – Trend Micro
DAN ASSOR [00:00:02] Okay. Welcome back. So onwards to our third guest of the morning, we have Bharat Mistry from Trend Micro. Hi, Bharat, how you doing?
BHARAT MISTRY [00:00:12] Morning, Andrew I’m good, thanks. How are you?
DAN ASSOR [00:00:14] I’m good. It’s Dan.
BHARAT MISTRY [00:00:17] Oh, sorry, Dan. It’s said Andrew on your little screen.
DAN ASSOR [00:00:20] Well, maybe I’ve been renamed. So Bharat, thank you for joining us. Obviously, Trend has been around for a number of years. It’d be great if you can just give us a sense of your role. What’s new in the organisation to start off with?
BHARAT MISTRY [00:00:38] Yes. So my name is Bharat, I’m a Principal Security Strategist at Trend and in my role, I kind of have a two fold kind of description. First and foremost, I run a small SME team. So we’re kind of subject matter experts, but more my main focal point is to work with customers around security strategy, especially when it comes to doing migrations and moves into Cloud and taking maturity with it. My background in security has been 20 plus years of being at Trend for 5. Previous to that, I was part the CTO office that HP Enterprise Services as well, and prior to that I used to work at Siemens. So kind of being in the industry for a while.
DAN ASSOR [00:01:21] So you know what you’re doing then.
BHARAT MISTRY [00:01:24] Well, I’d like to think so, yeah. And in terms of what Trend do, so, Trend Micro is a global cybersecurity player. Our heritage is kind of 30 plus years old, headquartered in Japan with a global presence. So we have our friendly offices around the world. Same with support and with sales offices as well and our solutions really foremost cover enterprise IT. So everything that would touch an end user, a touch to network, would touch messaging that would touch datacenter and Cloud. And more recently, we’ve been getting into this world of I.T, OT convergence. We’re seeing more more manufacturing type organisations putting national infrastructure wanting to hook up their plant devices to Cloud infrastructure to get that kind of dynamic data up. And we’re working with a lot of organisations around how you can integrate those environments in safe manner.
DAN ASSOR [00:02:22] And Bharat, everyone talks about Artificial Intelligence. Are you using any A.I. in your products and services?
BHARAT MISTRY [00:02:30] Oh, absolutely. We’ve been using, believe it or not, A.I. for a long time. We’re seeing more and more kind of hype around it more recently around the endpoint. You know, as the attacks of changed. But the reality is that we’ve been using technology that for the last 10 years, if you go back to things like email attacks and things like that, and the number of spam messages that are being run for years. A human can’t really deal with it. And we need some kind of Artificial Intelligence Machine Learning to deal with that. And so we’re using it to kind of combat some of those threats and take some of the load off users, certainly from an ops perspective. What we’re seeing now is this suttle change of actually cyber criminals using that same technology for nefarious purposes. You know, profiling organisations previously would have taken days, months to kind of get individuals and kind of work out what they’re doing. But if you can automatically feed data from LinkedIn, from Facebook, from other social media. Put it on Cloud cloud platform and use analytics like Google Cloud, for example, within minutes you got an automatic profiles for you. So you can see it’s a double edged sword.
DAN ASSOR [00:03:41] So it’s also having to keep up with those threats. And how is Trend Micro adapting to the new way of working secure in these threats? Do you think?
BHARAT MISTRY [00:03:51] Yeah, absolutely. I mean, I would like to say it’s nothing new for Trend, in one sense because, you know, we’re a global organisation with a remote workforce and we’re kind of used to it. I think the thing that we’re taking is our knowledge experience and sharing it with our customers and partners. Lessons that we’ve learnt and really the core to some of this is the threat intelligence that we have. We have a global sensor network where we collect data from various endpoints, be it consumer endpoints or end points or end points out in enterprise organisations. And we also have track data from other sources. So, for example, we run something called the zero day programme. And in there we see a number of new vulnerabilities that are kind of being discovered and then being used. And then we also have our kind of underground threat research network as well and based on that information, we build up a picture very quickly as to what is going on and things like, for example, with the current situation with COVID-19, you know, the number of different new attacks we’ve seen, the number of new types of phishing mails that may seem out there, and especially recently with the contact tracing network, the number of fake apps that are out there and concern that. We tend to spot that fairly quickly and we get that information out fairly rapidly. And the other thing that we’ve done as an organisation is we have given away some of our technology for free for some organisations. For users that use their own devices, for example. They can download our end point software and use it for remote working for free.
DAN ASSOR [00:05:28] It’s fantastic. Is this one piece of advice you’d like to give all viewers today around security threats and posture?
BHARAT MISTRY [00:05:37] Yeah. I mean, just be vigilant, really. I know it’s easier said than done. We all kind of operate in this kind of realm of, oh, if it’s in cyberspace, we’re kind of inherently safe. I know it’s probably more dangerous than you think. And the kind of philosophy I would give to customers and everyone, even family and friends, is whatever you do in the physical world take a similar set of precautions and use them in a cyber role. So treat everything with a bit of caution and don’t just fall for anything that, you know, if something looks too good to be true. It generally is too good to be true.
DAN ASSOR [00:06:16] Sure, I think that’s sage advice. Also, it’s quite interesting, I was doing some research, I had a look at a press release that you put out there that 72% remote workers have gained cybersecurity awareness during lockdown, which I guess can only be a good thing, right?
BHARAT MISTRY [00:06:32] Yeah, absolutely. Yeah. A recent study that we did and just wanted to find out really how people are taking cybersecurity, especially where you’re in this environment, where you’re not in the corporate environment at all. So, you know, your normal I.T. security managers don’t have an eye on what’s going on. And we wanted to see whether users attitudes were changing. You know, do you fall into those bad habits, for example, especially when you’ve got a home environment, you’ve got kids, you’ve got your friends when you haven’t got advice as to what what technology you should be using. And actually, the results were encouraging. You know, we had a high number saying that they take cybersecurity seriously and take advice from their organisations. But equally, there was a high number that said they would also ignore it. Or choose to do something different. Knowing that it’s still bad. So there is still a lot of work to be done out there.
DAN ASSOR [00:07:27] Sure, absolutely. And I guess, finally, do you think the changes companies have I guess almost been forced to make over this lockdown. Would they spell out or we return to the new normal? Will we see a better world? Do you think?
BHARAT MISTRY [00:07:41] I think so. I think working from home is probably given certain users a bit more insight as to what is out there, the kind of dangers that are out there. I think what will happen is when some of the users go back into the enterprise, I think they’re going to be more demanding of their I.T. departments. They’re going to want to use some of their home-grown apps, the social apps that they use at home in the enterprise to collaborate. You know, I’ll give you a very good example of this is when lockdown first started, some organisations didn’t have a collaboration app. So a lot of people switch to house party. Can you imagine using house party, so you can see, you know, things like that are probably going, you know, propagate into the enterprise environment and you can see, you know, maybe a bit more risky behaviour. But I’m hoping I.T. departments and security partners can kind of take that head on and then kind of work with the user community and make security an enabler, not a blocker as such.
DAN ASSOR [00:08:47] I think that’s a great last few words to end on. So thank you very much Bharat for joining us today.
BHARAT MISTRY [00:08:51] Thank you Dan, I got your name right this time.
DAN ASSOR [00:08:57] Thank you.