Interview: Shailendra Shyam Sahasrabudhe Of Cymulate On Role Of Technology & Cybersecurity in business

Date:

Trending

On Tuesday Evening, Shailendra Shyam Sahasrabudhe, Country Manager, India UAE, and South East Asia at Cymulate sat down with the TechGraph editorial team for a wide-ranging interview. We discussed Cymulate’s journey, the role of technology and cyber-security in businesses, and much more.

Read the complete interview:

TechGraph: Cymulate offers a comprehensive cybersecurity testing platform that allows organizations to assess their security posture continuously. How does Cymulate differentiate itself from other cybersecurity testing solutions on the market, and what unique value does it bring to businesses?

Shailendra Shyam Sahasrabudhe: The Cymulate modular platform provides a modular, scalable platform for businesses of all cybersecurity maturity levels to understand and manage their digital risk exposure. Unlike other solutions, Cymulate provides the ability to discover vulnerabilities and assess if they have a viable attack path from ground to cloud and back. It also validates that security controls detect and alert to activity, and proves that remediation has the desired outcome.

Additionally, customers can use the automated red teaming module to validate vulnerabilities across the full kill chain. They can also conduct what-if, targeted, and custom testing. Cymulate is the only vendor to provide internal and external Attack Surface Management (ASM), Breach and Attack Simulation (BAS), and Continuous Automated Red Teaming (CART) under one management console.

Notably, the company can further ingest other third-party data to provide additional context and improve incident response instructions. Cymulate has also recognized the need for security validation services provided by Managed Service Providers and has partnered with many organizations to deliver its offerings within their programs.

TechGraph: Cymulate’s platform emphasizes the concept of “continuous security validation.” Can you explain how this approach helps organizations proactively identify vulnerabilities and mitigate risks in real time? What are the benefits of ongoing security testing compared to periodic assessments?

Shailendra Shyam Sahasrabudhe: A company’s network is constantly changing as digital business requirements change, data access demands grow, and network configurations become more complex. Revenue loss risk, regulatory, compliance, and insurance pressures are all driving an in-depth look at cyber resilience and due diligence. Given the impact on business, cybersecurity has become a leadership and board-level discussion.

One where questions like, “How do you define and manage cyber resilience?” Or “How do you demonstrate security improvements?” Or “How do you demonstrate that the company’s complex systems are resilient to emergent threats?”, all must be answered in curated and straightforward ways. The benefit of Cymulate’s platform is that it is automated and can run consistently or on demand. Dashboards and reporting provide easy-to-understand resilience scores of individual security controls and an aggregated risk score that can be trended over time and against best practices.

Most security tools are designed to detect and alert to an exploit. Cymulate is different in that the technology safely mimics attacker actions and scans the network to find vulnerabilities and viable attack paths. Next, Cymulate provides over 120,000 test scenarios to test an attacker’s techniques and tactics to see if it can penetrate the network. In this process, it validates if the security controls are effectively detecting and alerting to activity.

Collectively this information and the remediation guidance provided can quickly be used to mitigate the exposure before an attacker has a chance to These scenarios can be run as frequently as needed. Annual or semi-annual assessments are simply not adequate for maintaining a low-risk profile at the pace of change in today’s digital environments. Cymulate automation also provides a previously unattainable solution for companies without in-house Red Teams and Blue Teams who lack the expertise to conduct in-depth assessments.

TechGraph: Cyber threats are constantly evolving, and organizations must stay ahead of the game to protect sensitive data. How does Cymulate ensure that its platform stays up-to-date with the latest threat intelligence and can effectively simulate real-world attack scenarios?

Shailendra Shyam Sahasrabudhe: Cymulate has a dedicated research team that has built over 120,000 test scenarios and 10,000 preconfigured attack campaigns. This is so that organizations of all sizes can validate whether their security controls are working effectively and are not exposed to threats. If a new threat surfaces, the research team will typically have a test run within 24 hours. They will continue to update these tests as more is understood about the attack and the various techniques it uses.

Additionally, with the inclusion of chainable execution techniques in the Advanced Scenarios module, Cymulate’s platform simplifies and enables security teams to build custom scenarios. This is to simulate a broad range of techniques used in specific attacks. Red Teams use this functionality to quickly build targeted, custom, and what-if testing.

TechGraph: Cymulate’s platform provides insights and reports that help organizations understand their security strengths and weaknesses. Can you elaborate on how these reports are generated and how they help businesses make informed decisions to enhance their overall cybersecurity strategy?

Shailendra Shyam Sahasrabudhe: The Cymulate dashboard provides an easy-to-understand assessment of each security control and an aggregate risk score. Security teams can drill down from the main page for detailed and actionable insights. Cymulate maps attacks across the full kill chain and identifies techniques and tactics according to MITRE ATT&CK and NIST frameworks.

Executive reports highlight high-risk security deficiencies and quantify risk based on a standards-based risk-scoring methodology. This shows the scores across each cybersecurity domain so that SecOps teams can understand defense in depth and the impact of compensating controls.

Automation of the security assurance process enables organizations to establish an enterprise-wide security baseline and continuously maximize their security posture, assure improved effectiveness, and prevent security drift.

TechGraph: Cymulate emphasizes the importance of enabling non-technical users to conduct security assessments. Could you explain how the platform caters to different levels of technical expertise within an organization, making it accessible and beneficial for a wide range of stakeholders?

Shailendra Shyam Sahasrabudhe: The Cymulate platform provides an intuitive interface with instructions that guide a less experienced user through setup. The company also provides professional services support to jump-start a company’s exposure management program.

The platform is also modular so that customers can start simple and activate more functionality as their comfort level grows. Additionally, advanced users will enjoy running full kill chain campaigns as well as using the BAS advanced scenarios capabilities where they can fully customize the environment for their Red Team needs.

TechGraph: Cymulate claims to provide a holistic approach to cybersecurity testing by simulating multiple attack vectors, including email phishing, ransomware, and endpoint compromise. How does this comprehensive testing methodology contribute to a more robust security framework, and how does it help organizations prioritize their security investments?

Shailendra Shyam Sahasrabudhe: Cymulate tests individual controls across the full kill chain. The company supports vulnerability validation, what-if, targeted, and custom testing. Given the comprehensive nature of testing a company can understand if security controls are working effectively and if they need to be tuned, or replaced.

By also showing the efficacy of compensating controls, a business can justify the immediate need or rationalize a delayed investment based on the results. This technology is also commonly used to compare new products so that teams can see which tool provides the highest efficacy for their environments and needs.

TechGraph: Cybersecurity is highly regulated, with compliance requirements varying across industries and regions. How does Cymulate’s platform address these compliance challenges, and what features does it offer to help organizations meet industry standards and regulatory obligations?

Shailendra Shyam Sahasrabudhe: With the ongoing regulatory shift from periodic audits toward cyber-resilience, cybersecurity compliance management can benefit from continuous validation and comprehensive reporting. Attack surface management paired with continuous attack simulations and immediate threat validation facilitates compliance with updated regulatory and industry standards.

Cymulate reports show the efficacy of preventative measures taken to improve security posture and demonstrate continuous efforts at detecting and remediating security gaps. Automated documentation facilitates communication with compliance officers, auditors, and other stakeholders. Continuous improvement in security not only facilitates compliance but also enhances and proves cybersecurity resilience.

TechGraph: Cymulate emphasizes the importance of providing a user-friendly and intuitive cybersecurity testing platform. Could you describe the user experience and interface of the Cymulate platform, and how it facilitates efficient security testing and risk mitigation?

Shailendra Shyam Sahasrabudhe: Far too often we work with a smaller staff than we want and a wide array of skill sets. Cymulate has taken this into consideration and designed its UI to appeal to all cyber-maturity levels. For less experienced practitioners, the solution should provide value out of the box and increase cybersecurity offense and defense skills through day-to-day use. For higher-level cyber-maturity professionals, the solution is more open and customizable and designed to liberate the team from time-consuming tasks.

Cymulate provides an easy-to-use interface for purple teaming and red teaming leveraging Breach & Attack Simulation (BAS) and Continuous Automated Red Teaming (CART) requiring zero coding or advanced cybersecurity training before use. A detailed report provides easy-to-follow technical remediation and executive-level reporting under the MITRE ATT&CK framework. A high-level cyber-mature professional armed with adversarial skills can take advantage of Cymulate’s Advanced Purple Teaming Framework to craft and automate sophisticated scenarios.

TechGraph: Looking ahead, what are Cymulate’s future plans and developments? Are there any new features or enhancements in the pipeline that users and potential customers can look forward to in the coming months or years?

Shailendra Shyam Sahasrabudhe: The company’s growth strategy involves building and strengthening product capabilities, brand awareness, and partner channels. In addition to direct sales, Cymulate engages with Value Added Resellers (VARs), MSSPs, and Systems Integrators to drive customer acquisition. Cymulate’s platform produces outcomes that are indispensable to channel partners’ identification of opportunities and service effectiveness.

Continuous threat exposure management (CTEM) – originally presented by Gartner – is a cyclical process designed to continuously review, remediate, and control threat exposure throughout the organization. The Cymulate platform is designed to help customers implement and improve a CTEM program with its Discover, Validate, Prioritize, and Optimize approach. This approach aligns with the CTEM program. As CTEM evolves, Cymulate will continue to add enhancements to provide our customers with the functionality needed to meet the demands of this program. We will also continue to provide updated test scenarios for emerging threats so that our customers can manage their risk and respond to new digital network demands.

THE SNAPSHOTS, IN YOUR INBOX

Get quick snaps of everyday happening, directly in your inbox.

We don’t spam! Read our privacy policy for more info.

Support our independent journalism PayPal (Outside India) For PayU (For Indian Readers).

Krishna Mali
Krishna Mali
Founder & Group Editor of TechGraph.

More Latest Stories

More Articles

Godrej Capital’s Gen AI Plan: CTO Jyothirlatha B on SAKSHAM AI and the Future of Financial Services

Speaking to TechGraph, Godrej Capital CTO Jyothirlatha B shared how the company is harnessing GenAI to accelerate credit assessments and enhance customer service. She...

Preparing for a Data-Driven Future: How the GRE Assesses Academic and Analytical Readiness

As sectors such as artificial intelligence (AI) and machine learning continue to grow and develop, the demand for professionals with analytical and critical thinking skills is at an all-time high with employers. The ability to analyze data, solve complex problems, and take up interdisciplinary...

Exploring the broad appeal of football: from fashion to video games

Football, often called the world's game, goes far beyond the pitch. Its influence extends...

Neon54 Casino Review: A Vibrant Gaming Experience

When it comes to striking the perfect balance between entertainment and innovation, Neon54 Casino...

How Generative AI is Shaping Voicebot Capabilities

The advent of Generative AI is here to revolutionize the technological landscape and reimagine...
00:08:12

Congress-Led Opposition Calls for Vice President Dhankhar Removal

India Congress lead opposition coalition also known as the INDIA bloc, has formally submitted...

Decentralizing Cardiac Care: Sunfox Technologies’ Rajat Jain on the Spandan ECG Impact

During an interview with the TechGraph editorial team, Sunfox Technologies' Founder and CEO, Rajat...

Boson Whitewater, Citadines OMR Chennai to Launch First-of-its-Kind Wastewater Recycling System

Boson Whitewater, a water utility company that converts STP-treated water into high-quality potable water,...

BProTrade: Global Expansion Explained

December 2024 marks a pivotal time in the world of online trading. With Bitcoin crossing the $100,000 mark and altcoins like Dogecoin and Toncoin...

Jungle Camps India Limited Sets IPO Price Band at ₹68-₹72 per Share

Jungle Camps India Limited (JCIL), an India-based ecological hospitality service provider on Thursday announced...

Atmosphere The Store Makers draws INR 5 Cr in seed round

Mumbai based Atmosphere – The Store Makers on Thursday raised INR 5 crore in...

Voice-Based AI and SLMs: Gnani Ai CEO Ganesh Gopalan On India’s Voice AI Boom

During an interview with TechGraph, Ganesh Gopalan, Co-founder of Gnani.ai, discussed how voice-based AI,...

Top Trends in Web3 Platforms for Forward-Thinking Entrepreneurs

The digital landscape is evolving rapidly, and Web3 platforms are leading this transformation. For...
00:00:20

Benjamin Netanyahu: Thank You President Donald Trump for Calling Hamas to Release Hostages

Israeli Prime Minister Benjamin Netanyahu on Tuesday expressed his gratitude to U.S. President-Elect Donald Trump for his recent call for Hamas to release hostages. https://open.spotify.com/episode/6xpUQdGpNQUkwHNPXP7WgP?si=ro44gKgxR1yn6qBbj6iXpw "I...

Titan Intech Ltd To Secure Rs 200 Cr via NCDs

Titan Intech Limited, a BSE-listed company specializing in Embedded Manufacturing Services (EMS) for OEM/ODM solutions and advanced embedded systems, has announced plans to secure Rs 200 crore through Non-Convertible Debentures (NCDs). The funds will be utilized to accelerate the company's strategic initiatives in high-growth sectors,...

Ensuring Fair Play: AIGF CEO Roland Landers on Promoting Skill-Based Gaming in India

During an interview with TechGraph, Roland Landers, CEO of the All India Gaming Federation...

The Evolution of Gaming: From Traditional to Immersive Online Experiences

Gaming has undergone a remarkable transformation over the decades, evolving from basic, tactile forms...

How AI is Transforming Traditional Business Roles

Artificial Intelligence has already had a significant impact on businesses and has made data-driven...

The Impact of Real-Time Market Data Solutions on Informed Trading Decisions

The world of finance isn’t stagnant; it is dynamic and ever-evolving. Every second, a...

AI and Workplace Equality for Women in the Digital Era

As society heads toward an age dominated by technology, a key question remains: will...

OPPO, Microsoft Teams up To Bring Advanced AI Productivity To ColorOS 15

OPPO has strengthened its partnership with Microsoft to deliver advanced AI productivity features to...

The Hidden World of Mega888 APK: What Casual Players Are Missing Out On

Mega888 APK is well-known among online casino enthusiasts for its thrilling games and easy-to-navigate...

The Importance of Zero-Trust Security Models in Safeguarding Data

In an age where cyberattacks grow more sophisticated by the day, traditional security models...

Crypto Market Crosses $3.08 Trn, Bitcoin Hits $91,616, Litecoin Drops Below $90

The cryptocurrency market surged to a total valuation of $3.08 trillion on Monday, with...

Voice-Based AI and SLMs: Gnani Ai CEO Ganesh Gopalan On India’s Voice AI Boom

During an interview with TechGraph, Ganesh Gopalan, Co-founder of Gnani.ai, discussed how voice-based AI,...

The Role of Health Plans with Preventive Care in Reducing Financial Risk

In an era where healthcare costs are spiraling and chronic conditions are on the...

What’s next for Battery Recycling: Innovations on the Horizon

India is accelerating its shift toward electrification and renewable energy, bringing battery recycling into...

Unexpected Tips To Help Maintain Your Vehicle’s Condition

When it comes to prolonging the life of your vehicle, the condition of your...

Discover the Features of Melbet’s Mobile App for Indian Bettors

The Melbet mobile application has been designed to cater to the growing community of...

Top Trends in Web3 Platforms for Forward-Thinking Entrepreneurs

The digital landscape is evolving rapidly, and Web3 platforms are leading this transformation. For...

The Importance of Zero-Trust Security Models in Safeguarding Data

In an age where cyberattacks grow more sophisticated by the day, traditional security models...

Indusface Launches CyberShiksha program to Educate Students on Cybersecurity

Indusface, a leading application security provider for SaaS solutions, has launched CyberShiksha, a national...

Crypto Market Crosses $3.08 Trn, Bitcoin Hits $91,616, Litecoin Drops Below $90

The cryptocurrency market surged to a total valuation of $3.08 trillion on Monday, with...