/dqc/media/agency_attachments/3bO5lX4bneNNijz3HbB7.jpg)
Follow Us/dqc/media/post_banners/wp-content/uploads/2022/01/appknox.jpg)
Harshit Agarwal, Co-Founder & CEO, Appknox provides cybersecurity solutions. Here he talks about the need for the cybersecurity for various segments.
How can the IT MSMEs secure themselves against cyberthreats considering the investments involved?
Harshit Agarwal - When we talk about Cybersecurity it's not like it always starts with a very big budget. In fact, from day 0 you can take care of best coding practices and some of the basic cybersecurity principles in building your IT Infra. As you grow you have to look at it strategically with starting to work with MSSPs to look at different aspects of cybersecurity as per your business. Cybersecurity can be looked at starting at 0$ and can require a budget of Millions of Dollars depending on scale and requirement.
What is the reach of cybersecurity outside the IT sector? Can you speak about some other sectors where cybersecurity is crucial?
Harshit Agarwal - Cybersecurity had always been more of a regulatory requirement in a lot of sectors like NBFCs, Financial Institutes, Govt. Entities. Post-Covid this has changed a lot, now any Business that has IT presence needs to ensure cybersecurity.
Coming to enterprise data security, storage has become equivalent to cloud and Datacentre. Do you have thoughts on how secure are these and what measures they require?
Harshit Agarwal - Cloud security is all about shared responsibilities. Where Cloud vendors ensure a part of security and part of it depends on the company/enterprise. With such a model lot of data side of security is still dependent on the company and needs to be managed with best in the world encryption and access control policies.
What are some the benchmarks in mobile security testing?
Harshit Agarwal - Some of the most followed benchmarks include Owasp MASVS which keeps on updating itself with new security postures and test cases that need to be taken care of. Lot of regional countries have their own guidelines that are used by regulators to enforce minimum security for applications.