As Outsourcing Grows, Asia Still Needs CISOsZscaler's Scott Robertson on Changing Security Leadership Needs
As more organizations in the Asian market outsource their security functions, they still will need to have a CISO, stresses Scott Robertson, vice president for Asia-Pacific and Japan at the cloud-based security firm Zscaler.
"Making a decision between one [managed security service] provider or another is not something that should be left to mainstream IT today," he says. "A dedicated security professional is needed to understand, interact, manage and monitor service providers." (See: MSSPs, The Preferred Route to Skills Challenge)
Unfortunately, however, many organizations in the region still lack a CISO, he points out in an interview with Information Security Media Group. And the region's security leaders need to develop a far better understanding of business issues and how to deliver value, he adds (see: How Is The CISO Role Changing?).
Asian markets vary widely in their level of security maturity, Robertson says. For example, while South Korea, New Zealand, Australia and Japan are advanced, India and China are still making progress while other developing economies still have a way to go, he says (see: Automation Needed to Beat Skills Challenge).
The growth in mobility and the shift to the cloud are forcing a change in strategies throughout the region, Robertson says. Accessing data over the internet using mobile devices requires CISOs to implement far different security measures than previous generations of systems protected by corporate firewalls and physical appliances, he stresses (see: Mobile Security: Still a Leap of Faith).
In this interview (see audio link below photo), Robertson shares a broad outlook on the Asian security market, discussing:
- How security issues in the Asian market differ from those in Western markets;
- The major drivers for security in the region;
- The common security pain points facing Asian organizations.
Robertson, who is based in Singapore, is vice president for the Asia-Pacific and Japan region at Zscaler, which provides cloud-based enterprise security solutions. He has worked in the region for eight years. Prior to Zscaler, Robertson worked at WatchGuard Technologies.