Virtualization Technology News and Information
RSA Conference 2022 Q&A: Sumo Logic will Showcase how to Secure Digital Experiences, Surface Threats Automatically and Speed Investigation and Response


Are you getting ready for the upcoming RSA Conference, the world's leading information security conference and exposition?  The event is quickly approaching, taking place June 6-9, 2022, both digitally and yes, physically, at the Moscone Center in San Francisco.  For four days, you'll gain insights, join conversations and experience solutions that could make a huge impact on your organization and your career.

Ahead of the show, VMblog received an exclusive interview with George Gerchow, CSO and SVP of IT, Sumo Logic, the SaaS analytics platform which enables customers to deliver reliable and secure cloud-native applications.



VMblog:  To kick things off, give VMblog readers a quick overview of the company.

George Gerchow:  Nearly every enterprise undergoing digital transformation is building cloud-native applications to deliver new, digital experiences. The Sumo Logic Continuous Intelligence PlatformTM provides real-time analytics and insights to help practitioners and developers ensure application reliability, secure and protect against modern threats, and gain insights into their cloud infrastructures. By delivering a SaaS analytics platform for cloud-native application observability and security solutions, Sumo Logic is empowering the people who power modern, digital business so they, in turn, can deliver reliable and secure digital experiences.

VMblog:  What market needs or problems are you addressing in the security space? 

Gerchow:  Sumo Logic helps organizations secure their digital transformation and experiences - from cloud migration and app innovation to security operations. During the busy week of activity at RSAC, we will demonstrate how companies and organizations can secure digital experiences, surface threats automatically and speed investigation and response.

VMblog:  What are some of the key takeaways of your solution that RSA conference goers should be aware of?  And what sets you apart from the competition?

Gerchow:  The ever-increasing sophistication of attacks, abundance of disparate security tools, and limited security talent poses increasing challenges for security leaders looking to improve their cyber defenses, mitigate risk and increase resiliency.

Using Sumo Logic, customers can consolidate tools with a single cloud-native platform to detect, investigate, respond and  remediate threats for SecOps, DevSecOps and modern apps. Sumo Logic automatically uncovers indicators of early stage threats arising from expanded attack surfaces and generates actionable insights your security analysts can quickly investigate. Sumo Logic provides real-time, holistic visibility into the security posture across an organization's cloud, multi-cloud, on-prem, and hybrid environments. Sumo Logic also reduces the time security analysts spend investigating and responding to incidents by empowering SOC teams to fully automate the detection, triage, investigation, and containment of cyber threats.

VMblog:  What are some top priorities for security leaders at RSA to consider this year?

Gerchow:  Organizations are still struggling with what it means to not have a defined perimeter anymore. The old security models are not suitable, but they are still used to create strategies and responses to business risks. At the same time, these companies are pressing ahead with digital transformation projects, trying to grow their applications or services. This means that CISOs and IT security teams still don't have a seat at the table, and security is still being bolted on as the last step in the process.

I'm happy to have seen a ton of innovation in recent years, most of which accelerated due to the COVID-19 pandemic, but all this work to design and deploy new applications or services takes place without considering security. Still, not enough people realize the detrimental impact this has on so many levels. Developers are so concerned with availability and speed, but the focus instead should be on building a secure and available service from the start. If it's not secure, you have nothing.

Leadership teams will start to wake up to this. Management boards are becoming more security conscious due to the hype around ransomware and extortion, which forces them to care about security problems. While they won't dive into the details, they will want to keep their operations secure and ensure any new implementations that will grow the business don't bring in new problems. They realize that if they don't build security seamlessly throughout, they're going to encounter serious problems as they try to scale.

VMblog:  I'm sure the keynotes will discuss big pictures, but what trends are you seeing that we should be aware of in 2022?

Gerchow:  Having IT teams report to security departments is a model that will definitely start gaining traction in the industry. By 2030, 50% of the industry will be operating this way. With the tech sector leading the way, this will affect companies everywhere - from FinTech to healthcare. With all organizations trying to become software companies, it's time for them to behave like one.

The hope is that by 2040 security departments don't even exist anymore. What this means is that organizations will have security programmed into their entire systems so that everyone follows the best security practices and behaves in a secure fashion. With more and more hygiene in security, this concept is going to grow and eventually happen.

VMblog:  Where/how can attendees find you at the show? 

Gerchow:  We'll be in the North Hall in Booth #5463.


Published Monday, May 30, 2022 7:30 AM by David Marshall
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<May 2022>