“Security is not a one time affair and need to keep reviewing, evolving and enhancing time to time” said Umesh Kalyankar, CISO & VP Technology at Bank of China.

Can you describe your current role, and what responsibilities do you undertake?

As a CISO, responsible for Security, Risk, Governance and Compliance from India Regulator and Head Office Regulations, Overview of Technology Projects.

How will you describe your journey in the cybersecurity Industry?

For almost 2 decades managing banking technology and security projects and now association with bank as a CISO I have executed multiple project in security domain with proven results. Most recent includes change over of technology and security stack with minimal impact on live operations.

If you could make one recommendation to the next generation of cybersecurity leaders, what would it be?

Security is not a one time affair and need to keep reviewing, evolving and enhancing time to time, should adopt zero trust, password less, biometric authentication systems, one should wisely choose among them as and what required rather than putting layers of solutions and then failing in integration monitoring and visibility. Training and user awareness is also equally must.

How do you stay current with the latest security threats and technologies?

I subscribe to Regulation, CERTIn, and Security forums like CXO Junction.

Can you discuss a time when you had to handle a security incident, and what steps you took to resolve it?

In my prior experience I had faced challenge of entire network stack getting compromise and subsequently the endpoints at one of the entity due to virus attack. We had to rebuild the entire stack by endpoints isolation technique. Learning from the issue and introducing measures and corrective actions.