HashiCorp - Experts & Thought Leaders

Commvault, a pioneering provider of cyber resilience and data protection solutions for the hybrid cloud, announced Alan Atkinson has become the company’s first Chief Business Development Officer. In this new role, he will build strategic next-gen technology and security partnerships, drive co-development initiatives, and create new go-to-market opportunities for Commvault and its partners, all within the Business Development organisation led by Chief Trust Officer Danielle Sheer.   Commvault’s partner strategy and ecosystem Graff will lead Commvault’s partner strategy and ecosystem, overseeing partner sales, resellers and alliances With this transition, Commvault has recruited a new dynamic partner pioneer, Michelle Graff, as Senior Vice President of Global Partners and Channel. In her role, Graff will lead Commvault’s global partner strategy and ecosystem, overseeing partner sales, resellers and alliances, and the vision and execution of the company’s partner programs.  She will focus on advancing growth and co-innovation with partners and delivering differentiated cloud and AI-forward solutions to customers.   Graff's leadership roles Graff brings more than 25 years of deep partner experience to Commvault. Prior to Commvault, she served as Vice President of Global Channel Sales and Alliances at Securiti.ai, where she was instrumental in creating and scaling the company’s indirect revenue engine. Prior to that, Graff held leadership roles at various security, technology, and storage companies, including HashiCorp, Pure Storage, and Palo Alto Networks.  Cyber resilience solutions Graff held leadership roles at security, technology, and storage companies, including HashiCorp “As more companies move to the cloud, embrace AI strategies, and adopt industry-pioneering cyber resilience solutions, Commvault and our partners are more relevant than ever,” said Graff. “I'm excited to collaborate with our partners to deliver even more value to enterprises globally, accelerate customer acquisition, and create opportunities for business growth.” Commvault’s capabilities “Cyber resilience is a shared challenge, and no single vendor can solve it alone,” said Atkinson. “With Michelle pioneering our global partner organisation, my new role will focus on extending Commvault’s capabilities across a broader partner ecosystem. I’ll also focus on creating new co-development opportunities that deliver exceptional value to customers and partners alike.” “With Alan and Michelle in these pivotal roles, we can boost partner success, extend our reach, and delight customers with co-developed solutions that keep enterprises resilient,” said Gary Merrill, Commvault’s Chief Commercial Officer.

The Cyber Leader Summit, held at London’s Leadenhall Building and hosted by Check Point® Software Technologies Ltd., a pioneering AI-powered, cloud-delivered cyber security platform provider, served as a forum for discussing the escalating threats in the cyber landscape, with a particular focus on the alarming rise in cybercrime and the critical need for more robust defences. The one-day event brought together over 200 delegates, along with experts from Check Point, Microsoft, Omdia and Hashicorp among others, to explore the biggest cyber threats facing organisations. Cyber pioneers headed to the capital to listen, review and engage in talks around the global risk of security facing all industries.  Cyber Security Breaches Survey Citing the rule Cyber Security Breaches Survey Weir shared that 50% of UK firms Mark Weir, Regional Director for UK & Ireland at Check Point addressed the audience in his opening remarks, arguing that they need to revise the minimum security level in this country. Citing the government’s Cyber Security Breaches Survey Weir shared that 50% of UK businesses have been breached in the last year, while 75% of senior pioneers believe cyber security is important. With Ransomware and email breaches remaining the top threats for organisations, the question being asked at the summit was, “who is behind the cyberattacks?” Deryck Mitchelson, Global CISO at Check Point delved into this during his presentation where he explored the topic of Artificial Intelligence (AI) as a looming economic threat and its influence on attack methods. Substantial financial gains Addressing the geopolitical dimensions, Mitchelson noted the significant threats originating from China, Russia, and Iran, particularly emphasising China's dual role as a technological partner and a substantial cyber threat. "The level of threat from China tends to be quite political as we’re deeply embedded with them in terms of technology exports. Yet, they pose a huge threat to us," he explained. He addressed the stark reality that cybercrime is on track to surpass the GDP of China by 2028 and highlighted the substantial financial gains cybercriminals are making, leveraging advanced tactics such as Phishing as a Service, which can be acquired for as little as $120 a month. Mitchelson remarked, "We're seeing a phishing epidemic – the accessibility and affordability of these services are contributing to the surge in successful cyberattacks." Power of AI and deep learning Mitchelson pointed to several high-profile breaches, including the theft of data from NHS Dumfries Deryck went on to share examples of how deepfakes, including voice clones, have had an impact on businesses and could potentially influence major events such as the general elections later this year. Mitchelson pointed to several high-profile breaches, including the theft of data from NHS Dumfries and Galloway as well as valuable lessons from the British Library. "All these attacks are preventable. None of these are classed as next-generation attacks. We should be doing much better to protect our organisations."   “It is important that we don’t underestimate the potential impact this technology could have on organisations of all sizes. The good news is that companies like Check Point are leveraging the power of AI and Deep Learning to predict and prevent attacks from happening.”  Threat posed by ransomware In the morning, delegates also heard from other industry experts including Marco Eggerling, Global CISO at Check Point. He provided insights into the world of Artificial Intelligence, demystifying the role of unknown cybercriminals. Other sessions included talks from Glen Robinson, National Technology Officer at Microsoft on digital defence in the AI era and Maxine Holt, Senior Director VP at Omdia regarding improving cyber hygiene. The People Hacker raised the awareness of humans being the number one risk factor for organisation The afternoon featured more presentations with Charlotte Wilson, Director at Hashicorp advocating for diversity in the industry, guest speaker Jenny Radcliffe aka The People Hacker raised the awareness of humans being the number one risk factor for organisation. The summit also highlighted the ongoing threat posed by ransomware in the UK and Ireland, which have become hotspots for such attacks. The day finished with a panel discussion where experts discussed the threat level and need for resilience on a larger scale. Cybersecurity strategies On that point, Mitchelson added: "Developing cyber resilience should be a key focus not just for organisations but for states and the public sector. In closing, Mitchelson urged attendees to rethink their cybersecurity strategies and prioritise cost-effectiveness, resilience, and the mental health of cyber teams." "We need to manage the mental health of individuals within our teams while ensuring resilient organisational structures," he concluded.

Permiso.io, a Palo Alto-based startup that provides the first of its kind in cloud identity detection and response for cloud infrastructures, announces a $10 million seed funding round with participation from institutional investors and angels. The round was led by Point72 Ventures and included Foundation Capital, Work-Bench, 11.2 Capital, Rain Capital, as well as numerous security industry leaders such as: Jason Chan, former VP of Information Security at Netflix; Talha Tariq, Chief Security Officer at Hashicorp; Travis McPeak, Head of Product Security at Databricks; Tyler Shields, CMO at JupiterOne; and Brandon Dixon, Founder of PassiveTotal. Additionally, Sebastian Goodwin, CISO at Nutanix; Alek Armani, CISO at Sentry.io, Julien Soriano, CISO at Box; Caleb Sima, CSO at Robinhood, and Tim Byrd, CISO at TIAA have joined Permiso in advisory roles. Adopting public cloud Permiso Investor and Advisor Jason Chan, who led Netflix’s cyber security program for ten years, is emphatic that cloud security needs to be focused on identities: “Identity is as close to a silver bullet as it gets in the cloud. If you get it wrong, you face significant risks and challenges in securing your enterprise effectively,” said Chan. Permiso Security brings the first of its kind in cloud identity detection Permiso Security brings the first of its kind in cloud identity detection and response for your public cloud infrastructure. With engineering and infrastructure teams aggressively adopting public cloud, security teams are drowning under the millions of activities and changes made daily by human and machine identities. At cloud speed, the ability to identify suspicious or malicious behaviors by those identities is nearly impossible. Identity-based detection Permiso pioneered a unique identity-based detection and response platform to profile and monitor human and machine identities and credentials for malicious or anomalous behaviors that could indicate compromised credentials, policy violations, or insider threats. Customers today leverage Permiso to gain visibility into their identity landscape to achieve these key outcomes: Mature their cloud security programs – As enterprises move to cloud, identity practices move from high levels of human access and change toward primarily machine access and automated changes. Enterprises utilise Permiso to help measure their progress towards their identity and access management objectives of secure access methods and minimised human access as well as change management objectives around reducing or eliminating human driven change. Cloud access credential Detect Credential Abuse – The myriad of cloud credentials (passwords, access keys, certificates, key pairs) creates complexity in detecting potential abuse by attackers or insiders. The ability to profile each identity and credential allows Permiso to detect anomalous and malicious abuse of any cloud access credential. Investigate Smarter and Faster – With over 11,000 different privileges and event types, it is impossible for security teams to remember and understand all of them. Enterprises utilise Permiso to create a cohesive story and timeline using the identity as the narrator and translator in support of their incident response and investigations. Cloud infrastructure environment Permiso unlocks unique visibility into my cloud infrastructure environment" “Permiso unlocks unique visibility into my cloud infrastructure environment that I currently don’t get from a Cloud Security Posture Management (CSPM) or SIEM. The ability to measure the maturity of my identity governance program helps me proactively identify risks from insecure identity practices and detect real-time threats within my cloud infrastructure from those identities,” said Erik Bataller, VP of Information Security for ACV Auctions, a current Permiso customer. The company is founded by Co-CEOs Paul Nguyen and Jason Martin, CTO Stephen Demjanenko, and VP of Engineering Phani Modali. Prior to founding Permiso, Nguyen was SVP of Product Strategy and Product Management, and Martin was the EVP of Global Engineering and Security Products at FireEye. Product leadership roles They each joined FireEye separately via acquisitions of their previous companies, Invotas and Secure DNA. Demjanenko and Modali held senior engineering and product leadership roles at Meraki and FireEye respectively. Permiso was founded with the goal of identifying the next evolution of cloud security" "Permiso was founded with the goal of identifying the next evolution of cloud security," said Nguyen. "After being in the security industry for 20 years, it’s a bit of déjà vu again with cloud security. Cloud security tools today started the way we did 20 years ago with solutions to gain visibility into what’s in my environment and asking, ‘am I vulnerable?’” Infrastructure runtime security “We saw the next evolution with the advent of Advanced Persistent Threats back then and the emergence of detection and response solutions like FireEye which is the opportunity we see for Permiso today in public cloud.” “We’ve done hundreds of customer interviews and worked with over 10 co-development customers over the last year and we find that when it comes to cloud infrastructure runtime security, most organisations are collecting data in their SIEM or a data lake; however, they can’t really make sense of it rapidly or in a manner that answers the questions their cloud security and infrastructure teams have,” explained Martin. Cloud security expertise With the $10 million seed round, Permiso intends to continue scaling its engineering team With the $10 million seed round, Permiso intends to continue scaling its engineering team, expanding its current customer footprint, and building partnerships. “Permiso’s identity-based runtime approach bridges the current cloud security expertise gap by providing security teams with greater visibility into user activity in the cloud, resulting in better controls and more accurate remediation of malicious activity,” said Noah Carr, Partner at Point72 Ventures. “We expect Permiso to become a critical piece of the cloud security stack as organisations continue to adopt and rely on cloud infrastructure to run their businesses.”