An interview with Jiten Bhalgama, Co-Founder and Director TOC, Infopercept Consulting Pvt Ltd, an information security consulting and services company that provides a range of services such as cybersecurity consulting, managed security services, compliance and risk management, and vulnerability assessments, to talk about cybersecurity solutions for enterprises and businesses
Techx: Tell us more about Infopercept’s services and solutions portfolio and how are you enabling organizations with the right cybersecurity solutions.
Jiten: Infopercept is a cybersecurity company that covers all aspects of detection and response in addition to basic cyber hygiene solutions, which are primarily used to prevent known attacks.
Infopercept works on three major cybersecurity approaches: offensive security, defensive security, and compliance.
Offensive security is an approach in which an external team acts like adversaries and attacks the systems to identify vulnerabilities and present a report on various vulnerabilities in applications, processes, and people. Organizations can then work to solve the vulnerabilities. Infopercept provides a combination of its own tool called ‘Invinsense Offensive Detection and Response’ (OXDR) and teams to launch actual as well as simulated attacks.
Defensive security involves implementing tools and people to detect and respond to threats and conduct threat hunting to combat any attempt of cyberattack. Infopercept provides its tool called ‘Invinsense XDR,’ ‘Invinsense XDR+’ (deception technology), and teams to provide 24×7 detection and response.
Security compliance is the framework that one needs to follow either proactively or by regulation. Compliance, when followed religiously, can be a great strategy framework for organizations to improve their cybersecurity posture. Infopercept provides its own platform called ‘Invinsense GSOS’ along with teams to take care of all kinds of security compliances.
We also offer a necessary and strong service called ‘technology optimization.’ Cybersecurity-aware organizations typically have at least 40 cybersecurity solutions in their environment. These solutions must be continuously monitored, tuned, and updated to maintain their health and availability. Infopercept’s Technology Optimization Center (TOC) is capable of supporting leading third-party products in existing environments and new deployments. TOC enables organizations to avoid attacks that happen due to misconfigurations or non-updated security solutions.
Techx: Small & Medium businesses may not necessarily have a specialized team for threat detection, response and hunting. How are you protecting such customers?
Jiten: Not only do SMBs, but even large enterprises find it difficult to have a specialized team that can optimize all cybersecurity solutions and technologies. This is the reason why we suggest a combination of our solutions and services, which include Invinsense XDR with a blue team, Invinsense XDR+ with a purple team, Invinsense OXDR with a red team, and Invinsense GSOS with a pink team. We call our entire offering ‘cybersecurity with an attacker’s mind and a defender’s brain.’
This helps organizations to first think and act like an attacker and then structure their defence, which becomes the brain of their cybersecurity. For organizations that already have cybersecurity solutions, we only provide our services and team to them
Techx: Tell us more about your Offensive Security strategies and what solutions do you have for offensive security?
Jiten: Many organizations only come to know about the loopholes in their cybersecurity when they are attacked, and until then, they are in some kind of illusion that they are secured. To avoid such a scenario, we advise organizations to go for offensive security on a regular basis. Under this approach, organizations hire professionals to simulate and actually attack their systems to check the robustness of their cybersecurity. The findings of offensive security also help organizations to improve their defensive strategy.
Organizations know their ‘mean time to detect’ and ‘mean time to respond,’ but it is only during actual attacks or offensive security operations that they come to know the actual mean time to detect and respond.
We provide a dedicated platform for offensive security. Invensense Offensive Extended Detection and Response (OXDR) consists of tools and people that test systems for vulnerabilities in people, processes, and technology. It combines everything needed to test the environment under stress and mature it.
OXDR includes Red Teaming, Continuous Automated Red Teaming (CART), RedOps, Breach and Attack Simulation (BAS), Vulnerability Management, and DevSecOps. Invensense OXDR helps organizations with real ‘attacker’s action’ and continuously improves their cybersecurity posture.”
Techx: How are you helping organizations with their cybersecurity compliance, especially for organizations in different geos or international customers?
Jiten: Invensense GSOS’ is an intuitive platform that integrates all compliance-related best practices with business processes. The platform has seven simple modules that help achieve relevant security compliances according to geography and vertical with ease and accuracy.
The key modules include defining objectives (vision and mission), risk management, policy procedure automation, cybersecurity awareness, tabletop exercises and evidence management, CISO dashboard, and project management.
Under our compliance services, our Pink Team helps organizations adhere to all kinds of security compliances that are relevant to their vertical and geography.
Techx: Which regions are you currently active in and what are your plans for the Middle East region in the coming years?Jiten: Infopercept has a direct presence in India and the UK. In the Middle East region, we are active through our partner base and have a strong presence in Saudi Arabia, Kuwait, and Bahrain. Very soon, we will establish a direct presence in the region.