Tech Disruptors Qualys CEO on Cybersecurity Risk Environment
May 15, 2025
Sumedh Thakar, CEO of Qualys, who has been with the company since 2003, dives into the evolution of cybersecurity strategies. He discusses shifting from traditional attack surface management to a more integrated risk surface approach. AI's role in enhancing cybersecurity measures takes center stage, as he highlights its potential to transform workforce dynamics and decision-making. Thakar also reflects on the complexities of incidents like the SolarWinds attack and anticipates future trends in cybersecurity mergers and acquisitions.
AI Snips
Chapters
Transcript
Episode notes
Shift to Risk Surface Management
- Risk surface management focuses on actual business risks, not just attackable vulnerabilities.
- Knowing what can be attacked doesn't mean a high risk of loss exists without business context.
Prioritize Fixes Strategically
- Prioritize vulnerabilities based on exploitability, attacker intelligence, and business impact.
- Focus resources on fixing the most critical and business-relevant risks to reduce alert fatigue.
Automate Patch Management
- Combine vulnerability detection with automated patching to reduce exposure quickly.
- Prioritize patches to minimize operational disruption while fixing critical risks.