VMware’s Tom Kellermann on Defending Against Ransomware Attacks
In ransomware attacks, cybercriminals attack through the backups because they know that security practitioners rely on backups to save themselves after a ransomware attack. Therefore, it is essential to have multiple backups, says Tom Kellermann, head of cybersecurity strategy at VMware.
CISOs need to be much more clandestine in reacting to ransomware attacks, Kellermann says in an interview with Information Security Media Group. They can do this seamlessly, he adds, by integrating the telemetry and the security solutions in the network detection response system with the endpoint protection platform, as infrastructure must defend itself.
In this interview, conducted during the recent VMWorld conference, Kellermann also discusses:
- The evolution of the CISO’s role;
- Building an effective incidence response and investigation mechanism;
- Taking a tactical and strategic approach to battling ransomware.
Kellermann is the head of cybersecurity strategy for VMware Inc. Previously, he was chief cybersecurity officer at Carbon Black Inc. and CEO and founder of Strategic Cyber Ventures. In 2020, he was appointed to the Cyber Investigations Advisory Board for the United States Secret Service, and in 2017, he was appointed the Wilson Center’s Global Fellow for Cyber Policy. He held the positions of Chief Cybersecurity Officer for Trend Micro, vice president of security for Core Security, and deputy CISO for the World Bank Treasury.