Secure Sight : Solving SMEs’ complex security needs

41364136a1

Secure Sight Technology Pvt. Ltd. is a  Risk management company with focus  on innovation to solve the complex security problems. It helps it’s clients to achieve compliance without compromising the confidentiality, integrity, or any other  factor which might degrade the clients brand value.

SecureSight’s mission is to provide information security and  consulting services to Small, Medium and Enterprises in a practical and  economical way.Their aim is to provide original, custom,  and client specific solutions. However while achieving the aforesaid goal, keep the  cost of implementing information security solutions to the minimum.

Techaloo got an opportunity to have a chit chat with Nishant, Founder at SecureSight. Let see what he wants to share with us.

Techaloo : When did you start your journey?
Nishant : It started as a freelance consulting in the month of January of 2013. I was called in to assist a hacking incident which had left my client high and dry, the client deal’s in bulk sms and email, they had a few server with minimum security and was not patched for almost 3 months, they lost a few lakhs worth business to this kind of issue and this was not the first time they had faced this issue. This was my que to see a future for SecureSight Technologies.

I did a research and pulled in a lot of report to verify the fact that these problems were surfacing a lot and the damages done were tremendous on a global scale. This was the time when I decide to jump in with both the feet and make a difference

 

Techaloo : What made you motivated to join the entrepreneurship community?
Nishant : The inspiration to start my own was with me for a long time all I needed to do was find a problem to solve. I always saw myself working towards solving problems rather than to take a back seat and tag along. I really admire the work of Mr. Ratan Tata, Mr. Narayan Murthy.

I am motivated more towards understanding “how we can improve” , more like hacking the thing down to basic and rebuilding them with lesser overhead, and not just about the technologies but for almost everything else too. I like to understand how thing work at the core and how can they be made different by reshuffling.

 

Techaloo : Where are you based out of?
Nishant : SecureSight Technologies is actually based out of Mumbai, but we have an operation centre in Electronic city, Bangalore.

 

Techaloo : How did this Idea come to your mind?
Nishant : Like I described earlier it was a security incident with a client of mine which showed me a problem. A problem which I think many like to ignore, although it has a potential to bring down any business to its knees.

After the Issue was taken care, I was thinking on How difficult it was for me to convince them to get security implemented and/or at least some of it, a few question I was asked were

1. How much will it cost us to implement?

2. Are there any options which are economical

3. What is the ROI for investing in Security?

For me I had ready answer for 1st & 3rd Question but not for the 2nd one, all research I did to find the answer pointed me towards only a few standard options which were not flexible or scalable, in order for me to suggest them. That’s were I got this idea.

Why not bring some non-traditional approaches for implementing Security, I mean if I can give all round security instead asking them to invest in individual software’s with a very specific task and bring down the cost of implementation while making it scalable, without hampering the ROI or the compliance (which is why we implement security).

 

Techaloo : Why the name SecureSight Technologies?
Nishant : Well Our Vision is to help startups “SECURE” themselves, and we have kept our focus on various way to empower them achieve it. So the name “Secure+Sight” Technologies Pvt Ltd.

 

Techaloo : What was your vision/mission while starting SecureSight Technologies?
Nishant : It was clear and precise, “To provide unique ways of making Information Security Startup friendly, while doing so we have to ensure that it still fit their pockets.”

The most important factor because of which the startups, do not have adequate security measure is cost, so we had to answer how we can make it more feasible without compromising the sole purpose of security.

 

Techaloo : What hurdles did you face while starting?
Nishant :

First: Begin a first generation entrepreneur, one was a bit of resistance from family because I was leaving my 50k plus per month job.

Second: Money, I started by bootstrapping and with all in, used all my saving, I am yet to raise a seed investment since SecureSight is in Service industry it’s a bit hard to convince Investors.

 

Techaloo : Have you got any kind of funding? Or are you planning for the same?
Nishant : No I haven’t got any funding yet, but yes I am planning to get some Seed investment or an angel investment.

 

Techaloo : What do you mean by “a risk management company”?
Nishant : When it comes to providing security measure to startup it’s very hard to give them a pre-defined strategies,  Hence we do a Individual risk assessment on case to case, we work closely with the founder or the decision makers to find a right set of solution, while doing this we ensure there is a personal touch to what we do.

The byproduct of this is that at the end we provide them a security/compliance level which brings down the risk not only from IT Infrastructure but also with vendors or employees management, giving them an end to end risk management system, which will help Start-ups secure their digital and non digital assets. Hence we call our self “Risk management Company”

 

Techaloo : Tell us something about the services provided by you?
Nishant : The services we provide are traditional security service, such as Web-application Security, Application Security, and Network Security etc. However we have bi-furcated them in such a way that they are made independent and can be implemented as a standalone service. Our services range from assistance on designing the Office Network, or creating a WIFI-network to Forensic Investigation in case of fraud or threat.

Our USP is that we do not over load you with unnecessary compliance or security controls, In simple term we look inside rather than outside for the threat and no I do not mean Insider threat, I mean we use what you already have and supplement it with what is missing, with respect to the various security domains that are present. Most of our service that we currently offer, you will find that they are model around Pay as you use method.

 

Techaloo : Are you planning to add any new services?
Nishant : Yes we are planning with a few more services in the 24*7 monitoring area, which again will bring down the cost and make them more economical than anyone in market.

By first quarter of FY14 we will enable them. Hence increasing our portfolio service from Current “one time Implementation” to “24*7 monitoring”, our existing portfolio has over 12 independent services to offer, however with the 24*7 monitoring getting enabled we will have over 24 different independent services to offer in our portfolio

 

Also in next few months or so we will launch 2 more exiting service which are not present in market at all. With those services we plan to increase the Cyber crime Detection rate in India.

 

Techaloo : What is “Start-up Security Packages”?
Nishant : Like I had said earlier it is difficult to give “One size suits all” Security service, when it comes to startups. Startup-Security Package is the first milestone of ours. Where we successfully created a standard package which can be within the budget of a startup, gives an all-round security, and also is scalable.

“Start-up Security Package” covers area of website security testing (Manual and automated), Network security, Employee awareness, Certain ISO control Policies to streamline their Business Verticals and to have a right set of Information Disclosure /Information Usage with employees and vendors.

The companies who can benefit from this package are Startups with 10-30 employees, who have a presence on internet and also have some or major revenue coming online. Implementing this package will ensure that nor your employees or vendors trick you, also we like to call it the First step towards the security in a startup because this defines that you are committed to provide online service with less worries of cybercrime, this also helps you in building a good trust level with your clients.

 

Techaloo : Why should a start-up care about their website?
Nishant : Now a day’s website is not just for sharing information, we are way past it. Now we are trying to solve complex problem which includes making or accepting payment hence putting your business in a grey area which can be quickly compromised. Also we have made hacking simpler with Google being are new teacher for everything. hence making it easier for Newbie’s/Noobs  or Probies which I like to called them, to Exploit you, plus they are considered as scouts to big hackers, if you are exposed/exploited and that information is shared online the chance of you not getting compromised are very slim. “Average time from compromise to discovery is 210 days even for Enterprise” – Trend Micro.

 

Techaloo : What do you think about security awareness in Indian startups?
Nishant : Very less, even research and poll shows a disappointing numbers. Start-ups feel that the built in security module along with an anti-virus is all they need and is enough to secure them. Which is not the case anymore. It’s time to change the thinking at the same pace we are developing the technology.

 

Techaloo : What is ISO 27001? And what is the usability of it for new startups?
Nishant : ISO 27001 is a part of the growing ISO 27000 Family, It is also a formal specification for implementing Information Security controls. It defines how to organize the Information security in any kind of organization; you can consider it as foundation of Information Security. ISO 27001 was formed to protect Confidentiality, Integrity and Availability of the Digital Information.

As far as the usability goes, ISO 27001 can be used by any size, or type of company, these guidelines are there for assistance. How you use it left up to the company who wants to get that certification. Since many startup focus on bringing the day to day task on internet which involves payments, personal details etc, Just like having a VeriSign certificate boost your market reputation if you are in E-Commerce, ISO 27001 will boost confidence with your client no matter if you are B2B or B2C E-Commerce Space.ISO 27001 is not meant only for Digital assets, it also covers non-digital assets.

ISO 27001 have 11 domains and of which I would like to list 3 here.

1. Security policy – management direction

2. Human resources security – security aspects for employees joining, moving and leaving an organization.

3. Access control – restriction of access rights to networks, systems, applications, functions and data

Consider only these 3 of the 11 domains and you will see how broadly they are defined, using only these 3 domains many startup can actually save a lot of legal trouble.

 

Techaloo : How is the response till now?
Nishant : We are getting a moderate to good response in India, we already have started to get queries from outside India. Considering our business plans for this year, we have limited our services within the Indian region only. It would not be easy to convince all the startup in one go. But we will be there soon enough. Our team is getting stronger and stronger day by day.

 

Techaloo : What are your plans for next 3 years?
Nishant : First things first I want to focus on Securing the Indian startups first, after all you cannot leave your home unsecured. By end of next year we plan our self to undergo ISO 27001 accreditation, we will enter international market in 2nd  years, by end of 3rd year, we see our self with  over 100 companies in domestic market and another 100 in international market(Optimistically speaking ).

Not to forget that we also want to foster the fresher’s with a keen interest in Information Security. We have various events that will be scheduled for making these fresher’s ready to face the Cyber crime irrespective to where they decide to work. The sole purpose of organizing the event will be to foster the fresher, Make Startups aware about the latest cyber crime issue hampering the SME and Startup segment, also on How to be ready for such threats.

 

Techaloo : What will be your advice for a new startup?
Nishant : I would like to share the best advice that I have ever come across

“Price is what you Pay, Value is what you get. So the Value proposition of your product is very important!”

I know being a Startup it is very important to take the financial decisions very effectively. We live in a world where 90 percent of the things are Digital assets. Gone are the days when computers were used as a mere tool to improve efficiency. As the technology evolves so do the hackers. Think twice and think hard.

 

Techaloo : What do you think about techaloo.com?
Nishant : It’s an amazing platform for every passionate entrepreneur and student who wishes to make a difference. This platform gives them enough information to use and leverage on. Best the part I feel is the energy within the core team to execute the task in a quick and efficient way. Thanks Techaloo.com team for providing an excellent platform to showcase our firm.

Special Offer For Techaloo Visitors

SecureSightTech is organizing an event. This event is intended to shed some light on the misconception that is present in SME, Current situation of Cyber security and threats for Start-ups and SMEs. How hackers evolved from just a cracker to Cyber criminals.

This event will be organized on 18th Jan 2014 in Bangalore. If you want to attend the event, you can avail 10% discount by applying coupon code “TA14”

 

Meet the Team

Nishant.S.Vispute – Founder

Bsc IT graduate, with over 6 years of experience in Technical Support, Ethical hacking, Forensic Investigation, ISMS, ISO 27001 Audits. Bring in a rich experience from the industry vertical like Finance and Consulting.

H.Tejasvi – Strategic Consultant

A BE graduate from Mysore University and has over 10+ years of experience in IT and has had a long stint in Industrial Automation using SCADA HMI, Visual Simulation using custom tools developed in C/C++, SAP based variant Configurations, and was also a part of various initiatives including ISO and CMM. He brings Strategic and Tactical support.

 

 

Be Sociable, Share!


Mohit Bansal(23) is B.Tech in Electronics and Communication Engineering from Indian School of Mines, Dhanbad, India. He has interest in business and entrepreneurship and has published couple of research articles. He is also associated with various NGOs. He is with Techaloo when it was just in concept stage. The Techaloo site was not existing even then. Currently Mohit is working with Mu Sigma as a Business Analyst Profile.

Comments are closed.

Close
Please support the site
By clicking any of these buttons you help our site to get better
Social PopUP by Timersys