Today
Cyber Focus at RSAC 2024: Google Cloud's Phil Venables
In this episode of Cyber Focus, host Frank Cilluffo sits down with Phil Venables, Chief Information Security Officer for Google Cloud. They discuss Venables' work co-leading the President's Council of Advisors on Science and Technology's report on cyber-physical resilience, and its key recommendations including creating a national critical infrastructure observatory. The conversation also covers Google's focus on secure-by-design and secure-by-default, the implications of AI/generative AI for cybersecurity, and the evolving role of the CISO as more of a chief risk officer.Main Topics CoveredPresident’s Council of Advisors on Science and Technology Report to the President on Strategy for Cyber-Physical ResilienceCreating a national critical infrastructure observatorySecure by design and secure by default at GoogleImplications of AI/generative AI for cybersecurity defendersEvolution of the CISO role to be more like a chief risk officerCurrent cyber threat landscape and basic defenses still neededPublic-private partnership between tech companies and governmentQuotes"It's not just about security, privacy, or compliance. It's about trust and safety… The bold but responsible use of AI." - Venables on ethical AI concerns"We have much more heavily engaged with our government partners, not just here in the US, but around the world, because we recognize our position in supporting critical infrastructures." - Venables on Google's public-private partnerships."[Executives] also need to make sure that there's the resources in the ranks in their organizations to get security done." - Venables on executive support for security"...implementing strong phishing resistant multi-factor authentication, keeping systems up to date, segmenting and all the basic hygiene...when you do it, you mitigate a whole bunch of risks." - Venables on basic cyber hygiene defensesResources President’s Council of Advisors on Science and Technology report on cyber-physical systems - Press Release, Executive Summary, Full ReportGoogle's Secure AI Framework (SAIF)Secure By DesignSecure By DefaultBioPhil Venables is the Chief Information Security Officer for Google Cloud. Prior to Google, he spent 20 years at Goldman Sachs as CISO and Chief Operational Risk Officer, establishing the firm as a cybersecurity leader. Venables co-led the President's Council report on enhancing cyber-physical resilience of critical infrastructure, recommending a national infrastructure observatory. He has co-founded multiple financial sector cybersecurity initiatives and served on boards for NIST, NYU, NSA, and others. Widely recognized for his leadership, Venables has received the RSA Conference Award, FS-ISAC Critical Infrastructure Award, and other top honors. With over 25 years of cross-disciplinary experience across finance, technology and risk management, he brings a unique perspective to Google Cloud's security efforts.