In his own words Omny's new Chief Information Security Officer (CISO), Tommy Evensen discusses the team he is building, their critical mission, and why you should care.
What goes into an industry-focused OT security track?
I’ve been with Omny since day one, which means I’ve been fortunate to play a role in building and growing our company. We consider ourselves a partner to industry, helping organizations build greater resilience to tackle the constant cyber threats to their security and business continuity. During my time with the company, I’ve been known to wear many hats, but now I’ll be putting on what’s perhaps my most exciting and challenging ‘hat’ to date: Chief Information Security Officer (CISO).
The mission of a CISO
Since we launched Omny, security has been an absolute priority. Our customer base is growing, which means that the volume of sensitive data for which we are responsible is as well. Our task is to help organizations protect their critical infrastructure – and doing so requires the highest standards of security. With that comes a responsibility to ensure that our own systems are just as secure as the ones we help protect for our customers.
Implementing a robust security strategy
One of my first objectives as CISO is to make sure that we practice what we preach. This means strengthening our internal security team, delivering on our security strategy, and ensuring that we are always prepared to meet the challenges ahead. One major milestone we are now working towards is the ISO 27001 audit and certification. This is a significant step that demonstrates our commitment to stringent standards.
Internally, we are increasing our resources and capabilities as we mature and continue to develop our software. This includes both internal security and product security, with the latter being especially critical. We are highly focused on practicing business continuity and resilience building, and I’m proud to say that our management team is fully on board and embraces this approach – with regular tabletop exercises.
Customer expectations around cybersecurity and the safeguarding of their OT data are growing as well, in line with increasing regulations around data storage, handling, and sovereignty. Helping organizations meet these requirements will be a key part of our strategy and what we offer our customers.
Earning the role as a trusted partner
As Omny’s new CISO, I’m excited to build a team that will help our customers build resilience so that they can deliver on their critical missions. The services we provide are essential to our customers’ risk management strategies, and so is the protection of the sensitive data that cyber threat actors are after. Our role is to be a trusted partner, to know and understand the risks related to critical OT data, and to make safeguarding it our ultimate mission.
Omny is taking their security seriously, and so should you, but where to begin? Check out our advisory services for some inspiration