Listen : Audio version of this article
Let’s introduce Shomiron founder of DNIF
Shomiron founded DNIF in 2016 with a vision to create a company that delivers high-quality attack detection products and services to its customers.
Combining his skill set as an intrusion analyst with a passion for tech advancements, Shomiron has been building threat detection systems for close to two decades. Today, DNIF has established partners in 14 countries across industries such as healthcare, insurance, transportation, banking and media.
Prior to founding DNIF, Shomiron worked with ICICI Infotech Ltd. as a senior consultant, where his core responsibility was to solve critical challenges faced by customers.
Shomiron is also an eminent speaker at many industry events. The events and venues that have hosted him include TedX, DSCI (the Data Security Council of India) and SACON (the Security Architecture Conference).
Outside the tech world, Shomiron is also a trained mountaineer, with expedition experience in the high Himalayas.
What is DNIF and the problem they are trying to address ?
DNIF is the flagship product of NETMONASTERY, which has been developing products in the cybersecurity front for the last 18 years. DNIF is a first-of-its-kind, next-gen SIEM solution with advanced security analytics and response automation.
It’s built on a big data analytics platform for real-time threat detection and response. It provides SOAR, UEBA, security analytics, machine learning, and security data lake solutions on a single platform to promote process efficiency, manageability and reduced risks.
It solves the age-old problem of combining large-scale data collection and real-time analytics with a single-pane view for an entire network security infrastructure, security automation, and response.
DNIF brings in all analytics tools together and connects the dots to block different kinds of attacks at different levels. Over the years, DNIF has been used in some of India’s most prestigious institutions.
Explain the services offered by DNIF?
DNIF is offered to customers both as an on-premise/cloud-hosted SAAS or as perpetual license software. Netmonastery, being a software product company, offers the DNIF platform, which is used either directly by customers to set up their captive SOC or by partners who offer the SOC as a managed service to customers.
Netmonastery actively collaborates with partners in building better threat detection strategies and we also offer this as a part of our Professional Services offering. However, the day-to-day operations of handling security incidents and monitoring are typically done by the SOC services partners.
Challenges about the Data + security you are facing?
Challenges in cybersecurity have increased with the recent pandemic. Since most of the work is now happening from home the work systems are exposed to the home Wi-Fi which in turn is connected with multiple systems in the house.
The COVID19 crisis is going to initiate a structural change in the way businesses operate. With the likelihood of similar episodes in the future appearing to be very probable, companies will have to design their day-to-day operations, keeping in mind such scenarios. The result would be a large amount of work that will need to spread geographically.
This will introduce a new set of challenges in designing IT systems and building the security layer on top of these. Security monitoring, which is already an integral part of security systems, will become more important.
We are already seeing a major change in the way security operations run and this is going to further accelerate this change and will increase the requirement of a flexible platform-based approach towards SIEM systems rather than packaged SIEM software.
We are solving the ‘vocabulary’ of attacks . The type, style of attacks, and the sequence in which they are taking place are all changing continuously. It is becoming difficult for us to keep up with them and figure out from these issues that we have not seen before.
We are unable to classify the new, old, known, unknown, anomaly, and so on because attack patterns and their types and styles are changing.. At this point, we do not know whether there are 5 attacks to be detected, or 55, or 55,555.
Hence, there is no clear goal post, where we can build a defensive perimeter or a system that can identify every rock on the ground at this point. That is the biggest challenge.
What is the unique selling point of DNIF ?
DNIF provides a better product than its competitors since it is built on the latest tech stack. DNIF has transformed into an open data lake product where we perform advanced cybersecurity analytics to detect unknown attacks in real time .
Our product success is validated by some of our largest customers. We are moving with a great momentum , building next generation technologies to meet the needs of our customers.
User base they have achieved till now.
Unfortunately we cannot disclose the names of our clients, as doing so would put our customers at risk. If an adversary gains information about the technology stack used to defend their sensitive data, it would be easy for a cyberattacker to discern the technology used paving an easy way to break in through the stack. That said, we have high-profile clients across a variety of domains, including banking, finance, securities, manufacturing, and telecom.
New Areas if they are looking to expand.
Right now, we’re focusing on scaling DNIF to cater to the mid-level segment. We know how the product scales for large customers and how it fits into the budget, delivery, and serviceability aspects. We’re in the process of understanding how these parameters can be effectively re-tuned for the mid-level segment.
We’re also investing heavily in expanding our offerings to the international market. We’re specifically looking at markets close to India in terms of the time zone and figuring out if we can replicate our success there as well.