In this episode of “The CTO Show with Mehmet,” Mehmet is joined by Vivek Ramachandran, the CEO and founder of SquareX, for an in-depth discussion on cybersecurity, AI, and browser security. Vivek, a veteran in the cybersecurity field with over 20 years of experience, shares his journey from working at Cisco Systems to becoming an entrepreneur and starting multiple companies, including SquareX. He delves into his fascination with breaking security systems and how this led him to focus on offensive cybersecurity research and training.

Vivek explains the current gaps in cybersecurity, particularly in how traditional security solutions like Secure Web Gateways (SWGs) and endpoint security products are insufficient in today’s complex web application environment. He highlights how attackers exploit these gaps, particularly through browsers, which are now the primary workspace for many employees. Vivek’s insights into how attackers use AI to create sophisticated phishing attacks and malware emphasize the need for advanced, browser-native security solutions.

SquareX’s innovative approach involves deploying a browser extension that monitors and analyzes browser and DOM events in real-time using machine learning models. This allows for anomaly detection, policy enforcement, and proactive isolation of suspicious activities and files, thus providing a robust layer of security right where the user interacts with the web. Vivek also discusses the importance of context-aware security measures, which traditional SWGs lack, and how SquareX aims to fill this void.

The conversation also touches on the broader implications of AI in cybersecurity, both as a tool for attackers and defenders. Vivek discusses how AI can be leveraged to enhance security measures, streamline security operations through natural language interfaces, and perform real-time threat detection and response. He also shares practical advice for C-level executives on adapting to the rapid advancements in AI and integrating it effectively into their security posture.

In a lighter segment, Vivek talks about his initiative to create the first hacker comic book, aimed at educating young people about the positive aspects of hacking and cybersecurity. This project reflects his passion for cybersecurity and his desire to change the mainstream perception of hackers.

Towards the end of the episode, Vivek offers valuable advice for aspiring founders, emphasizing patience, resilience, and the importance of realistic expectations. He also highlights the importance of building a company with a deep understanding of the problem space, which in cybersecurity, often comes from having an offensive background.

More about Vivek:

Vivek Ramachandran is the Founder of SquareX, which is building a browser-native security product to mitigate last mile attacks. SquareX has raised USD 6M seed round from Sequoia Capital SEA in April 2023.

Previously, he was the Founder, CEO of Pentester Academy which trained thousands of customers from government agencies, Fortune 500 companies, and smaller enterprises from over 90 countries. Pentester Academy was acquired by INE in 2021.

Vivek has been researching Wi-Fi security for over a decade. He discovered the Caffe Latte attack, broke WEP Cloaking, conceptualized enterprise Wi-Fi Backdoors, created Chellam (Wi-Fi Firewall), WiMonitor Enterprise (802.11ac monitoring), Chigula (Wi-Fi traffic analysis via SQL), Deceptacon (IoT Honeypots) and others. He is the author of multiple five star rated books on Wi-Fi security which have together sold over 20,000+ copies worldwide and have been translated to multiple languages.

https://www.linkedin.com/in/vivekramachandran/

https://sqrx.com/

01:13 Vivek's Journey in Cybersecurity

02:59 Identifying Market Gaps and Founding SquareX

04:32 Challenges in Cybersecurity and Browser Vulnerabilities

29:39 The Role of AI in Cybersecurity

50:34 Advice for Founders and Conclusion