< Previous20 edge_april 2024 cover story scientists, engineers, and software developers labour to comprehend the automobile and its systems and create algorithms for racing under challenging circumstances. The autonomous racing cars are equipped with a sophisticated array of sensors, cameras, and LIDARs (Light Detection and Ranging) to perceive their environment. The seven cameras and three LIDARs provide a 360-degree view, enabling the cars to navigate the racetrack and interact with objects in real-time. The data from these sensors is fused together, allowing the car’s AI system to make informed decisions during races. While A2RL cars operate autonomously during races, human involvement remains integral throughout the development process. A team of developers work to understand the intricacies of the vehicles and refine algorithms for optimal performance. The human element manifests in the preparation and fine-tuning of the cars, with teams striving to outperform one another through innovative approaches and technological prowess. Why the Super Formula SF23 The choice of the Super Formula SF23 car as the base vehicle for modification to race autonomously was strategic. SF23 is currently the fastest open- wheel race car in the world after Formula One. A ‘spec’ racing series was deemed appropriate to allow teams to focus primarily on autonomous system development rather than vehicle development. The Super Formula SF23, originally designed for human drivers, offers exceptional performance and incorporates sustainable technologies. The modifications applied to the SF23 cars for A2RL include the integration of sensors, actuators, and control modules. While the cars possess a basic level of autonomy, the teams have the freedom to adapt and refine their software, allowing them to approach racing and risk-taking in their unique ways. Technical challenges This race comes with additional challenges as compared to regular F1 races. One of the core pillars of A2RL lies in conquering the myriad of technical challenges inherent in developing autonomous racing cars. With vehicles hurtling around the track, teams face the daunting task of coding intuitive human actions into machine algorithms. Managing tyre wear, executing strategic overtakes, and navigating complex racing scenarios all require meticulous programming and precise execution. “The challenges that teams face cannot be understated. We’ve seen the resources, effort, and time that have gone into developing current The autonomous racing cars are equipped with a sophisticated array of sensors, cameras, and LIDARs Abu Dhabi’s Yas Marina Circuit Set to witness the world’s biggest autonomous racing “At the end of the day, we are talking about a future where commuting and road travel is a stress-free experience and available to everyone”edge_april 2024 21 Modifications to SF23 Sensors, actuators, and control modules enhances functionality and performance Testing ground Motorsport is a platform to propel advancements in road safety technology automotive systems, now imagine the vehicle is travelling at 270km/h and competing against other autonomous cars. It’s a new frontier, a combination of top-level Formula racing and leading-edge autonomous systems,” said Timpano. Teaching a machine to think like a human (especially a racer) is no easy task to achieve. Instead of human reflexes, it is computer programmes making split-second decisions. This is achieved with next-generation AI and ML technologies that learn as they go. As there are no drivers in this car, there is also no actual cockpit. The ‘cockpit’ consists of a stack of sophisticated sensors, computers and technology that will allow it to drive itself. Race track: Testing ground for auto- motive technologies The importance of tackling all these challenges and having this event is immense. Autonomous racing is not only a sport. It is a platform for research and development in the field of autonomous vehicle technology. Motorsport has long served as a testing ground for innovative automotive technologies, with advancements trickling down to road vehicles (like active aerodynamics, carbon fibre, active suspension etc). A2RL aims to utilise motorsport to advance road safety technology and foster greater consumer trust in AI and autonomous tech. By stress-testing transformative technologies on the racetrack, the series identifies key challenges and areas for improvement, accelerating the development of autonomous systems. As the series progresses, the technology will become more advanced, offering insights and capabilities that can revolutionise vehicles and infrastructure, ultimately leading to safer and more efficient road travel. “At the end of the day, we are talking about a future where commuting and road travel is a stress-free experience and available to everyone – all while making it far safer. In terms of safety, autonomous systems are already outperforming human drivers in trials, so the potential benefit of fully matured technology and its widespread use is vast,” said Timpano. cover storyWATCH US LIVE DRIVING SIMULATORS AI MUSEUM KARTING FOOD TRUCKS ENTERTAINMENTOFFICIAL PARTNERSORGANISED BY REGISTER FOR YOUR FREE TICKET AT A2RL.IO 27 TH APRIL YAS MARINA CIRCUIT WHERE HUMANS WATCH AND MACHINES RACE!24 edge_april 2024 featureedge_april 2024 25 feature THE GUARDIANS OF DIGITAL FORTRESSES Top cybersecurity leaders of 2024 CYBERSECURITY By Sindhu V Kashyap 26 edge_april 2024 feature Aaron Bugal, Field CTO APJ, Sophos Bernard Montel, EMEA Technical Director & Security Strategist, Tenable I n today’s digitally interconnected world, the emergence of artificial intelligence (AI) has ushered in a new era of unprecedented innovation and efficiency. From streamlining business operations to enhancing customer experiences, AI technologies have permeated nearly every facet of modern society. However, as AI continues to evolve and proliferate, it has also become a double- edged sword for cybersecurity, presenting both unparalleled opportunities and daunting challenges for organisations worldwide. As the need for stronger cybersecurity measures and requirements grow, we take this time to feature the top cybersecurity leaders. AARON BUGAL FIELD CTO APJ, SOPHOS Around two decades ago, Aaron Bugal began his journey into the world of technology and cybersecurity when he started in technical support for a small VAR specialising in load testing web applications. Growing up, Bugal had easy access to computers, thanks to a family friend who owned a computer repair and supply store. Recounting his early days, Bugal says, “I spent weekends there helping, cleaning, stock-taking, and tinkering with leftover motherboards, hard drives, and high-speed UART add-on cards to build a PC for myself.” Transitioning from technical support to roles focusing on email and web filtering, Bugal’s interest in cybersecurity was piqued by major malware events hitting the news. “My curiosity into cybersecurity – even though it wasn’t a big field – was fostered by my employer, and I quickly went down the rabbit hole of everything offensive security,” explains Bugal. In the post-pandemic world, Bugal emphasises the importance of adapting cybersecurity efforts to the new remote work landscape. “Not only do we consider offices—now described as legacy— infrastructure that we still need to protect, but we need to have efficiently implemented endpoint protection systems, always-on VPNs, and data classification and protection processes,” says Bugal. Looking ahead, Bugal believes that cybersecurity is a vast specialisation that organisations must leverage, especially considering the dominance of ransomware attacks and the rapid weaponisation of vulnerabilities by cybercriminals. He warns of the continued abuse of Living off the Land of Binaries (LOLBins) and the surge in criminal exploitation of GenAI. Reflecting on human vulnerability, Bugal stresses the importance of equipping cybersecurity teams with adequate resources and support to ensure cyber resilience. “Our defenders could suffer fatigue and burnout, leading to missed opportunities and potentially catastrophic breaches,” Bugal concludes, underlining the critical role of human factors in cybersecurity defence. BERNARD MONTEL EMEA TECHNICAL DIRECTOR AND SECURITY STRATEGIST, TENABLE During the advent of first-generation directories like LDAP, X500, and Active Directory, Bernard Montel embarked on his career journey. Although the term “Identity Management” had yet to be coined, it marked the dawn of Identity and Access Management (IAM).edge_april 2024 27 feature Brian Vlootman, CISO, Backbase “It was around these first-generation directories that I developed my expertise in Public Key Infrastructure (PKI) X.509 certificates,” recalls Montel. Transitioning to RSA, a prominent security vendor, Montel’s portfolio expanded to encompass cryptography, multi- factor authentication, online fraud, and risk management. Two years ago, Montel moved to Tenable, a pioneer in exposure management, focusing on fortifying organisations through ‘Preventative Cybersecurity’ to thwart attacks effectively. The pandemic catalysed a paradigm shift in work dynamics, propelling remote work to the forefront overnight. “From a cybersecurity standpoint, this significantly expanded the threat landscape,” notes Montel. VPNs and multi-factor authentication emerged as crucial tools for securing remote connections, even as organisations migrated resources to the cloud, simplifying remote access while fortifying security. “If we could retain one single ‘post-pandemic’ change, it is the acceleration of cloud services,” adds Montel. With the cloud reshaping work dynamics, organisations now operate within hybrid environments, blending private and public cloud with OnPrem resources. In cybersecurity, artificial intelligence (AI) has long been a stalwart ally, enabling the identification of “low signals” data indicative of potential threats. However, the emergence of generative pre-training transformer (GPT) and large language models (LLM) represents a paradigm shift, empowering analysts with deeper insights and accelerating decision-making processes. Yet, despite technological advancements, Montel stresses the persistent threat posed by known vulnerabilities and human error. Smaller organisations, often perceived as less attractive targets, are increasingly in the crosshairs of threat actors, given their role in the broader supply chain. “Ransomware remains the top threat today,” Montel underscores. The evolution of attacks, from overt to stealthy tactics, underscores the need for proactive, preventive measures such as exposure management. In confronting the multifaceted challenges of cybersecurity, Montel emphasises the importance of holistic risk reduction strategies. Cloud security, identity management, and the harnessing of AI represent pivotal fronts in this ongoing battle, demanding agility, foresight, and collaboration from defenders across the digital landscape. BRIAN VLOOTMAN CISO AT BACKBASE It was in 1999 that Brian Vlootman embarked on his technology journey as a systems engineer, evolving through various roles like database administrator, network engineer, storage engineer, virtualisation engineer, and ultimately, infrastructure architect. “In 2010, I delved into the domain of information security, enriched by my diverse IT background,” recalls Vlootman. Transitioning to roles in penetration testing, incident handling, digital forensics, and serving as an information security officer, Vlootman’s expansive experience across IT and security fields fuels his perpetual thirst for knowledge. “As Chief Information Security Officer (CISO) at Backbase, my approach to cybersecurity aims to foster a security-aware culture within organisations,” says Vlootman, emphasising the strategic integration of security into business operations, particularly within the banking sector. In the post-pandemic world, cybersecurity in banking has undergone a seismic shift, necessitating a fundamental reevaluation of security protocols and strategies. Cybersecurity has evolved from a necessity to a strategic imperative, demanding proactive investment in robust defence mechanisms and fostering a culture of cybersecurity awareness. Artificial intelligence’s role in cyberattacks and defence is paramount. “Ignoring AI means giving the advantage to the attacker,” asserts Vlootman. Leveraging AI in threat detection, secure software development, and user authentication is imperative for banks to stay ahead of evolving threats. Cybersecurity transcends individual bank 28 edge_april 2024 feature departments, becoming a shared responsibility across the entire enterprise. Organisations must heavily invest in cybersecurity to mitigate risks, employing advanced threat detection, encryption, employee training, and regular audits. The threat landscape in 2024 confronts organisations with continuously evolving and increasingly sophisticated attacks. There is need to prioritise customer identity and access management, leverage behavioural intelligence, utilise AI for threat detection and response, ensure third-party software assurance, and adopt a risk- based approach to combat fraud while maintaining a seamless customer experience. HAIDER PASHA CHIEF SECURITY OFFICER AT PALO ALTO NETWORKS, EMEA AND LATAM Growing up in Dubai, technology has always been integral to Haider Pasha’s life. Exposed to computers and hardware applications in the 80s and 90s, Pasha’s interest blossomed, leading to a bachelor’s degree in computer science from Purdue University. “Joining Cisco in the US, a security breach at a global e-commerce giant within days of my job kickstarted my fascination with cybersecurity. The depth and complexities of the sector captivated me,” says Pasha. From Cisco and Symantec to Palo Alto Networks since 2018, Pasha’s cybersecurity journey has been rife with challenges, opportunities, and continuous learning. Pasha believes the COVID-19 pandemic reshaped the cybersecurity landscape, with remote work fuelling a surge in cybercrime. The adoption of cloud services and IoT devices posed new security challenges. Following the pandemic, zero trust architecture gained prominence, catering to the evolving business environment’s flexibility needs. Research commissioned by Palo Alto Networks revealed that 81 per cent of UAE organisations view AI as crucial for cybersecurity. Incorporating AI enhances defence against cyber threats, reduces response times, and boosts security visibility. In 2024, CISOs must focus on communicating AI-enabled project risks and deploying AI platforms to enhance security. Boards must embrace cybersecurity governance, fostering trust through up-skilling. The rise of cloud computing and GenAI, along with evolving corporate IT environments, drives the adoption of integrated security platforms. However, consolidation doesn’t guarantee efficacy without optimisation. Strategic planning by security heads and CISOs, including device identification and behavioural analytics, enhances attack detection capabilities. “With digital transformation, understanding deepfake threats is crucial. Education and awareness on discerning real from fake content are paramount in consuming trustworthy information,” adds Pasha. MERIAM EL OUAZZANI REGIONAL SALES DIRECTOR, META, SENTINELONE Haider Pasha, Chief Security Officer at Palo Alto Networks, EMEA and LATAM Meriam El Ouazzani, Regional Director, META, SentinelOne edge_april 2024 29 feature post-college career saw him creating a database for tracking hardware failure rates for military simulators while simultaneously running a successful PC consulting business. A pivotal transition occurred when Haber joined Computer Associates, where he rapidly ascended to manage beta solutions. Following his mentor to eEye Digital Security marked his entry into cybersecurity over two decades ago, a field he’s remained committed to despite corporate changes and acquisitions. Today, Haber observes a paradigm shift in cybersecurity, recognising that threat actors target digital transformation elements like remote work, high-speed internet, and cloud services. This evolution demands cybersecurity solutions adaptable to varying user, system, and access conditions. The impact of AI in cybersecurity is profound, empowering both defenders and attackers. While AI aids in detecting anomalies and enhancing authentication workflows, adversaries leverage it for sophisticated attacks, creating a constant tug- of-war in the cybersecurity landscape. Looking ahead to 2024, Haber advices organisations to navigate shifting cybersecurity landscapes wisely. He emphasises the importance of subscription models in cybersecurity solutions and urges organisations to consider long-term technology decisions aligned with business objectives. Preparing for security incidents is paramount, with organisations needing robust breach response plans and coordination with cyber insurance carriers. Elevating awareness and preparedness are essential as technology dependence grows. In the cyber landscape, five key trends stand out: With over 18 years in technology and cybersecurity sales management, Meriam El Ouazzani has honed her expertise at global giants like VMware, Cisco, and HP. “My career journey has immersed me in the intricacies of technology sales, channel management, and partner relationships,” says El Ouazzani. At VMware, I led pivotal initiatives during a transformative phase catalysed by Nicira’s strategic acquisition. “Beyond product sales, I focused on vision creation and fostering collaboration,” El Ouazzani recalls. Establishing a dedicated security practice within VMware’s partner ecosystem was a highlight. Transitioning to SentinelOne as Regional Sales Director for the META region, El Ouazzani now oversee all operations, strategies, and initiatives. “It’s about leading high-performing teams, setting strategic goals, and adapting to industry trends,” says El Ouazzani. Amidst the pandemic, cybercriminals seized opportunities, unleashing various attacks. Remote work’s surge expanded the threat landscape, necessitating robust cybersecurity measures. “The pandemic reinforced the significance of cyber resilience,” emphasises El Ouazzani. Endpoint security and zero trust models gained prominence as organisations adapted to remote work. AI’s impact on cybersecurity has been transformative, revolutionising threat detection and response. Despite AI’s benefits, adversaries exploit it for sophisticated attacks, necessitating a constant security evolution. Supply chain attacks, exemplified by the SolarWinds incidents, highlight the importance of robust vendor risk management. The cybersecurity skills shortage remains a challenge, driving investments in workforce development initiatives. Diversity and inclusion efforts aim to address the talent gap effectively. “Looking ahead, I’m committed to leveraging strategic leadership and operational excellence to drive SentinelOne’s success in the META region and beyond,” says El Ouazzani. MOREY HABER CHIEF SECURITY ADVISOR, BEYONDTRUST At a young age, Morey Haber had started his journey in technology by tinkering with his first computer, a Radio Shack Colour Computer. “At 15, I received my first paid contract to design a programme to plot muscle tenderness using a pressure sensor,” recalls Haber, laying the foundation for a lifelong passion for technology and software. During college, while studying electrical engineering at the State University of New York at Stony Brook, Haber ventured into software. His Morey Haber, Chief Security Advisor, BeyondTrustNext >