Having begun his firm as a one-man show in 2001, his cybersecurity company has now grown to a team of more than 600 consultants in 2020, who are spread across several locations in India, the Middle East and the world. It has offices in New York, Dubai and Mumbai. K. K. Mookhey is truly one of the pioneers of cybersecurity in India.
“Starting off as a self-taught pentester, I moved onto doing security audits, then added the risk management and compliance capabilities to my skillets. In the last many years, I’ve got hands-on experience with pretty much every aspect of cybersecurity. Over the last few years, I get directly involved only in assignments that are related to incident response and active hunting,” says Mookhey.
Mookhey is widely regarded as a distinguished expert in the fields of information risk management, IT governance, compliance and business continuity, forensic fraud investigations, globally. He is a trusted consultant and trainer to companies across the globe on several facets of information security. Currently, he is the principal consultant as well as founder at Network Intelligence and is also the founder of The Institute of Information Security.
“I am also the product evangelist at NII for BlueScope (ELK-based big data platform for security analytics) and Firesec (firewall config review and management platform which is evolving into a security orchestration tool).
Mookhey is experienced with the security challenges that different industries face and how they can ensure best practices in line with international standards and frameworks like the ISO 27001, NIST, PCI DSS, HIPAA, COBIT, etc. With two decades of rich experience in the field of cyber security. His hi-profile clients include the likes of the United Nations, the Indian Navy, Abu Dhabi & Dubai Stock Exchanges, ICICI Bank, State Bank of India, Saudi Telecom, HDFC Bank, Capgemini, BNP Paribas and the Mumbai Crime Branch, among many others.
The infosec expert is also the author of two books (on the Metasploit Framework and on Linux Security) and has several articles on cyber security to his name. He was the first security researcher from India who presented at the Blackhat in the year 2004 (the topic was ‘Detection and Evasion of Web Application Attacks’).
“Back in the day when there was less of a workload I did co-author two books (Linux Security And Controls by ISACA, and Metasploit Framework, by Syngress Publishing), and numerous articles on information security. One of my earliest accomplishments was presenting at Blackhat in 2004 on “Detecting web application attacks”, he fondly recalls.
After that he has spoken at many conferences such as OWASP, Interop, NullCon, etc. Currently, he is overseeing research activities within NII which are particularly focused on the use of big data in security, building of automation tools and solutions, and the security impact of the Internet of Things (IoT).
“I get inspired by the work that my team members do and mentoring them and seeing them shine is one of my greatest joys,” adds the expert.