Subscribe to our daily and weekly newsletters to stay updated with the latest news and exclusive content in the world of AI. Learn More
National Oilwell Varco (NOV) is currently in the process of a comprehensive cybersecurity transformation led by CIO Alex Philips. They are embracing a Zero Trust architecture, enhancing identity defenses, and integrating AI into their security operations. While the journey is ongoing, the results so far have been remarkable – a 35-fold decrease in security events, no more malware-related PC reimaging, and significant cost savings from getting rid of legacy hardware.
VentureBeat recently conducted an in-depth virtual interview with Alex Philips, where he shared insights into how NOV achieved these outcomes using Zscaler’s Zero Trust platform, robust identity protections, and an AI “co-worker” for their security team.
Alex also discussed how NOV manages cyber risk with their board amidst a global threat landscape where 79% of initial access attacks are malware-free, and attackers can escalate from breach to breakout in just 51 seconds.
Here are some highlights from Alex Philips’ recent conversation with VentureBeat:
VentureBeat: Alex, NOV fully embraced Zero Trust a few years back – what were the key benefits?
Alex Philips: When we started, we were following a traditional security model that wasn’t effective. We transitioned to an identity-centric architecture on Zscaler’s Zero Trust Exchange, which led to a significant improvement in visibility and protection. We saw a 35x reduction in security incidents and a drastic decrease in malware-related issues. Moving to the cloud-based solution also eliminated the need for legacy hardware, resulting in substantial time and cost savings.
Zero Trust now allows 27,500 NOV users and third parties secure access to internal applications without exposing them directly to the internet.
We also revamped our network architecture to leverage internet connectivity over expensive MPLS, resulting in faster speeds, reduced latency to critical apps, and cost savings exceeding $6.5 million annually.
VB: How did the shift to Zero Trust significantly reduce security noise?
Philips: By routing internet traffic through a Security Service Edge with SSL inspection, sandboxing, and data loss prevention, we were able to enhance security. Direct peering with Microsoft improved performance for Office 365 users, reducing the need to bypass controls. Implementing SSL inspection in the cloud allowed us to detect malware in encrypted traffic before it reached endpoints, reducing the overall threat landscape.
John McLeod, NOV’s CISO, emphasized the need for an identity-centric security stack in today’s hybrid environment. By channeling all traffic through cloud security layers and using tools like Zscaler’s Zero Trust Browser, NOV significantly minimized intrusion attempts.
VB: Were there any unexpected advantages to adopting Zero Trust?
Alex Philips: Users preferred the cloud-based Zero Trust experience over legacy VPN clients, facilitating seamless adoption and enhancing agility for remote work and unforeseen events like the COVID-19 pandemic. NOV was well-prepared for remote work, ensuring continuity without disruptions.
VB: How is NOV strengthening identity and access management amid rising identity-based attacks?
Philips: With the prevalence of credential theft in cyberattacks, we have tightened identity policies by integrating Zscaler with Okta for identity and conditional access verification. Implementing multi-factor authentication (MFA) and monitoring abnormal access patterns are crucial steps in fortifying identity security.
VB: How is NOV leveraging AI in the SOC?
Philips: To enhance efficiency, we have introduced AI tools in our SOC, such as SentinelOne’s AI security analyst tool. This AI can quickly analyze logs, allowing analysts to obtain insights in seconds. By leveraging AI assistants, threat hunts are conducted faster, reducing incident resolution times. Internal AI bots are also being explored for operational analytics, enhancing data query capabilities.
VB: How do you engage NOV’s board and executives on cyber risk?
Philips: Educating the board on cybersecurity risks and involving them in tabletop exercises has been instrumental in aligning their understanding of cyber threats. Cybersecurity is now viewed as a core business risk, with continuous board briefings and active involvement in decision-making processes.
VB: Any advice for CIOs and CISOs based on NOV’s journey?
Philips: Security transformation and digital transformation are interconnected. Focus on the separation of duties in identity and access management to prevent security breaches. Embrace AI cautiously but proactively to enhance your team’s defense capabilities. Stay vigilant as threats evolve, and leverage technologies like Zero Trust, strong identity security, and AI to stay ahead of cyber risks.
With a proactive approach to cybersecurity, organizations like NOV can mitigate risks and protect their assets effectively.
