NSF Logo
Contact us

Think Your Company’s Chief Information Security Officer Is Super Busy?

Equifax’s Jamil Farshchi deals with three to four million cyberattacks each and every day.

On a typical day, the chief information security officer at a multinational corporation might deal with a few hundred serious cyberattacks. Jamil Farshchi, CISO at credit bureau giant Equifax, deals with four to five million a day. It’s the difference between occasional skirmishes and nonstop intergalactic warfare.

Farshchi spoke at the recent Information Security Symposium hosted by NSF-ISR, a leading global management systems certification organization. The theme of the symposium was the importance of forming a culture of security within all organizations to protect against increasing cyber threats.

When asked how he manages to deal with the constant onslaught, Farshchi laughed and said, “Well, some nights I don’t get much sleep, and I’ve also lost all my hair.” Equifax Inc. is a major credit reporting firm and collects data on more than 800 million consumers and 88 million businesses worldwide.

The career path Farshchi followed prepared him well for what he faces at Equifax. “I've been in security my entire career,” he says. “With great stops along the way, including protecting nuclear weapons at Los Alamos National Laboratory and handling six to seven trillion dollars’ worth of payments when I was at Visa.

“Then Home Depot brought me in after the mega breach they experienced in 2014, and I helped to rebuild the program there. Most recently, I've been at Equifax. After the 2017 breach we experienced, I helped rebuild our program and position us as a leader in this space. So an interesting career, and I've certainly been on the front lines.”

Being at the forefront has taught Farshchi the value of creating a culture of security within an organization, in addition to having top security talent. “Here at Equifax, we’ve tried to build in both,” he adds. “We uplifted the security talent, hiring about a thousand individuals in the wake of the incident.

“Then we strengthened that with a strong push to build a security-first culture throughout the organization. The combination of those two things really set us up for success. It’s why we’re able to defend against three to four million attacks every single day.”

Listen to Jamil Farschi discuss Equifax’s cybersecurity preparation, and he sounds much like a seasoned NFL coach. “Look, we play like we practice. Organizations often fail to put in the right level of effort practicing for that really dire incident. As a result, when those things occur, you’re not ready for it, and it becomes a hair-on-fire moment.

“I can speak from experience, having been involved with organizations that have dealt with mega security incidents,” Farshchi says. “Things get chaotic very quickly. You have to prepare correctly, and I mean top-to-bottom preparation across the whole organization. It can’t just be just a few internal teams.

“Because when a big thing hits, you need everyone involved. Whether it’s legal, finance or communications, every single unit is going to need to help the organization solve it. Coordinating all of that and having people able to respond effectively is really difficult to build. It only comes with constant preparation.”

With that constant preparation comes a culture of security within an organization. And for Jamil Farshchi, maybe fewer sleepless nights and a bit more hair. Even after all those “hair-on fire” moments.

Ready To Begin the Process?

Contact us with questions or to receive a quote.

Resources

Helping Clients Ensure Information Security
Article
Information security expert Rhia Dancel fell in love with science as a child when her parents gave her a microscope. Now she helps clients ensure the security of their information.
CMMC-AB Board Chairman Jeff Dalton Is a Man on a Vital Cybersecurity Mission
Article
Dalton’s message to contractors in the DoD supply chain: “This is the year for companies to all step up and say, ‘We need to fix this problem.’”
Cisco’s Barry Yuan on Adopting a ‘Zero Trust’ Approach
Article
Yuan recommends building a culture of compliance within operations, with a “zero trust” approach as an effective response to ransomware threats.

How NSF Can Help You

Get in touch to find out how we can help you and your business thrive.

What’s New with NSF

Healthy People Living on a Healthy Planet: The Future We’re Working For
April 4, 2024
On April 7, NSF honors World Health Day as a celebration that lies at the heart of our public health mission and honors our status as a World Health Organization Collaborating Centre.
Read the Story
American Meat and Egg Distributors Now California-Ready with NSF’s Prop 12 Certification
April 3, 2024
A trusted name in the industry, NSF’s services will enable distributors in meeting regulatory requirements and consumer demands for quality meat and eggs.
Read the Story
2024 GFSI Conference - Meeting the Needs of our Evolving World
March 20, 2024
NSF is proud to announce our sponsorship of the GFSI Conference, an annual event dedicated to advancing food safety and consumer trust.
Read the Story
NSF Acquires PSILab, Inc., an Advanced Plastic Pipe and Materials Testing Laboratory
March 18, 2024
The acquisition extends NSF’s service offerings in the water industry, furthering its commitment to the quality, performance and safety of water products globally.
Read the Story