This week TriplePundit featured Cisco Corporate Affairs Senior Director Kathy Mulvany in its series on leading female CSR practitioners. Read the complete interview below. Thanks to TriplePundit for permission to republish this interview.
TriplePundit: Briefly describe your role and responsibilities, and how many years you have been in the business.
Kathy Mulvany: As senior director of corporate affairs, I’m responsible for helping to steward Cisco’s overall corporate social responsibility (CSR) strategy, build awareness of our CSR programs around the world, and engage with a broad set of stakeholders including customers, shareholders, governments, nonprofit partners and advocacy groups. Within Corporate Affairs, I oversee a number of teams, including CSR strategy and planning, marketing and communications, the Cisco Foundation and corporate grant making, CSR reporting and stakeholder engagement, as well as our veterans program.
I’ve been a part of Cisco’s Corporate Affairs organization for seven years and with Cisco since 1996. One benefit of working for a large corporation is that I’ve had the opportunity to move around within the business, which keeps it fresh while broadening my expertise and professional network. Having worked in various Cisco organizations over the years, including Corporate Marketing, Latin America Marketing and Office of the Chairman and CEO, I can honestly say I’ve found my passion in Corporate Affairs with CSR.
3p: How has the sustainability program evolved at your company?
SIEMs have been pitched in the past as “correlation engines” and their special algorithms can take in volumes of logs and filter everything down to just the good stuff. In its most basic form, correlation is a mathematical, statistical, or logical relationship between a set of different events. Correlation is incredibly important, and is a very powerful method for confirming details of a security incident. Correlation helps shake out circumstantial evidence, which is completely fair to use in the incident response game. Noticing one alarm from one host can certainly be compelling evidence, but in many cases it’s not sufficient. Let’s say my web proxy logs indicate a host on the network was a possible victim of a drive-by download attack. The SIEM could notify the analysts team that this issue occurred, but what do we really know at this point? That some host may have downloaded a complete file from a bad host -- that’s it. We don’t know if it has been unpacked, executed, etc. and have no idea if the threat is still relevant. If the antivirus deleted or otherwise quarantined the file, do we still have anything to worry about? If the proxy blocked the file from downloading, what does that mean for this incident?
This is the problem that correlation can solve. If after the malware file downloaded we see port scanning behavior, large outbound netflow to unusual servers, repeated connections to PHP scripts hosted in sketchy places, or other suspicious activity from the same host, we can create an incident for the host based on our additional details. The order is important as well. Since most attacks follow the same pattern (bait, redirect, exploit, additional malware delivery, check-in), we tie these steps together with security alarms and timestamps. If we see the events happening in the proper order we can be assured an incident has occurred.
Needle and thread. Fire and wood. Peanut butter and jelly. Just a few things that are essential together so that you can sew, keep warm and well, is just yummy. So what happens when the data center-class server blade for the branch meets applications? That’s the topic discussed in the 2nd episode of the Inside the Branch: UCS E-series episodes.
Last week was the series premier of our 5 part series on UCSE. Hugo and Jay discussed the basics of the product and some key facts we should know. In this episode, Hugo met with Vidya, our guru in charge of Cisco applications for UCSE.
I’m happy to report that Cisco UCS Director (formerly Cloupia) has been selected as a finalist for the 2013 Storage, Virtualisation & Cloud (SVC) Awards! Please take a moment and vote for UCS Director at http://cs.co/SVCAward.
This finalist nomination recognizes the innovation and differentiation that Cisco UCS Director provides for end-to-end converged infrastructure management — including automation for both virtual and physical resources across compute, network, and storage.
The video below provides a good overview of Cisco UCS Director and its benefits for IT organizations:
The sweet spot for Cisco UCS Director is in managing converged infrastructure based on Cisco’s Unified Computing System (UCS) with Cisco Nexus switches and third party storage — focusing on our market-leading integrated systems including the FlexPod solution with NetApp, as well as VCE’s Vblock Systems and our VSPEX solutions with EMC storage.
But the beauty of Cisco UCS Director is that it can also manage heterogeneous environments, including non-Cisco infrastructure and multiple hypervisors. Whether you call it your single-pane-of-glass or one ring to rule them all, it’s a highly innovative and comprehensive infrastructure management solution for your data center operations. These capabilities and more are highlighted in the award nomination which you can read here.
“Cisco applauds introduction of the Innovation Act, legislation which aims to address the growing problem of patent assertion entities, often called patent trolls.
“According to a new study released this week, the problem is getting worse. Nearly 60 percent of new patent lawsuits are being filed by patent assertion entities, up from 25% in 2007. They are targeting legitimate businesses with threat letters and costly lawsuits, in the hope for a quick and easy settlement. According to one estimate, these profiteers cost American businesses $29 billion in 2011. This is a problem that cries out for legislative action.
“The legislation introduced today by Chairman Goodlatte and others goes a long way toward addressing the issues. It helps dry up the financial incentives that have allowed patent trolls to thrive and significantly increases transparency.
“We stand ready to work with Chairman Goodlatte and his cosponsors as the bill moves through the legislative process, and we are especially grateful for the support of Cisco’s local Representatives Eshoo, Holding and Lofgren for their cosponsorship of this important legislation to address a major challenge faced by America’s technology industry.”