Panaseer meets David Fairman: Seasoned security executive brings industry expertise to Panaseer’s Advisory Board

We caught up with David Fairman, a recent addition to our new-look advisory board. David is a long-time supporter of Continuous Controls Monitoring and is looking to support Panaseer with both his security and business expertise.

You’ve just joined our new advisory board – what attracted you to the company?  

I have been aware of Panaseer since the company was founded, as the CEO (Nik Whitfield) and myself go way back! I really believe in what Nik wants to achieve – using data and analytics to make more informed and better cybersecurity decisions.  

I have been a huge supporter whilst watching both Nik and Panaseer’s platform evolve, and I have also been engaged as a customer. The approach the company has taken is very impressive as they are helping solve an acute industry challenge. When he invited me to join the advisory board I didn’t have to think twice – I am honoured to join the company and help contribute to its growth trajectory.   

What are your views on the market opportunity for Continuous Controls Monitoring (CCM)? 

CCM is something that will gain much more impetus. It’s overdue because the days of ‘point in time’ controls assessment and testing to assure the security programme are long gone. Organisations need a real–time view of controls effectiveness and coverage so that they can understand the security posture of the company, and crucially where they need to prioritise resources and effort to reduce their cyber risk exposure.  

How do you see Panaseer evolving? 

Panaseer has a huge opportunity to mature the category and relevance of CCM with all organisations – not many organisations are doing this well. Currently, there is a lack of maturity. Many companies are trying to build controls monitoring programmes themselves and they are struggling.  

As Panaseer grows, we need to create an off–the–shelf consumable approach that organisations can use to monitor the effectiveness of their controls. If you consider what CCM enables – metrics and measurements to assess control posture, both effectiveness and coverage – the company has an opportunity to play a crucial role in helping businesses make critical risk–based decisions and ultimately becoming renowned as a data-driven and risk–based organisation itself.  

How do you see your role in helping Panaseer achieve its growth ambitions? 

My expertise lies in running security organisations and programmes, so I hope to add real value in helping the business finesse its product fit, as well as its product roadmap, including its features and benefits.  

I also work as an advisor for a number of companies, where I help them run large complex security programmes and identify suitable vendors that can alleviate challenges. I see Panaseer as a natural solution that will be very relevant to helping my customers solve some key challenges. 

Lastly, I intend to use my APAC experience to help the company become truly global. I will be able to help Panaseer raise their profile in the APAC region and give insight into the bespoke APAC requirements and priorities as the regulatory and controls compliance landscape evolves. This will enable Panaseer to take on a global multi–regional approach as it evolves its product and sales strategy. 

Finally, as an experienced CISO, could you give us your view on the future of cyber? 

I see it evolving in a number of ways. Firstly, I see it being demystified as the whole sector becomes more business outcome orientated. I envisage we will change how we think and talk about digital risk and trust. For example, as companies continue on their digital transformation journeys, they will need to understand the inherent risks of that transformation journey and how they can use cyber capabilities to earn and ensure the trust of their customers. 

I think cyber will lose its negative connotation. I think we will look at it positively as an enabler to create products and services in a digital environment. It will be both embraced and trusted, allowing companies to realise their digital business strategy in a safe and sound manner.