The Daily FT-CICRA Cybersecurity Summit 2025 concluded with a powerful session on securing critical infrastructure in the face of increasing cyber threats. Industry leaders from Google Cloud Security, Huawei Technologies Lanka, and MillenniumIT ESP shared their insights on tackling global cyber threats, localizing defense strategies, and fostering collaboration to ensure resilience.
The session opened with a presentation by Musthaq Mukthar, Head of Security Operations at MillenniumIT ESP, who discussed “Global Threats and Local Impact: Securing Critical Infrastructure.” He highlighted the growing sophistication of cyber threats, particularly in critical sectors like energy, transportation, and finance, and emphasized the need for local solutions tailored to Sri Lanka’s unique challenges. Mukthar stressed the importance of AI-powered threat detection and greater private-public sector collaboration to address the growing cybersecurity skills gap.
Indika De Zoysa, Strategic Adviser at Huawei Technologies Lanka, discussed the role of international standards in safeguarding telecom infrastructure, particularly in the context of 5G. De Zoysa introduced two important frameworks: MCKB (Mobile Cybersecurity Knowledge Base) and NESAS (Network Equipment Security Assurance Scheme), both designed to strengthen telecom security. He also stressed that cybersecurity is a shared responsibility among operators, service providers, and vendors.
Sijesh Sreedhar, Head of Security Engineers at Google Cloud Security-India, shared a compelling real-world case study of a cyberattack on critical infrastructure in the APJ region. The ransomware attack on a public-sector utility demonstrated how poor system defenses and centralization can lead to devastating breaches. Sreedhar emphasized that organizations must continuously validate and adapt their defenses in response to evolving cyber threats.
The session concluded with a panel discussion featuring Farash Samat, Head of Information Security at Dialog Axiata, and Nirosh Ananda, Chief Information Security Officer at SLCERT. The panelists discussed the expanding attack surface brought about by 5G, IoT, and cloud adoption, emphasizing the importance of real-time threat intelligence sharing and global cooperation. They also identified key cybersecurity challenges, including ransomware-as-a-service, supply chain vulnerabilities, and insider threats. Samat highlighted the risks associated with AI-driven attacks, while Ananda stressed the need for greater transparency and improved incident reporting mechanisms.
The event underscored the urgency of proactive measures, collaboration, and continuous adaptation in securing critical infrastructure. The strategic partners of the Summit included Visa, Belkasoft, Huawei, Google Cloud, Sysco LABS, Millennium IT ESP, NCinga, and Just In Time Group, with media support from Sirasa TV, TV1, and NewsFirst.
