In the SecureWorld Spotlight Series, we learn about the speakers and Advisory Council members that make our events a success. In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some personal anecdotes.
Ravi Monga has more than 25 years of experience and is currently the Director of Cybersecurity at Children's Mercy Hospital of Kansas City. Born and raised in India, Ravi did his MBA from City University of New York and worked for Philip Morris for 10 years before moving into healthcare.
He has worked and managed teams in India, United Kingdom, Australia, the Middle East, and U.S. and has major industry certifications in Cloud and Security. Starting as a Network Administrator for Citibank in India, Ravi has a progressive career and is looking forward to delving into legal aspects of cybersecurity as his future skill.
Get to know Ravi Monga
Q: Why did you decide to pursue cybersecurity as a career path?
A: It was not a choice but a need. I was working at Cerner when the Department of Defense signed a large contract which had some very stringent security requirements. Cerner leadership asked me to help, and that is how I got started with cybersecurity.
Q: How would you describe your feelings about cybersecurity in one word?
A: Balance.
Q: What has been your most memorable moment thus far working in cybersecurity?
A: I was working as a CISO for a hospital in Wyoming and was invited to visit the location. That evening I had to drive 45 miles to find vegan dinner.
Q: What encouraged you to join your current organization (employer)?
A: After working at Cerner for 10 years, when I was looking for a change, Children's Mercy of Kansas City was looking for someone to step in as Director of Cybersecurity. With its noble mission of helping kids, it was a no-brainer match.
Q: What do you wish more people knew about your organization?
A: Children's Mercy of Kansas City is ranked second for the best employer in the State of Missouri for 2022.
Q: If you had to choose, what's the one cybersecurity practice people can adopt that would have the greatest impact?
A: Awareness. If we can educate non-security staff members in an organization on what tactics and means are being used by nefarious hackers, the entire organization becomes a first line of defense—just as communities are told, "if you see something, say something" and thereby help our law enforcement. This will reduce number of victims due to phishing and other common attempts.
Q: What is an industry-wide change you would like to see happen in the future?
A: Any organization with revenue of more than $1M needs to have CIS 1-5 controls in place; any organization above $10M needs to have CIS 1-10 in place; and so on. Most of the time, we are so fantasized by the latest and greatest in tools and solutions that we forget basics. That is like wearing Armani and Gucci but not brushing your teeth or taking your vitamins.
Q: If you could pass or change one regulation/law in cybersecurity and data protection, what would it be and why?
A: Same as above. Enforcements of basics will elevate the cybersecurity posture of every industry.
Q: What are you most looking forward to at SecureWorld this year?
A: Meeting all the people who know so much to establish some connections and soak in all the knowledge and experiences that I can bring back home to improve what I can deliver in my job.
To connect with Ravi and other cybersecurity leaders from greater Kansas City, attend the 11th annual SecureWorld Kanas City conference on May 3, 2023. Ravi will present a session on "EDR, MDR, XDR: Endpoint Protection Explained." See the conference agenda and register here.
Continue to follow our Spotlight Series for more highlights from industry experts.
