ExtraHop has established itself as a leader in network detection and response (NDR). Today, the company announced a new hire to fill the role of Vice President of Security Response Services. Companies hire people all the time—so, in and of itself that doesn’t normally catch my attention. However, Mark Bowling brings some unique experience and perspective to the company and is a sign of a shift in the strategic vision and direction for ExtraHop.
Mark Bowling served in the US Navy before joining the Federal Bureau of Investigation (FBI). He spent decades investigating and responding to cyber attacks for the FBI—where he contributed to cybersecurity initiatives that spanned government agencies. During his time with the FBI, he held a variety of key roles that provided him with invaluable experience and insight into cybercrime in general, as well as the overlap between cybercrime and nation-state attacks. In recent years, Bowling has served as a consultant for private sector clients, helping companies in finance, manufacturing, energy, healthcare, and technology improve their security and protect against today’s cyber threats.
So, what does all of that mean for ExtraHop? In a press release announcing Bowling’s new role, ExtraHop co-founder and Chief Customer Office, Raja Mukerji, explains, “Mark brings an incredible depth of expertise in managing cyber risk and security incident response. His lengthy leadership career with the FBI and the Department of Education, coupled with his more recent work advising private sector organizations on how to improve security and risk posture, make him uniquely suited to help advise ExtraHop customers as they navigate an increasingly advanced threat landscape. As we continue to expand our business and extend our leadership in the rapidly expanding network detection and response market, Mark’s insights and knowledge will offer a strategic advantage to our customers.”
I spoke with Bowling and asked about his vision for the role and what additional value he can bring for ExtraHop customers. Bowling stressed that ExtraHop needs to clearly define and deliver what customers want. That starts with helping the customer understand the unknown unknowns of their environments. “Having been in a CSO role before, I understand that those exist. Nobody has perfect knowledge of their environment.”
Bowling emphasized the relationships that ExtraHop has with managed service provider (MSP) partners, and that he and his team will collaborate with them to maximize value for customers. He noted the importance of focusing on core competencies and the mission, and striving to ensure that ExtraHop crafts the best advisory services capability for their customers.
I wanted to dig a little deeper into Bowling’s insight on the current threat landscape, given his military and FBI background. I pointed out that I believe the line between nation-state attackers and cybercriminals is dwindling and is very thin. Bowling responded, “I would argue that there’s really not a line at all. There’s actually an intersection between the two.” He described it as more of a Venn diagram with a growing overlap between the two circles.
Ultimately, Bowling views cybersecurity through three different lenses. It is a vocation, a passion, and a mission. It pays the bills and puts food on the table. It is also something he is interested in and driven to learn more about. He told me is currently pursuing a PhD in Electrical Engineering with a focus on the cybersecurity of the power grid. Lastly, it is also a mission. “I have not lost sight of the reason I raised my hand and swore the oath.
Bowling added, “I want to help ExtraHop customers be as competitive as they can be. And the best way I can do that is to help them respond most effectively to critical incidents.”
The threat landscape shifts and expands quickly and it takes the right combination of information, knowledge, and skill to effectively analyze it, detect threats, and take the appropriate action. Bowling’s extensive experience should be a tremendous asset for ExtraHop as they work to help companies stay a step ahead of attackers.