Future-Proofing Data in Asia Pacific: Mohamed Marjook Hussain on AI, Resilience, and Risk

Mohamed Marjook Hussain, Regional Technical Head for ANZ and APAC, ManageEngine

In today’s hyper-digital economy, data isn’t just a business asset—it’s the lifeline of operations, trust, and growth. But as organisations across Asia Pacific and ANZ accelerate cloud adoption and embrace AI, the risks have become just as expansive as the opportunities. In this exclusive interview with CIO World Asia, Mohamed Marjook Hussain, Regional Technical Head for ManageEngine, shares how the surge of AI-powered threats, evolving compliance expectations, and common misconceptions about backup are pushing businesses to fundamentally rethink their approach to data protection. His message is clear: resilience isn’t optional—it’s strategic.

From Reactive to Resilient

With over a decade of experience in ITSM, audits, and IT management applications, Hussain has seen first-hand how digital threats have reshaped the business resilience narrative. “Data protection has shifted from being a standalone function to an integral pillar of business continuity,” he explains.

This shift demands a multi-dimensional approach: visibility across systems, proactive threat management, airtight identity controls, and—perhaps most critically—well-drilled recovery strategies. “Comprehensive visibility is non-negotiable,” he says. “If you can’t see your endpoints or application vulnerabilities, you can’t defend them.”

AI: A Double-Edged Sword

As AI revolutionises how businesses operate, it’s also arming cybercriminals with powerful new tools. Deepfake scams, AI-enhanced phishing, and synthetic identity attacks are increasingly common. “AI has changed the game,” Hussain warns. “We’ve seen cases where deepfake technology was used to almost defraud companies of hundreds of thousands of dollars.”

This threat complexity demands equally advanced defence mechanisms. Hussain advocates for integrating AI and ML into backup and recovery protocols—not just to automate, but to anticipate. “AI can detect anomalies and flag suspicious behaviour before it escalates. It’s essential for pre-empting ransomware attacks and ensuring faster data recovery.”

But he also points to the critical role of data quality. “Flawed or inconsistent data undermines AI’s effectiveness. Businesses need to invest in reliable data hygiene and shadow AI governance to avoid risks introduced by unsanctioned tools.”

The High Cost of Backup Myths

According to Hussain, many organisations are still playing catch-up—not due to a lack of intent, but because of persistent misconceptions.

One myth? That backup is only essential for large enterprises. “SMEs are just as vulnerable,” he says. “The financial and reputational damage of data loss doesn’t discriminate by company size.”

Another? That cloud equals automatic backup. “This is a dangerous assumption. Not all cloud services offer comprehensive backup, and assuming otherwise creates blind spots.”

The consequences can be severe. Hussain recalls a Southeast Asian bank that lacked visibility into user activity—a critical oversight. “We deployed our Log360 and DataSecurity Plus tools. The bank was able to detect insider threats early, meet compliance targets, and avert what could’ve been a major data breach.”

The New Disaster Recovery Playbook

As hybrid and multi-cloud environments become the norm, the complexity of safeguarding data has skyrocketed. Hussain outlines the main challenges: a vastly expanded attack surface, fragmented identity and access systems, and shifting compliance rules across borders.

So how can businesses stay ahead?

“Start with the 3-2-1 backup strategy,” he says. “Keep three copies of your data on two different media, with one off-site. Then go further—integrate cloud-centric protection, invest in zero trust models, and embed automated backup verification into your systems.”

Cost, he notes, should never be a reason to cut corners. “Yes, budgets matter. But the cost of inaction—or insufficient action—is far higher. There are affordable, scalable solutions out there. Cloud-based backup tools, for instance, offer flexibility without compromising on protection.”

Regional Realities, Regional Wins

Data protection strategies aren’t one-size-fits-all across APAC. Hussain observes that ANZ countries are generally more compliance-driven, backed by strong regulations like Australia’s Privacy Act or New Zealand’s breach notification laws.

Meanwhile, the broader APAC region presents a more fragmented picture. “In Singapore, there’s a proactive stance. In other markets, security awareness often spikes only after a breach,” he says.

Yet despite the diversity, ManageEngine has found ways to make impact at scale:

• In Australia, a government agency turned around failing audit results by implementing centralised identity controls through AD360.
  
• A Singaporean EdTech startup eliminated privilege risk and enforced zero trust using Password Manager Pro.
  
• A regional bank gained compliance and protected sensitive data from insider threats with targeted user behaviour analytics.
  

“Flexibility is key,” says Hussain. “ManageEngine solutions are modular and adaptable, making them well-suited for the hybrid needs of this region.”

Looking Ahead: The Future of Data Resilience

What does the next decade of data protection look like? According to Hussain, it’s one defined by automation, cloud-native architectures, and resilience by design.

“Backup will no longer be a reactive measure. It will be a strategic function embedded into business operations. AI will power real-time protection. Zero trust will become the norm. And compliance will be non-negotiable.”

His parting advice? “Future-proofing starts now. Build a robust business continuity and disaster recovery plan. Test it. Update it. Don’t wait for disruption to validate your strategy—stay ahead of it.”