Jay Bavisi is the Co-Founder and President of EC-Council, an organization specializing in information security education, training, and certification. Established in response to the cybersecurity challenges highlighted by the events of 9/11, EC-Council focuses on addressing cyber terrorism and related security concerns on a global scale. The organization is known for creating certification programs such as Certified Ethical Hacker (C|EH), Computer Hacking Forensic Investigator (C|HFI), Secure Analyst (E|CSA), and Licensed Penetration Tester (L|PT).
Bavisi played a role in developing a partnership with the International Telecommunication Union (ITU), a United Nations agency, through the International Multilateral Partnership Against Cyber Threats (IMPACT). This collaboration aimed to enhance information security awareness and capabilities across 194 member countries.
You launched EC-Council in the wake of 9/11 with a mission to build global cybersecurity resilience. Can you share the story behind that founding moment and what motivated you to dedicate your career to securing the digital world?
In the aftermath of 9/11, it became painfully clear that security had to evolve. We were no longer just guarding borders. We were suddenly exposed in ways we hadn’t fully grasped, especially in the digital world. I realized that the next frontier of conflict and resilience was cyberspace. It was a wake-up call for governments, businesses, and individuals around the globe.
That moment became the starting point for EC-Council. We saw a critical gap. There simply weren’t enough trained professionals who could protect our digital infrastructure. So, we set out to create a global force of ethical hackers; professionals who could think like adversaries but act with integrity to defend and secure.
That idea gave birth to the Certified Ethical Hacker certification (CEH).It was radical at the time. We weren’t just teaching tools or techniques. We were instilling a mindset. We were saying, learn how to break things so you know how to protect them.
Over time, CEH became a global standard. But what truly drives me is not just how far we’ve come, but how many lives, businesses, and governments we’ve helped protect.
What started as a response to tragedy has become a lifelong commitment to building digital resilience. That mission still guides everything we do today.
With over 350,000 cybersecurity professionals in your network, what changes have you noticed in the skillsets most in demand today—especially post-ChatGPT and generative AI?
Cybersecurity has always been a race against time. But with the explosion of generative AI, led by tools like OpenAI’s ChatGPT, the entire landscape has been reengineered. What used to take hours of manual effort can now be done in seconds with precision and scale. The accessibility of these AI tools has democratized capabilities that were once limited to elite threat actors. Now, anyone with a keyboard and curiosity can automate attacks, manipulate data, or impersonate identities at scale.
Let’s be clear: OpenAI didn’t create cybercrime. But its technologies along with those from other leading AI labs have supercharged what’s possible, for both defenders and attackers. The dual-use nature of generative AI means we’re living in a world where innovation and exploitation move in lockstep.
This shift has raised the bar for every cybersecurity professional. It is no longer enough to understand basic security principles. Today, professionals must know how AI works, how it can be exploited, and how it changes the attack surface. Skills like adversarial machine learning, prompt injection detection, and red teaming with AI-based tools are quickly becoming core competencies.
We saw this transformation reflected in the CEH Threat Report. The data was clear threat actors are adapting fast. Our community must learn even faster.
At EC-Council, we have built a culture around upskilling. From foundational certifications like the Certified Cybersecurity Technician to AI specialized programs like CEH and CPENT, we are enabling learners to continuously build and sharpen their capabilities.
In cybersecurity, there is no finish line. Those who commit to evolving, questioning, and learning are the ones who will shape the future of digital defense. Upskilling is no longer about staying competitive. It is about staying relevant and staying ready.
What makes the AI-powered CEH (Certified Ethical Hacker) certification uniquely positioned to address current and future threats?
The Certified Ethical Hacker certification has become synonymous with trust in the cybersecurity industry. When organizations look for professionals who can protect their systems proactively, CEH is the credential they rely on. It is recognized by the U.S. Department of Defense and adopted by thousands of employers worldwide, not just for its technical rigor, but because it represents readiness, resilience, and real-world relevance.
What makes CEH stand out today is how it has evolved to address a new class of threats powered by artificial intelligence. In its latest version, CEH does not just mention AI as a future concern. It brings it into the heart of the learning experience. Learners interact with AI-driven adversaries in simulated environments. They are exposed to over 550 attack techniques, many of which now reflect how real attackers are using automation, machine learning, and synthetic content to break into systems.
CEH is designed to prepare professionals for what they will face, not just what is written in textbooks. It follows a full-cycle approach: Learn-Certify-Engage-Compete framework. That journey creates muscle memory, strategic thinking, and instinctive responses.
In a world where cyber threats are evolving by the hour, CEH is more than a certification. It is a signal to employers that you are not only trained but prepared. And in cybersecurity, that kind of trust is everything.
How does EC-Council’s approach to training differ when preparing professionals to defend against AI-generated threats or to secure AI systems themselves?
We are entering a cybersecurity era where threats are not only more complex but also increasingly autonomous. Defenders must now be ready to counter attacks launched by intelligent systems that adapt, learn, and evolve. At EC-Council, we have reimagined our training to reflect this reality. We do not prepare learners for yesterday’s challenges. We prepare them for what comes next.
In CEH and CPENT learners are immersed in environments where adversaries use AI to mimic human behavior, automate breaches, and dynamically adjust their tactics. These are not academic exercises. They are real-world simulations designed to sharpen instincts, not just understanding. Professionals learn how to defend systems that think and how to secure AI itself.
We also believe that talent should not be confined by geography. Through global initiatives like the Certified Cybersecurity Technician Scholarship Program , we are making these opportunities accessible to aspiring professionals in underserved regions. The goal is to build a culture of security, globally.
This vision is powered by a robust ecosystem. EC-Council Learning , the world’s largest online cybersecurity library, provides on-demand access to thousands of bite-sized lessons, updated continuously to reflect the latest threats, tools, and vulnerabilities. Whether you are learning how to counter AI-generated attacks or brushing up on SOC procedures, ECL helps professionals stay ready; anytime, anywhere.
EC-Council University (ECCU) shapes the next generation of cybersecurity leaders with a strong foundation in academic and executive-level knowledge. EGS offers strategic enterprise solutions that help organizations build mature cyber defense frameworks.
And then there is the Hackerverse CTF our global cyber competition platform where knowledge meets pressure. Participants face off in red-versus-blue team battles, simulating real-time breaches, defending mission-critical systems, and working collaboratively to neutralize threats. It is more than a competition. It is a proving ground that builds resilience, creativity, and the ability to perform when it matters most.
This is how we prepare professionals to meet the future. With knowledge that is current, environments that are immersive, and platforms that inspire action. Cybersecurity is no longer just a career. It is a calling, and our mission is to equip the world’s defenders for that responsibility.
Your programs are recognized by global agencies like the NSA and ANSI. How do you maintain such a high standard while rapidly evolving your curriculum to meet AI advancements?
It is one thing to keep up with change. It is another to stay trusted while doing it. For us, quality and agility must go hand in hand. That is how we’ve earned and maintained recognition from global bodies like the NSA and ANSI.
We have a system that keeps us grounded in research while staying open to innovation. Our global team tracks emerging threats, analyzes new attack vectors, and monitors developments in AI and cybersecurity. That intelligence feeds directly into our curriculum pipeline.
But speed alone is not enough. Every update we make goes through a rigorous process. We pilot test it with seasoned professionals. We validate it in real-world environments like our cyber ranges. And we refine it based on feedback from those who live in the trenches every day.
Take CEH and CPENT for example. Integrating AI simulations into those programs was not just a technical decision. It was a mission-driven one. We wanted to make sure professionals were being trained in what they would actually encounter not just what theory says they might.
What keeps our programs ahead is this constant balance of innovation and integrity. We do not just teach best practices. We build programs that practitioners, governments, and global enterprises can trust. And we plan to keep it that way.
What role does EC-Council envision playing in shaping global policy or regulation around AI in cybersecurity?
Policy is only as effective as the insight it’s built on. At EC-Council, we believe cybersecurity regulation must be informed by those who face threats every day. That is why we actively engage with policymakers, education ministries, standards bodies, and intergovernmental organizations to help shape the frameworks that guide the future of digital security.
Our role is not limited to curriculum development. We are part of a broader dialogue on how nations and institutions can build resilience, especially as AI becomes more deeply integrated into both offensive and defensive capabilities. We bring to the table frontline intelligence from our vast network of cybersecurity professionals, threat researchers, and instructors across 145 countries. This gives us a unique vantage point—rooted in practical reality and global scale.
We contribute to the development of national workforce standards, advise on emerging AI competencies, and collaborate with governments to align cybersecurity education with national security goals. Our insights have helped define the structure of public-private partnerships, capacity-building initiatives, and the role of continuous learning in long-term resilience strategies.
Whether through certifications, enterprise training, academic programs, or research partnerships, we are shaping not just how professionals are trained, but how nations prepare for the future. As AI continues to reshape the cyber domain, our mission is to ensure policy keeps pace with clarity, foresight, and integrity.
Do you believe we’re approaching a point where traditional security roles must evolve into “AI security specialists”?
The shift is already happening. AI is no longer a specialized topic sitting on the edges of cybersecurity. It is becoming part of every function, from threat detection to identity management, from red teaming to vulnerability analysis. Security professionals can no longer afford to treat AI as a separate skill set. It is now foundational.
We are seeing the early signs of this transformation in the job market. New roles are emerging AI security researcher, synthetic identity analyst, LLM prompt risk evaluator. These are not just buzzwords. They are signals that organizations need people who understand both cybersecurity and the mechanics of intelligent systems.
At EC-Council, we are embedding AI across our entire certification ecosystem. It is no longer reserved for advanced learners. Even in foundational courses, professionals are introduced to AI-driven threats and defense strategies. We are teaching people how to think critically about machine learning pipelines, how to detect algorithmic bias, and how to prevent AI from being turned against the systems it was meant to protect.
The future of cybersecurity belongs to those who can bridge disciplines. As AI becomes embedded in every aspect of digital infrastructure, our defenders must grow just as sophisticated. This evolution is not optional. It is the next chapter in the story of cyber resilience.
You’ve emphasized supporting startups beyond major tech hubs—how are you ensuring access to this funding and training across underrepresented regions?
At EC-Council, we are constantly working to expand the reach of cybersecurity innovation. We are seeing some of the most promising ideas come from places far outside traditional tech corridors, often from professionals solving urgent challenges in real time, with deep local insight and limited resources.
To support this momentum, we are running a $100 M global investment initiative that actively invests in cybersecurity startups demonstrating real-world impact, regardless of location. We are not just offering capital. We are providing mentorship, technical guidance, and access to EC-Council’s global platforms; helping startups grow their solutions and access international markets.
We are giving priority to ventures led by EC-Council-certified professionals, as they bring both technical expertise and a strong ethical foundation to their work. These individuals understand the complexities of modern threats and are building solutions that align with industry needs and societal impact.
At the same time, we are increasing access to training in underserved regions. Through our Certified Cybersecurity Technician Scholarship Program, we are opening doors for aspiring professionals in countries like Nepal and Malaysia. We are also enabling learners around the world to engage with high-quality content through our platforms, gaining the skills they need to contribute meaningfully to the field.
We are building an ecosystem that continues to grow by recognizing talent wherever it exists and supporting innovation that makes a difference globally.
What inspired EC-Council to launch a $100 million initiative now, and how do you see AI changing the cybersecurity innovation landscape in the next 5 years?
We launched $100 M global investment initiative because the landscape has changed. Innovation is no longer confined to large corporations or academic labs. It is being driven by practitioners by people in the trenches who are seeing new challenges and responding with bold, practical solutions.
The speed and scale at which AI is transforming cybersecurity is unprecedented. Over the next five years, we expect to see major advances in predictive analytics, autonomous red teaming, AI-native SOCs, and real-time decision engines. These are not science fiction. They are already taking shape in prototypes and early deployments.
But innovation alone is not enough. It needs support. That is why we created this initiative to fuel the next generation of cybersecurity breakthroughs. We are looking for startups that blend technical excellence with deep mission focus. We want to back builders who understand the problem from the inside and are ready to solve it from the ground up.
Our goal is to create a multiplier effect. We provide funding, mentorship, and global visibility. In return, we help scale ideas that can strengthen defense systems worldwide.
This is not just an investment. It is a commitment to the future of cybersecurity. A future where the best ideas get built, no matter where they come from.
What advice would you give to young professionals considering entering the cybersecurity field today—particularly those fascinated by AI?
Start with curiosity. That is the most important trait in this field. You do not need a perfect resume or a traditional background. What you need is the drive to learn, the discipline to keep going, and the courage to ask better questions.
Cybersecurity is one of the most meaningful careers you can pursue. It is not just about protecting data. It is about protecting people, institutions, and the very fabric of our digital lives. And if you are drawn to AI, that is even more exciting. We are at the beginning of a new era where intelligent systems will shape how we defend everything from personal devices to national infrastructure.
Dive into how models work. Break them. Fix them. Understand how attackers exploit them and how defenders can fight back. Experiment. Learn. Collaborate. This is not a solo journey. The best cybersecurity professionals work in teams, build communities, and grow by sharing.
At EC-Council, we have built a path for every stage of that journey. Whether you are just starting with hands-on labs or pushing yourself in global competitions, there is space for you here. The world needs ethical defenders who are not only skilled, but driven by purpose. If that sounds like you, then welcome to a field where you can make a real impact.
Thank you for the great interview, readers who wish to learn more should visit EC-Council.
The post Jay Bavisi, Group President, EC-Council – Interview Series appeared first on Unite.AI.
