Elastic Public Sector Day 2026, held in New Delhi on 3 July, brought together government cybersecurity leaders, policymakers, and technology experts to examine how AI-powered security operations can counter escalating cyber threats to India's digital public infrastructure. The summit, organized by Elastic in collaboration with Elets Technomedia, demonstrated new approaches to threat detection, data sovereignty, and observability that aim to shift government agencies from reactive monitoring to intelligent, automated response.
Cybersecurity as a Strategic Pillar
In the welcome addresses, Dr Ravi Gupta, Founder, CEO & Editor-in-Chief of Elets Technomedia, argued that as governments adopt AI, cloud, and Digital Public Infrastructure, they must move from securing isolated systems to building intelligent security ecosystems that anticipate and mitigate threats. Atul Ahuja, Area Vice President and General Manager at Elastic, said modern public sector organizations need flexible deployment models and complete visibility to maintain control over critical data. He stressed the importance of data sovereignty in strengthening cyber resilience.
Delivering the chief guest address, Dr Devesh Vatsa, Air Vice Marshal (Retd.) and Senior Vice President at the Data Security Council of India, traced the internet's evolution from a research network to the backbone of governance. "Cybersecurity must now be recognised as a strategic enabler of national resilience," he said. Vatsa added that the success of future digital transformation initiatives will depend on intelligent security operations, trusted digital infrastructure, skilled talent, and collaborative partnerships. The summit's discussions reflected this view, repeatedly linking cybersecurity to the larger goal of digital sovereignty.
Throughout the day, speakers emphasized that responsible AI adoption in the public sector must go beyond automation to include governance, transparency, and explainability - key themes in the broader conversation around AI for Government.
Autonomous Threat Detection and AI-Assisted Investigation
Technical sessions drilled into the practical applications of AI in security operations. Simranjeet Singh Ahuja, Principal Solutions Architect at Elastic, demonstrated how the Elastic AI Assistant, combined with retrieval-augmented generation (RAG) and semantic search, can autonomously correlate security data, investigate alerts, and reduce response times. The demonstration showed that AI-powered SOCs free analysts from repetitive tasks, allowing them to focus on high-value threats.
Abhinav Chauhan, another Principal Solutions Architect at Elastic, discussed agentic RAG and context engineering. He explained that scalable enterprise AI depends on intelligent search, vector databases, and GPU-accelerated architectures that efficiently handle both structured and unstructured data while keeping infrastructure costs in check. These capabilities are increasingly relevant for government agencies managing vast datasets across departments.
For cybersecurity teams in government looking to build these autonomous detection skills, the AI Learning Path for Cybersecurity Analysts offers structured training in AI-driven investigation and threat-hunting techniques.
Predicting Failures Before Citizens Are Affected
Another track focused on AI-powered observability. Puneet Duggal, Principal Solutions Architect at Elastic, walked attendees through how AI agents can correlate logs, metrics, traces, and events to predict failures across government digital platforms. Instead of reacting to citizen complaints, agencies can move to proactive incident prevention. Duggal's session showed that unified observability, powered by AI, shortens mean time to resolution and improves the reliability of critical public services.
A panel discussion on intent-based cybersecurity highlighted the role of smarter log analytics. Gaurav Kumar Ranade, CTO of Netpoleon Bharat, said AI is redefining the cyber battlefield, making intelligent SOCs and AI-driven analytics non-negotiable for protecting critical infrastructure. Manoj Tandon, Director at RailTel Corporation, added that cyber resilience requires not only the right technology but also security-by-design principles and human expertise. Ravindra Ramnani, Senior Manager at Elastic, pointed out that AI has compressed attack timelines so much that only behaviour-based and anomaly-driven detection can catch threats that evade signature-based tools.
Why this matters for government professionals
The summit made clear that AI is no longer an experimental add-on for government cybersecurity - it is becoming the operational backbone. For CISOs, SOC managers, and IT architects in the public sector, the immediate priority is to evaluate how AI-assisted investigation, semantic search, and observability can be integrated into existing security stacks. The shift to autonomous threat detection will demand new skills, particularly in prompt engineering for security analytics and in managing RAG pipelines, which makes structured upskilling paths a practical necessity.
At the same time, data sovereignty and trusted deployment models remain critical. Government agencies must insist on architectures that allow them to keep sensitive data on-premises or in sovereign clouds while still benefiting from AI-driven analytics. The summit demonstrated that the technology to do this is already available; the challenge now is to align procurement, training, and governance to adopt it at scale.
Your membership also unlocks: