‘Security solutions need to be consistent, regardless of geography or technical stack,’ emphasizes Nishant Kaushik

Nishant Kaushik Talks About Transaction Processing Systems.
Nishant Kaushik is an excellent technologist with strategic foresight and tactical know-how to manage technology-driven businesses and security expansion plans. He has successfully led cross-functional and highly focused teams to achieve business objectives that align with customer needs. Read this interview to discover Nishant’s expertise and unique perspective on omnichannel security and risk management.

We actively participate in organizations, communities, and forums where the latest security threats and vulnerabilities are discussed, shared, and communicated.

Media 7: Please tell us something about your organization. What are some of the biggest challenges Uniken faces in ensuring that your omnichannel transaction processing systems are secure and how do you address those challenges?
Nishant Kaushik:
 As we provide a security platform for customer facing businesses that operate on a variety of channels, just dealing with the continued evolution of each of these channels and their associated technology stacks is our biggest challenge. We need to make sure that the security solutions we provide to our customer and clients are consistent, regardless of which geography, what technical stack, or what technical capability the end users have.  Delivering that is our key focus, and in order to address these challenges and maintain consistency, we really focus on understanding the technical stack evolutions, staying up-to-date on the latest standards and threat vectors, and emerging best practices.

The consistency really comes from our simplicity of approach. We have a very strong security and privacy-by-design philosophy to our product development and our product capabilities.  And, we don't really try to deviate from that too much regardless of the channel or the tech stack. It gives us a very strong north star in terms of how to tackle the constantly changing landscape, avoid confusion, or create gaps in the product offering. That really is the key to us maintaining that consistency of security and experience.

M7: How does your organization balance the need for security with the need for convenience and ease of use in your transaction processing systems?
NK: 
From a design philosophy perspective, we try not to think of it as balance but as optimization. Often in security, we hear of people trying to strike a balance because they're told they have to choose between security and convenience - you can either have one or the other, but you can't have both. From the beginning, our approach has been to deliver the best of both worlds by focusing on the end customer experience, so really thinking about the end-user and how they approach it. By putting ourselves in the end-user's shoes and making sure that whatever we do from a security perspective is done in a fashion that doesn't put the burden on them, but instead makes it simple for them to use whichever product or channel they're engaging in. That enables us to find the optimal approach to delivering the right level of security without compromising the user experience that the end user is striving for. Our user-centric design or human-centric design approach to security enables us to balance concerns and achieve that optimization of security and convenience.

M7: Can you discuss your unique approach to risk management and how you prioritize security measures across different channels and systems?
NK: 
From a risk management perspective, the approach is really driven by us doing threat vector analysis. We have a few different frameworks we follow that allow us to identify tabletop scenarios and security analyses of threat vectors that customers would face. We use them to feed requirements into product design decisions concerning our defense in-depth approach for security, where we have combined omnichannel multifactor authentication, channel security, device security, etc. into our overall product solution set. The main differentiator for how we have approached the product is rather than being locked into one particular segment of security, either pure authentication or pure network security, we took a holistic approach where we decided we had to bring all of these pieces together, all of these different aspects of security together into one combined solution where they have to work together to deliver a cohesive and consistent approach.

Our approach to risk management was driven by this philosophy of looking at the security threat environment from multiple angles, not just from a user-risk perspective, but also from a device-risk and a network-risk perspective. And that approach helps us prioritize - essentially from a product management perspective – what features and capabilities to deliver our customers, irrespective of the channel. This directly led to our product approach in delivering omnichannel security. We try to ensure that no channel becomes the weakest link because attackers will always gravitate towards it. They will analyze your environment and find that weakest link, that channel which has the lowest security, and they will direct their attacks at that channel.

If you focused on strengthening your authentication in the mobile stack, they might go to the web. If you spend time shoring up the security for mobile and web, then they might attack the contact center or the call center. To protect our customers, we wanted to ensure that every channel was equally secure. That helped us prioritize our measures towards a mobile-first approach and deliver our solutions in a mobile-first manner.

Read more: ‘Marketing can be the oxygen to a company’s growth,’ says Shashi Kiran


From a product perspective, we consistently follow best practices such as continuous patching and updates of our security stack and software stack.

M7: In all aspects of your career, have you been involved in any projects or situations that particularly stood out to you as memorable?
NK:
 When you've been doing this for as long as I have and you're in a space as exciting and varied as identity and security, you tend to go through many different things. So, there's no one thing that stands out. There have been several engagements with clients, especially at early stages of the company, where you're doing proof of concepts or prototypes, and you encounter some interesting situations that kind of come out of left field and throw you for a loop, requiring you to react on the spot.

Some of them are challenging, some of them are comical almost, like that time during a proof of concept where in the middle of the final demo, somebody literally pulled out the power plug on the computers and our demo died in the middle. I’ve been in an early stage startup where we had to recover or essentially help the company rebuild itself out of the ashes of 9/11… so in a long career, I continue to find memorable things every year as we continue to play in a space that's interesting, whether we're dealing with new and emerging tech or companies that are trying to bring unique solutions to market. For example, we’re working with some of our partners on creating solutions for financial inclusion and technology that caters to the unbanked or people in remote areas – all of which continues to throw exciting challenges at us.

M7: How does your organization monitor developments in the latest trends of omnichannel security and what steps do you take to ensure that your systems are always at the forefront of security best practices?
NK: 
That's a somewhat complex question because it is a multi-dimensional approach. The number one thing that we do is listen to our customers. Often our customers or our clients are the ones dealing with the latest trends because they're seeing it in their customer environment, they're finding out which devices are being used and what capabilities their end customers are demanding. So client feedback is a big part of what helps us to understand the latest trends and how those impact our product roadmap. We are also involved in several industry bodies and standards organizations that are at the forefront of defining the next level of technology and where our technology trends are heading to, whether it's our involvement in the FIDO Alliance, organizations like the Better Identity Coalition and so on.

By getting involved with industry bodies and standards bodies as well as listening to our customers, we're able to look at these aspects from multiple different angles in terms of what's being seen and where things are going. And that's how we stay at forefront of the best practices.

M7: How does your company act quickly and effectively to a security breach to keep customers and businesses as safe as possible?
NK:
  Thankfully, we haven't had to deal with a security breach so far and we hope that it stays that way. We feel confident in our ability to avoid it because of our multidimensional defense-in-depth approach to security. That said, this is a constant battle, right? This requires constant vigilance so we have put multiple measures in place, like constantly monitoring the list of CVEs that are being published, being connected to various organizations that publish information regarding emerging threats or things that need to be addressed in our technology stack, constant patching of systems, patching of libraries, updating of algorithms, staying up-to-date on the latest versions of technologies in our security stack. These are proactive steps we take to stay ahead and minimize the risk of a breach or incident that can occur.

In our SaaS solutions, we have comprehensive security monitoring and intrusion detection tools in place that help us keep an eye on the environment and ensure that things are as safe as possible. We have incident response procedures, methodologies, and tools that we use for this purpose that, thankfully, we have yet to need. But still, we feel pretty confident that we have a good set of tools and processes in place – all of which go through the process of certification by independent third parties, to make sure that what we're doing meets industry standards and the requirements that we demand of ourselves as well as what our clients demand from us.

Read more:'We measure our success based on customer satisfaction, loyalty and retention,' says Strobes CEO Venu Ra


Adopting a user-centric or human-centric design approach to security enables us to effectively balance concerns and optimize both security and convenience.

M7: How does your company's REL-ID cryptographic solution safeguard the various layers of security stack?
NK:
 As I was mentioning earlier, one of the unique aspects of the REL-ID solution that we have developed is that we are not in a particular domain or limited to a particular domain. We're not just authentication or just network security. We've looked at the problem domains and recognized that in order to truly provide both the security and the user experience that our clients are demanding, we have to look at it from multiple dimensions and at every layer of the stack. That's been at the core of our design for our product.

When looking at how end users interact with an organization, there are many aspects that all contribute to the security equation, starting with the end user themselves. You need to focus on identity and provide strong authentication, multifactor authentication, strong identity assurance. Those users are using devices, so you need to know they are free of compromise and not contributing to the security problem. That's where having an understanding of the device health, the mobile framework and the software stack its running on. Then there’s the networks that the data is getting exchanged on, so now you need network security and encryption to protect data transmission between the end user and the clients' services, provide security for the API layers that those mobile apps are using, protect and hardening the mobile apps themselves. That’s multiple layers of the stack that goes basically, as we say, all the way from the end user to the backend - each layer of the stack has to be protected and done in a way that is consistent and always communicating with each other.
That's really how we've built our REL-ID solution, in order to ensure that every transaction is secure and reliable and has high assurance.

M7: How do you ensure that your third-party partners and vendors, such as payment processors and cloud service providers, adhere to your organization's security requirements and standards?
NK:
 It starts with the risk management approach that we discussed a little earlier that forces us to define what our requirements are for our third party vendors. It forces us to create an evaluation framework and policy framework that we then apply consistently to all of our partners and vendors. A great deal of that is only possible through the reliance on standard certifications that these providers obtain, similar to us.

For example, if we're talking about using something like Microsoft Azure, then obviously we are heavily reliant on the fact that the Microsoft Azure platform has gone through SOC2 and other certifications that are letting us know that they are meeting the security requirements we have. When it comes to some of our other partners, we rely not only on their certifications but also on the communication we have with them one-on-one, understanding their technology capabilities and doing our own evaluation of their technology and security stack, in many cases implementing our recommendations as part of their products as well. It's a multi-layered approach that we follow, keying of that consistent risk management approach that we're taking to working with our partners.

M7: How do you keep track of the latest security threats and vulnerabilities and ensure that your security protocols are robust enough to withstand them?
NK: 
Our defense in-depth approach, again, is a key part of this. There is no one answer, so it's again multilayered - ranging from us being involved with organizations and communities and participating in forums where the latest security threats and vulnerabilities are being discussed, shared, communicated.

The security community is actually quite robust and mature in this manner and very open to sharing information. There's a lot of strength we derive from being part of that broader committee. Secondly, we work with some of the leading organizations that provide real-time threat intelligence and information that feed our systems  that we rely on when it comes to things like malware detection, and so on, those are a big part of our solutions.

From a product perspective, we continue to engage in best practices around continuous patching and updates of our security stack and software stack as well as doing things like vulnerability assessments using both static analysis as well as doing independent third party vulnerability testing of our solutions.

ABOUT UNIKEN INC.

Uniken the company expands opportunities for client-focused organizations by focusing on establishing certainty in identity and security, all while ensuring exceptional customer experiences. The belief at Uniken is that identity should not be based solely on trust, but rather on certainty. This belief is backed by their award-winning REL-ID security platform, which plays a crucial role in elevating identity from mere trust to absolute certainty. Not only does REL-ID enhance security, but it also enhances the overall consumer experience.To know more, visit https://www.uniken.com/

More C-Suite on deck

‘In the industry, we've observed fragmentation, especially among larger organizations,’ says Chris Fisher

Media 7 | October 16, 2023

Chris Fisher is a seasoned marketing professional who specializes in digital marketing and demand generation to fuel business growth. I integrate product messaging and innovative strategies with data-driven marketing to achieve quantifiable outcomes. Read on to know his thoughts about safeguarding the layers of Cyber-security.

Read More

‘Data and analytics play a crucial role in shaping our advertising strategies,' asserts Aleksander Groshev

Media 7 | June 28, 2023

Aleksander Groshev is the CEO and Co-Founder of Autobahn Security. Previously he was Vice President of Product responsible for the product development of the SaaS platform. Before joining Autobahn Security he held the position of Head of Product at Fincite, a wealth management B2B platform.

Read More

'Content is a crucial aspect of your online presence as it essentially represents your brand,' says Michael Cichon

Media 7 | June 15, 2023

Michael Cichon is a seasoned B2B marketer specializing in digital and content marketing for identity-based online fraud detection and advanced email security solutions. With an expertise in product and digital marketing, he excels in developing brand narratives, driving integrated demand generation campaigns, and connecting with customers on a personal level to inspire action. Read on to know his ideas on the importance of content syndication practices in information security industry.

Read More

‘In the industry, we've observed fragmentation, especially among larger organizations,’ says Chris Fisher

Media 7 | October 16, 2023

Chris Fisher is a seasoned marketing professional who specializes in digital marketing and demand generation to fuel business growth. I integrate product messaging and innovative strategies with data-driven marketing to achieve quantifiable outcomes. Read on to know his thoughts about safeguarding the layers of Cyber-security.

Read More

‘Data and analytics play a crucial role in shaping our advertising strategies,' asserts Aleksander Groshev

Media 7 | June 28, 2023

Aleksander Groshev is the CEO and Co-Founder of Autobahn Security. Previously he was Vice President of Product responsible for the product development of the SaaS platform. Before joining Autobahn Security he held the position of Head of Product at Fincite, a wealth management B2B platform.

Read More

'Content is a crucial aspect of your online presence as it essentially represents your brand,' says Michael Cichon

Media 7 | June 15, 2023

Michael Cichon is a seasoned B2B marketer specializing in digital and content marketing for identity-based online fraud detection and advanced email security solutions. With an expertise in product and digital marketing, he excels in developing brand narratives, driving integrated demand generation campaigns, and connecting with customers on a personal level to inspire action. Read on to know his ideas on the importance of content syndication practices in information security industry.

Read More

Related News

Software Security

Deepwatch Announces New Forensic-Focused Operations Service To Enhance Cyber Resilience

Deepwatch | January 09, 2024

Deepwatch, the leading managed security platform for the cyber resilient enterprise, today announced the launch of Threat Signal, its standalone forensic-focused operations service. Deepwatch designed Threat Signal to enhance companies’ cybersecurity defenses, proactively identify and help mitigate attack vectors, and stay ahead of evolving risks to strengthen cyber resilience. Threat Signal provides protection beyond traditional security measures, finding advanced cyber threats that have bypassed existing controls by leveraging the latest attacker methodologies to stay in tune with the constantly evolving threat landscape. Using an “outside-in” methodology, Threat Signal evaluates an organization’s externally accessible presence from an attacker’s perspective to pinpoint and investigate risky systems and services. This informs the initial investigation and allows Deepwatch Experts to leverage advanced capabilities through organic intelligence, deep forensics, and threat hunting. According to Forrester’s “How to Make Threat Intelligence Actionable” report¹, “Over time, companies need to move beyond tactical use cases. Threat hunting can uncover threats that have bypassed traditional security tools, allowing companies to stop attacks earlier to minimize disruptions. As Forrester’s Threat Hunting 101 report describes, threat intelligence is vital because it provides insights into the TTPs of threat actors and details on how malware behaves. If time, expertise, and resources are constrained, consider leveraging an external service provider to conduct the threat-hunting exercise as an annual consulting engagement.” Threat Signal provides tailored and proactive security measures through customer-specific intelligence that takes an organization's unique attack surface, business risks, and the latest adversary intelligence or "threat cases" into account. Threat Signal’s additional features and capabilities include: Deepwatch Experts - Seasoned forensic security experts perform in-depth investigations, identifying threats before they disrupt an organization. Attack Surface Profiles - These profiles provide a customer actionable report, detailing external opportunity areas that an attacker could leverage against an organization, including high-risk opportunities, mitigation recommendations, and threat hunting leads. Forensic-Agent-Based Threat Hunting Engagements - Deepwatch’s specialists consistently engage in hunting activities to reveal concealed threats within a company’s infrastructure and provide a threat hunt summary report with detailed observations and any actions that the customer took during that hunt cycle. Reporting and Reviews - Deepwatch provides customers with reports, including: Weekly intelligence brief reports on analyzed open-source intelligence with Deepwatch recommendations. Summary presentations on the solution engagement status, including but not limited to hunting reports. Up to two executive reviews of the solution and observables per year. Ad-hoc awareness briefs of security advisories based on Deepwatch threat criteria. Annual intelligence reports on incident lessons learned and predictions. Malware Analysis - Deepwatch’s Adversary Tactics and Intelligence (ATI) team analyze collected malware and provide a report. Enhanced Security - Deepwatch’s MDR customers benefit from cross-collaborative security operations, harnessing advanced threat detection, and hyper-responsive capabilities. “As security professionals, we look to enhance a company’s security readiness. To do that, it’s critical for them to look beyond their existing security controls to ensure they are identifying and proactively protecting the business from external threats,” said Jerrod Barton, VP, Cyber Operations & Intelligence for Deepwatch. “With Threat Signal, we’re able to help our enterprise customers view their security readiness through the lens of the ‘attackers,’ ensuring that they can rapidly respond to any incoming threats, which in turn helps them elevate their cyber resilience.” About Deepwatch Deepwatch is the leading managed security platform for the cyber resilient enterprise. The Deepwatch Managed Security Platform and security experts provide enterprises with 24/7/365 cyber resilience, rapid detections, high fidelity alerts, reduced false positives, and automated actions. We operate as an extension of cybersecurity teams by delivering exceptional security expertise, visibility across your attack surface, precision response to threats, and a compelling return on your security investments. The Deepwatch Managed Security Platform is trusted by many of the world’s leading brands to improve their security posture, cyber resilience, and peace of mind. Learn more at www.deepwatch.com.

Read More

Software Security

Trellix and One Source Deliver Industry-Leading Managed Detection and Response Security Services

Trellix | January 22, 2024

Trellix, the cybersecurity company delivering the future of extended detection and response (XDR), today announced an expanded strategic partnership with One Source, a Managed Security Services Provider (MSSP) and technology delivery partner. Customers benefit from a Fortune 500 SOC capability built on the Trellix XDR Platform with AI-guided intelligence, enabling faster detection, investigation, and remediation. Trellix, the cybersecurity company delivering the future of extended detection and response (XDR), today announced an expanded strategic partnership with One Source, a Managed Security Services Provider (MSSP) and technology delivery partner. Customers benefit from a Fortune 500 SOC capability built on the Trellix XDR Platform with AI-guided intelligence, enabling faster detection, investigation, and remediation. “The partnership aligns with Trellix’s ongoing commitment to secure organizations from advanced cyber threats,” says Sean Morton, SVP of Professional Services at Trellix. “Leveraging One Source’s MDR capabilities and expanded footprint, we enable more businesses to build cyber resilience, with continued innovation in our combined products and solution offerings to stay ahead of bad actors.” One Source has multiple SOCs leveraging Trellix’s technology, staffed by the industry’s top experts to provide Managed Detection and Response (MDR) capabilities. Their team implements a proactive cyber strategy for customers specific to industry, technology environment, and vulnerabilities, built on the Trellix XDR Platform with 24x7 monitoring. The partnership and combined expertise benefits customers with enhanced services like managed threat detection and response, incident response, security operations and analytics, threat intelligence, threat hunting and forensics, and training and enablement. “The Trellix and One Source partnership is extremely powerful; the former offers an incredible set of security solutions, and the latter excels at personalized deployment and execution,” said Paul Moline, Chief Information Officer, Lindsay Automotive Group. “I never anticipated we could protect our environment with the same security solutions used by government agencies and Fortune 50 companies: I can now sleep at night.” The Trellix XDR Platform’s open architecture and broad set of native security controls across endpoint, email, network, cloud, and data security integrates with over 500 third-party tools to create multi-vector, multi-vendor event correlation and context to speed up investigations. The Trellix Advanced Research Center provides an additional layer of protection by continuously informing the platform with information from millions of global sensors on the latest threat vectors, tactics, and recommendations. One Source experts apply these insights to stay ahead of the constantly evolving threat landscape. “The collaboration with Trellix is a game-changer in reshaping the cybersecurity landscape,” says Eric Gressel, Executive Vice President of Sales, One Source. “Thanks to our partnership, we have access to the highest level of cyber intelligence to fend off newly-revealed hackers and their means of attack, enabling our customers with the most comprehensive offering of enhanced Managed Security Services to protect their businesses.” One Source has a proven track record supporting global businesses spanning retail, restaurant, automotive, healthcare, financial, and manufacturing industries. Trellix customers can rely on One Source's leading Managed Security Services to optimize technology expenses while enhancing telecom connectivity, IT infrastructure, and cybersecurity strategies. About Trellix Trellix is a global company redefining the future of cybersecurity and soulful work. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through machine learning and automation to empower over 40,000 business and government customers with living security. More at https://trellix.com. About One Source One Source helps businesses simplify a complex technology world. One Source is the leading provider of Technology and Managed Security Services for enterprises. Today, One Source manages more than 2,500 customers, 45,000 business locations, and over one million assets throughout North America. In addition to Managed Security Services, One Source provides Managed Technology Expense Management, 24 / 7 local helpdesk, procures and provisions telecom & IT solutions, and manages customer service requests. One Source frequently generates triple-digit ROI for customers through contract negotiation, portfolio optimization, and ongoing expense management. In addition, One Source leverages partnerships with industry leaders, including Trellix to bring Fortune 500 security solutions and fully managed services to the mid-market. One Source's approach empowers businesses to focus on customers and revenue-generating activities. Learn more at https://www.onesource.net/.

Read More

Platform Security

Stellar Cyber and Proofpoint Strategic Alliance to Deliver Comprehensive Email Security Solution For SecOps Teams

Stellar Cyber | January 23, 2024

Stellar Cyber, the innovator of Open XDR, announced a new partnership with Proofpoint, a leading cybersecurity and compliance company. Through this alliance, Proofpoint and Stellar Cyber customers benefit from an out-of-the-box integration enabling swift email investigations and real-time response actions to email-driven attacks. Proofpoint Targeted Attack Protection monitors emails to identify suspicious emails and potentially malicious attachments and URLs. Once identified, the findings are shared with Stellar Cyber automatically. Stellar Cyber’s Open XDR platform ingests, normalizes, and analyzes Proofpoint findings and other collected data to deliver a comprehensive threat picture. As security analysts conduct investigations, they can instruct integrated third-party products – including Proofpoint – on corrective actions. “Protecting organizations against email-borne attacks is a top priority, and security teams need a way to automatically correlate threat telemetry across the entire attack surface in order to quickly remediate threats,” said Andrew Homer, VP of Strategic Alliances, Stellar Cyber. “This new partnership with Proofpoint is the latest example of Stellar Cyber delivering on its Open XDR strategy to provide customers turn-key integrations that improve productivity and threat detection.” “Email attacks remain the number one entry point into an organization, and the level of sophistication of these attacks continues to grow exponentially,” said D.J. Long, Vice President, Strategic Alliances & Business Development, Proofpoint. “We’re thrilled to work with Stellar Cyber on this strategic alliance to help customers protect against advanced email-based threats and unify their cybersecurity defense.” Through this alliance, Stellar Cyber and Proofpoint give security teams an advantage over attackers, resulting in the following: Real-time threat signals exchanged for proactive detection Correlation of Proofpoint alerts across the entire attack surface Automated response actions for immediate threat containment About Stellar Cyber Stellar Cyber’s Open XDR Platform delivers comprehensive, unified security without complexity, empowering lean security teams of any skill level to secure their environments successfully. With Stellar Cyber, organizations reduce risk with early and precise identification and remediation of threats while slashing costs, retaining investments in existing tools, and improving analyst productivity, delivering an 8X improvement in MTTD and a 20X improvement in MTTR. The company is based in Silicon Valley.

Read More

Software Security

Deepwatch Announces New Forensic-Focused Operations Service To Enhance Cyber Resilience

Deepwatch | January 09, 2024

Deepwatch, the leading managed security platform for the cyber resilient enterprise, today announced the launch of Threat Signal, its standalone forensic-focused operations service. Deepwatch designed Threat Signal to enhance companies’ cybersecurity defenses, proactively identify and help mitigate attack vectors, and stay ahead of evolving risks to strengthen cyber resilience. Threat Signal provides protection beyond traditional security measures, finding advanced cyber threats that have bypassed existing controls by leveraging the latest attacker methodologies to stay in tune with the constantly evolving threat landscape. Using an “outside-in” methodology, Threat Signal evaluates an organization’s externally accessible presence from an attacker’s perspective to pinpoint and investigate risky systems and services. This informs the initial investigation and allows Deepwatch Experts to leverage advanced capabilities through organic intelligence, deep forensics, and threat hunting. According to Forrester’s “How to Make Threat Intelligence Actionable” report¹, “Over time, companies need to move beyond tactical use cases. Threat hunting can uncover threats that have bypassed traditional security tools, allowing companies to stop attacks earlier to minimize disruptions. As Forrester’s Threat Hunting 101 report describes, threat intelligence is vital because it provides insights into the TTPs of threat actors and details on how malware behaves. If time, expertise, and resources are constrained, consider leveraging an external service provider to conduct the threat-hunting exercise as an annual consulting engagement.” Threat Signal provides tailored and proactive security measures through customer-specific intelligence that takes an organization's unique attack surface, business risks, and the latest adversary intelligence or "threat cases" into account. Threat Signal’s additional features and capabilities include: Deepwatch Experts - Seasoned forensic security experts perform in-depth investigations, identifying threats before they disrupt an organization. Attack Surface Profiles - These profiles provide a customer actionable report, detailing external opportunity areas that an attacker could leverage against an organization, including high-risk opportunities, mitigation recommendations, and threat hunting leads. Forensic-Agent-Based Threat Hunting Engagements - Deepwatch’s specialists consistently engage in hunting activities to reveal concealed threats within a company’s infrastructure and provide a threat hunt summary report with detailed observations and any actions that the customer took during that hunt cycle. Reporting and Reviews - Deepwatch provides customers with reports, including: Weekly intelligence brief reports on analyzed open-source intelligence with Deepwatch recommendations. Summary presentations on the solution engagement status, including but not limited to hunting reports. Up to two executive reviews of the solution and observables per year. Ad-hoc awareness briefs of security advisories based on Deepwatch threat criteria. Annual intelligence reports on incident lessons learned and predictions. Malware Analysis - Deepwatch’s Adversary Tactics and Intelligence (ATI) team analyze collected malware and provide a report. Enhanced Security - Deepwatch’s MDR customers benefit from cross-collaborative security operations, harnessing advanced threat detection, and hyper-responsive capabilities. “As security professionals, we look to enhance a company’s security readiness. To do that, it’s critical for them to look beyond their existing security controls to ensure they are identifying and proactively protecting the business from external threats,” said Jerrod Barton, VP, Cyber Operations & Intelligence for Deepwatch. “With Threat Signal, we’re able to help our enterprise customers view their security readiness through the lens of the ‘attackers,’ ensuring that they can rapidly respond to any incoming threats, which in turn helps them elevate their cyber resilience.” About Deepwatch Deepwatch is the leading managed security platform for the cyber resilient enterprise. The Deepwatch Managed Security Platform and security experts provide enterprises with 24/7/365 cyber resilience, rapid detections, high fidelity alerts, reduced false positives, and automated actions. We operate as an extension of cybersecurity teams by delivering exceptional security expertise, visibility across your attack surface, precision response to threats, and a compelling return on your security investments. The Deepwatch Managed Security Platform is trusted by many of the world’s leading brands to improve their security posture, cyber resilience, and peace of mind. Learn more at www.deepwatch.com.

Read More

Software Security

Trellix and One Source Deliver Industry-Leading Managed Detection and Response Security Services

Trellix | January 22, 2024

Trellix, the cybersecurity company delivering the future of extended detection and response (XDR), today announced an expanded strategic partnership with One Source, a Managed Security Services Provider (MSSP) and technology delivery partner. Customers benefit from a Fortune 500 SOC capability built on the Trellix XDR Platform with AI-guided intelligence, enabling faster detection, investigation, and remediation. Trellix, the cybersecurity company delivering the future of extended detection and response (XDR), today announced an expanded strategic partnership with One Source, a Managed Security Services Provider (MSSP) and technology delivery partner. Customers benefit from a Fortune 500 SOC capability built on the Trellix XDR Platform with AI-guided intelligence, enabling faster detection, investigation, and remediation. “The partnership aligns with Trellix’s ongoing commitment to secure organizations from advanced cyber threats,” says Sean Morton, SVP of Professional Services at Trellix. “Leveraging One Source’s MDR capabilities and expanded footprint, we enable more businesses to build cyber resilience, with continued innovation in our combined products and solution offerings to stay ahead of bad actors.” One Source has multiple SOCs leveraging Trellix’s technology, staffed by the industry’s top experts to provide Managed Detection and Response (MDR) capabilities. Their team implements a proactive cyber strategy for customers specific to industry, technology environment, and vulnerabilities, built on the Trellix XDR Platform with 24x7 monitoring. The partnership and combined expertise benefits customers with enhanced services like managed threat detection and response, incident response, security operations and analytics, threat intelligence, threat hunting and forensics, and training and enablement. “The Trellix and One Source partnership is extremely powerful; the former offers an incredible set of security solutions, and the latter excels at personalized deployment and execution,” said Paul Moline, Chief Information Officer, Lindsay Automotive Group. “I never anticipated we could protect our environment with the same security solutions used by government agencies and Fortune 50 companies: I can now sleep at night.” The Trellix XDR Platform’s open architecture and broad set of native security controls across endpoint, email, network, cloud, and data security integrates with over 500 third-party tools to create multi-vector, multi-vendor event correlation and context to speed up investigations. The Trellix Advanced Research Center provides an additional layer of protection by continuously informing the platform with information from millions of global sensors on the latest threat vectors, tactics, and recommendations. One Source experts apply these insights to stay ahead of the constantly evolving threat landscape. “The collaboration with Trellix is a game-changer in reshaping the cybersecurity landscape,” says Eric Gressel, Executive Vice President of Sales, One Source. “Thanks to our partnership, we have access to the highest level of cyber intelligence to fend off newly-revealed hackers and their means of attack, enabling our customers with the most comprehensive offering of enhanced Managed Security Services to protect their businesses.” One Source has a proven track record supporting global businesses spanning retail, restaurant, automotive, healthcare, financial, and manufacturing industries. Trellix customers can rely on One Source's leading Managed Security Services to optimize technology expenses while enhancing telecom connectivity, IT infrastructure, and cybersecurity strategies. About Trellix Trellix is a global company redefining the future of cybersecurity and soulful work. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through machine learning and automation to empower over 40,000 business and government customers with living security. More at https://trellix.com. About One Source One Source helps businesses simplify a complex technology world. One Source is the leading provider of Technology and Managed Security Services for enterprises. Today, One Source manages more than 2,500 customers, 45,000 business locations, and over one million assets throughout North America. In addition to Managed Security Services, One Source provides Managed Technology Expense Management, 24 / 7 local helpdesk, procures and provisions telecom & IT solutions, and manages customer service requests. One Source frequently generates triple-digit ROI for customers through contract negotiation, portfolio optimization, and ongoing expense management. In addition, One Source leverages partnerships with industry leaders, including Trellix to bring Fortune 500 security solutions and fully managed services to the mid-market. One Source's approach empowers businesses to focus on customers and revenue-generating activities. Learn more at https://www.onesource.net/.

Read More

Platform Security

Stellar Cyber and Proofpoint Strategic Alliance to Deliver Comprehensive Email Security Solution For SecOps Teams

Stellar Cyber | January 23, 2024

Stellar Cyber, the innovator of Open XDR, announced a new partnership with Proofpoint, a leading cybersecurity and compliance company. Through this alliance, Proofpoint and Stellar Cyber customers benefit from an out-of-the-box integration enabling swift email investigations and real-time response actions to email-driven attacks. Proofpoint Targeted Attack Protection monitors emails to identify suspicious emails and potentially malicious attachments and URLs. Once identified, the findings are shared with Stellar Cyber automatically. Stellar Cyber’s Open XDR platform ingests, normalizes, and analyzes Proofpoint findings and other collected data to deliver a comprehensive threat picture. As security analysts conduct investigations, they can instruct integrated third-party products – including Proofpoint – on corrective actions. “Protecting organizations against email-borne attacks is a top priority, and security teams need a way to automatically correlate threat telemetry across the entire attack surface in order to quickly remediate threats,” said Andrew Homer, VP of Strategic Alliances, Stellar Cyber. “This new partnership with Proofpoint is the latest example of Stellar Cyber delivering on its Open XDR strategy to provide customers turn-key integrations that improve productivity and threat detection.” “Email attacks remain the number one entry point into an organization, and the level of sophistication of these attacks continues to grow exponentially,” said D.J. Long, Vice President, Strategic Alliances & Business Development, Proofpoint. “We’re thrilled to work with Stellar Cyber on this strategic alliance to help customers protect against advanced email-based threats and unify their cybersecurity defense.” Through this alliance, Stellar Cyber and Proofpoint give security teams an advantage over attackers, resulting in the following: Real-time threat signals exchanged for proactive detection Correlation of Proofpoint alerts across the entire attack surface Automated response actions for immediate threat containment About Stellar Cyber Stellar Cyber’s Open XDR Platform delivers comprehensive, unified security without complexity, empowering lean security teams of any skill level to secure their environments successfully. With Stellar Cyber, organizations reduce risk with early and precise identification and remediation of threats while slashing costs, retaining investments in existing tools, and improving analyst productivity, delivering an 8X improvement in MTTD and a 20X improvement in MTTR. The company is based in Silicon Valley.

Read More

Spotlight

Uniken Inc.

Uniken Inc.

Uniken unlocks limitless possibilities for client-centric organizations by creating certainty in identity and security while delivering amazing customer experiences. Uniken’s REL-ID platform secures every step of client interactions, all in a fully integrated solution, all invisible to the client an...

Events

Resources

Events