DATA SECURITY

Achieve Partners Backs Cybersecurity Platform to Tackle Global Talent Shortage

Achieve Partners | September 06, 2021

Achieve Partners today announced the acquisition of Metmox, a leading Managed Security Service Provider (MSSP) to Fortune 500 companies. The acquisition is the latest in Achieve's new fund, which builds apprenticeship programs that provide on-the-job skills training and connections to career pathways in high-growth industries.

"While cyber threats are growing in number and sophistication amid increasing levels of remote work and cloud adaption, the global security workforce is struggling to keep up," said Srikanth Parepally, CEO of Metmox. "Achieve's acquisition of Metmox is about building new pipelines of talent that can help America's most important businesses keep hackers at bay, and solve one of the most urgent challenges facing the future of business and society."

Although there are nearly 500,000 unfilled cybersecurity positions in the U.S., and more than eight in 10 employers report a shortage of cybersecurity skills, the industry remains all but closed-off to entry-level workers. Eighty-five percent of cybersecurity jobs require at least 3 years of work experience, and 88 percent require a bachelor's degree. As part of its investment in Metmox, Achieve Partners will lead the development of a large-scale cybersecurity apprenticeship program that will prepare entry-level talent to succeed in cybersecurity careers with apprentices transitioning to full-time roles with Metmox and its clients.

"As the world of work becomes increasingly remote and the digital transformation of the labor market accelerates, the need for cybersecurity solutions has never been greater," said Ira Goldstein, Metmox Board Chairman. "We're creating a faster, cheaper pathway to help fill the millions of open cybersecurity positions worldwide while also enabling employers to tap new talent pools to meet one of their most critical needs."

"The cybersecurity infrastructure of businesses and governments alike will remain vulnerable until we're able to train the workers who can act as our first line of defense," said Aanand Radia, Managing Director at Achieve Partners. "In partnership with Metmox, we're helping the country's largest employers close a widening talent gap, in order to better protect the complex systems that keep the economy – and society – functioning."

About Achieve Partners
Achieve Partners is engineering the future of learning and earning by investing in cutting edge technologies and novel business models to bolster skill development and secure the future of work for millions of Americans. By harnessing digital transformation to build new models for learning and new pathways to good jobs, Achieve is helping to level the playing field, improve socioeconomic mobility, and rekindle the American Dream.
www.achievepartners.com

About Metmox
Metmox is a next generation Managed Security and Network Solutions Provider delivering meaningful outcomes to secure customers through technology innovation and investing in talent, paired with an extreme focus on customer satisfaction. As the pace of change accelerates, our tools and expertise build custom-tailored methods to cyber-secure Metmox clients. Metmox is ranked as one of the top security operations providers in the world by MSSP Alert's Top 250 list in 2020.

Spotlight

Agari and PhishLabs analyzed hundreds of thousands of phishing and social media attacks targeting enterprises, their employees, and brands. This report uses the data from those attacks to present key trends shaping the threat landscape. Security leaders and practitioners can use this information to better understand these threat

Spotlight

Agari and PhishLabs analyzed hundreds of thousands of phishing and social media attacks targeting enterprises, their employees, and brands. This report uses the data from those attacks to present key trends shaping the threat landscape. Security leaders and practitioners can use this information to better understand these threat

Related News

DATA SECURITY, SOFTWARE SECURITY

Virtru Joins NIST NCCoE Data Security Consortium

Virtru | March 03, 2023

On March 2, 2023, Virtru, a prominent figure in data-centric security and privacy, announced its involvement in NIST's National Cybersecurity Center of Excellence (NCCoE) Data Classification Practices: Facilitating Data-Centric Security Management initiative. As part of a team of global technology leaders, Virtru will collaborate with NIST to develop recommended data classification and data-centric security practices, which will protect data while supporting business practices and transactions. The goal of this collaborative effort is to promote data-centric security on a larger scale. As systems become more mobile, dispersed and shared across different environments and stewardship, traditional network-centric security measures are increasingly ineffective at protecting information. Data-centric security aims to safeguard data at the object level by securing it directly rather than simply securing the systems and networks that store and transmit it. Organizations employing this approach can identify their data, its characteristics, and the security and privacy requirements needed to control and protect it fully. Virtru has a long-standing history of partnering with the public- and private-sector organizations to achieve data-centric security, serving the federal intelligence community, the largest financial institutions globally, and over 8,000 organizations worldwide. Virtru's technology enables organizations to enforce policy, encryption and access controls directly to data being transmitted via files, emails and SaaS applications while allowing organizations to manage their encryption keys for complete control and data sovereignty. Virtru's Chief Technology Officer, Will Ackerly, commented, "Data-centric security is central to everything we do at Virtru," He further emphasized, "Our goal is to enable the mission — that means moving data freely, but securely. Being a member of NIST's NCCoE Data Classification project is a manifestation of more than a decade of hard work. By tagging data appropriately, we can help ensure public- and private-sector organizations can trust that their data will be used and shared appropriately, just as the data creator intended. This is vital to the future of collaboration." (Source – Globe Newswire) About Virtru Virtru is a leading data security and privacy solutions provider. With end-to-end encryption for major data-sharing platforms like Microsoft and Google, it helps customers take charge of their data wherever it is shared. It empowers organizations to keep control of their data by ensuring that it is protected everywhere it is stored and shared. The company is trusted by over 8,000 customers worldwide and is dedicated to safeguarding their sensitive data according to the highest security standards. Its Trusted Data Format (TDF) is an industry standard that provides persistent data protection through encryption technology for data shared via email, collaboration tools, cloud environments, and enterprise SaaS applications.

Read More

ENTERPRISE SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

SteelCloud and Telos Corporation Collaborate to Enhance NIST RMF Compliance

Telos Corporation | January 09, 2023

SteelCloud LLC, a leading CIS and STIG compliance automation software developer and Telos Corporation, a renowned provider of cyber, enterprise, and cloud security solutions to the world's most security-conscious organizations, recently announced entering into a partnership to assist customers in reducing the complexity of NIST Risk Management Framework (RMF) compliance. Customers gain access to all seven RMF phases via a unified, automated solution. SteelCloud's ConfigOS capabilities take care of the identify/ categorize, select, and implement components of RMF for technical assets. ConfigOS examines an asset, determining whether Security Technical Implementation Guides (STIG) apply, scanning against the STIG standards, identifying compliance indicators, and automating the remediation of findings. Meanwhile, Xacta incorporates and uses this information during the RMF's assessment and authorization processes, as well as when the monitor step is initiated once authorization to operate (ATO) is obtained. Working together, ConfigOS and Xacta drive decisions to address identification and selection problems while reporting important indicator metrics required to achieve and sustain ATO. STIG and vulnerability data from ConfigOS are integrated into Xacta and mapped to appropriate requirements as part of Assessment and Authorization (A&A), providing customers with a streamlined approach to gaining necessary permissions. Xacta's workflow automation streamlines the whole NIST RMF workflow, managing validation, analysis, documentation, and accreditation processes from start to end. About Telos Corporation Telos Corporation provides solutions for continuous security assurance of personnel, systems, and information to the world's most security-conscious enterprises, empowering and protecting them. The company offers enterprise security solutions for identity and access management, organizational messaging, secure mobility, and network management and defense. Telos Corporation serves commercial organizations, regulated sectors, and government customers all around the world. About SteelCloud SteelCloud is a company that creates STIG and CIS compliance software for government and business clients. The company's product reduces the complexity, effort, and cost of implementing federal security standards by automating policy and security repair. SteelCloud has provided enterprise-wide security policy-compliant solutions, easing setup, and ongoing security and compliance support. SteelCloud goods are simple to obtain through our GSA Schedule 70 contract.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

SlashNext Introduces Generative AI Solution for Email Security

SlashNext | March 01, 2023

On February 28, 2023, SlashNext, a leading SaaS-based Integrated Cloud Messaging Security solutions provider across web, email and mobile, announced the release of Generative HumanAI™, the industry's first artificial intelligence solution using generative AI to defend against advanced business email compromise (BEC), executive impersonation, supply chain attacks, and financial fraud. Adding Generative HumanAI ensures that customers have peace of mind, despite threat actors utilizing widely available AI tools to aid their efforts. The solution already has a 99.9% detection rate with its existing AI capabilities. Generative HumanAI predicts vast numbers of potential AI-generated BEC threats by utilizing AI data augmentation and cloning technologies to evaluate a core threat and then produce thousands of other versions of that same core threat, which allows the system to train itself on possible variations. This new solution joins SlashNext's existing HumanAI capabilities, which imitate human threat researchers by combining computer vision, natural language processing, and machine learning with relationship graphs and deep contextualization to thwart sophisticated multichannel messaging attacks. Features of HumanAI consist: Relationship Graphs & Contextual Analysis establish a baseline of known-good writing styles and communication patterns for each employee and supplier to detect unusual conversation and communication styles. BEC Generative AI Augmentation automatically generates thousands of new BEC variants from today's threat to stop tomorrow's attacks. Natural Language Processing analyzes text in the email body and attachments for tone, emotion, topic, intent and manipulation triggers related to social engineering tactics. Computer Vision Recognition leverages SlashNext's LiveScan™ to inspect URLs in real-time for any visual divergence, such as layouts and images, to detect credential phishing webpages. Sender Impersonation Analysis evaluates headline details and email authentication results to stop impersonation attacks. File Attachment Inspection analyzes social engineering traits of attachments and malicious codes to stop ransomware. SlashNext has been developing this patent-pending solution internally for over two years and is at the forefront of multichannel messaging security. Its threat researchers recognized that generative AI would soon change the face of BEC attacks. About SlashNext SlashNext is a leading cloud-based messaging security solutions provider to safeguard against malicious messages across all digital channels. Its integrated messaging security platform, called SlashNext Complete™, is equipped with patented HumanAI™ technology having a detection accuracy rate of 99.9% and is capable of detecting real-time threats across various messaging channels such as mobile, email and web-based messaging applications like LinkedIn, M365, Gmail, WhatsApp, Slack, Telegram, Teams, and others. By taking advantage of SlashNext's Integrated Cloud Messaging Security, businesses can safeguard their sensitive information from data theft and financial fraud breaches. The company's solution is designed to detect and prevent zero-hour threats in real-time to ensure their customers' highest level of security.

Read More