DATA SECURITY

Achieve Partners Backs Cybersecurity Platform to Tackle Global Talent Shortage

Achieve Partners | September 06, 2021

Achieve Partners Backs Cybersecurity Platform to Tackle Global Talent Shortage
Achieve Partners today announced the acquisition of Metmox, a leading Managed Security Service Provider (MSSP) to Fortune 500 companies. The acquisition is the latest in Achieve's new fund, which builds apprenticeship programs that provide on-the-job skills training and connections to career pathways in high-growth industries.

"While cyber threats are growing in number and sophistication amid increasing levels of remote work and cloud adaption, the global security workforce is struggling to keep up," said Srikanth Parepally, CEO of Metmox. "Achieve's acquisition of Metmox is about building new pipelines of talent that can help America's most important businesses keep hackers at bay, and solve one of the most urgent challenges facing the future of business and society."

Although there are nearly 500,000 unfilled cybersecurity positions in the U.S., and more than eight in 10 employers report a shortage of cybersecurity skills, the industry remains all but closed-off to entry-level workers. Eighty-five percent of cybersecurity jobs require at least 3 years of work experience, and 88 percent require a bachelor's degree. As part of its investment in Metmox, Achieve Partners will lead the development of a large-scale cybersecurity apprenticeship program that will prepare entry-level talent to succeed in cybersecurity careers with apprentices transitioning to full-time roles with Metmox and its clients.

"As the world of work becomes increasingly remote and the digital transformation of the labor market accelerates, the need for cybersecurity solutions has never been greater," said Ira Goldstein, Metmox Board Chairman. "We're creating a faster, cheaper pathway to help fill the millions of open cybersecurity positions worldwide while also enabling employers to tap new talent pools to meet one of their most critical needs."

"The cybersecurity infrastructure of businesses and governments alike will remain vulnerable until we're able to train the workers who can act as our first line of defense," said Aanand Radia, Managing Director at Achieve Partners. "In partnership with Metmox, we're helping the country's largest employers close a widening talent gap, in order to better protect the complex systems that keep the economy – and society – functioning."

About Achieve Partners
Achieve Partners is engineering the future of learning and earning by investing in cutting edge technologies and novel business models to bolster skill development and secure the future of work for millions of Americans. By harnessing digital transformation to build new models for learning and new pathways to good jobs, Achieve is helping to level the playing field, improve socioeconomic mobility, and rekindle the American Dream.
www.achievepartners.com

About Metmox
Metmox is a next generation Managed Security and Network Solutions Provider delivering meaningful outcomes to secure customers through technology innovation and investing in talent, paired with an extreme focus on customer satisfaction. As the pace of change accelerates, our tools and expertise build custom-tailored methods to cyber-secure Metmox clients. Metmox is ranked as one of the top security operations providers in the world by MSSP Alert's Top 250 list in 2020.

Spotlight

With a growing threat landscape, widening attack surface, and the increasing sophistication of attacks, threat detection and response has become increasingly challenging for security teams. While multiple security solutions are deployed in most organizations, serious threats continue to avoid detection because data is collected

Related News

Google's Advanced Protection Cybersecurity Now Available to Nest Users

Google | June 04, 2020

Google's had an extra-high level of cybersecurity that can be applied to people's accounts if they're particularly at risk of malicious hacking attempts or online attacks. Google account signed up for both the Advanced Protection Program and for use as a Nest account in your smart home. Nest devices and the Advanced Protection Program at the same time, tying up a feature that's apparently been heavily requested by the relevant users for some time . Here's something you might now know - for a while now, Google's had an extra-high level of cybersecurity that can be applied to people's accounts if they're particularly at risk of malicious hacking attempts or online attacks. This covers professions like journalism, politicians, activists and election workers, among others, and has been around since 2017, giving people extra layers of security to ensure they're safe from attacks. It limits access to your Google accounts and services more rigidly than otherwise, to make sure that unauthorised processes can't get access. However, until now it's had a slightly annoying drawback. Namely, you couldn't have your Google account signed up for both the Advanced Protection Program and for use as a Nest account in your smart home. Now, though, a blog post from the security team at Google has confirmed that users can use both Nest devices and the Advanced Protection Program at the same time, tying up a feature that's apparently been heavily requested by the relevant users for some time. That makes sense, at it's always annoying to be locked out of mutually useful services, not least when cyberattacks on people and organisations' smart devices are becoming more and more prevalent. Google has been beefing up security for its Nest devices in the last few months, leading up to this change, including the addition of reCAPTCHA verification layers to make it harder to people to spoof logins. All of which should hopefully serve to reassure anyone worried about security risks from their smart home. Read more: GOOGLE TOP CHOICE FOR CYBERCRIMINALS FOR BRAND-IMPERSONATION SPEAR-PHISHING CAMPAIGNS The scheme has been expanded to include additional Google services, including GSuite, the Google Cloud Platform, and the Chrome browser. In March, the tech giant expanded APP to cater to Android devices. ~ Google The Advanced Protection Program was originally introduced to provide an additional layer of security for Google accounts considered to be at a higher risk of compromise or cyberattacks, such as those used by journalists, lawyers, political figures, and civil rights group members. Over time, the scheme has been expanded to include additional Google services, including GSuite, the Google Cloud Platform, and the Chrome browser. In March, the tech giant expanded APP to cater to Android devices. Previously, users were not able to connect their Google accounts to the APP program and Nest home devices at the same time. Seamless integration, therefore, has been constantly requested by users, the executive says. Google's APP-Nest integration follows reports of vulnerabilities in Nest security cameras and device hijacking, including a case in Wisconsin involving a couple reportedly subjected to taunts made by a hacker through their Nest camera . Google's APP-Nest integration follows reports of vulnerabilities in Nest security cameras and device hijacking, including a case in Wisconsin involving a couple reportedly subjected to taunts made by a hacker through their Nest camera. The introduction of the Advanced Protection Program to the Nest family also builds upon recent changes made by Google to try and bolster the security posture of its products. Google has already rolled out login notifications to Nest users to warn them when a login attempt has been made, and back in February, the tech giant rolled out two-factor authentication (2FA). Anyone that has not enrolled in the scheme or moved their Nest account to a Google account will need to perform extra security checks via email. reCAPTCHA Enterprise was also recently integrated with Nest accounts to mitigate the risk of credential stuffing attacks, in which stolen or easy-to-guess credentials are automatically applied to devices in order to hijack them. When passwords are changed on Nest products, Google now also performs a search on behalf of users to see if they have potentially been exposed in third-party data leaks. Earlier this year, Google rolled out several new security features to Nest, including requiring two-factor authentication for users who had yet to migrate their Nest accounts to Google accounts. To enroll in Advanced Protection, users need two physical security keys — a main and a backup — and a phone running Android 7 or higher or iOS 10.0 or higher. Android users can enroll their phones and activate the built-in security key, while Apple users need to download the Google Smart Lock app. Even the most security-conscious users can be tricked by a sophisticated phishing attack. To protect you from this threat, Advanced Protection goes further than traditional 2-Step Verification. In addition to a password to sign in to your Google Account, it requires you to use either a physical security key Read more: AI IS CRITICAL FOR AUTOMATION OF CYBERSECURITY THREAT DETECTION AND PREVENTION

Read More

PLATFORM SECURITY

BT launches transformational new security platform, Eagle-i, to predict and prevent cyber attacks

BT Group | October 18, 2021

Relentless growth and ever-changing nature of the threat landscape dictates a new, proactive approach to cyber security Customers to benefit from advances in AI and automation, combined with BT's networking expertise, in transformational cyber defence platform Eagle-i builds on BT's recent security investment and partner ecosystem to address issues such as a more than 50 per cent increase in malware traffic over the last 6 months Business and public sector bodies continue to face an exponential growth in the volume and complexity of cyber attacks, with new research from BT identifying a more than 50 per cent increase in malware traffic over the last six months. Alongside a global shortage of skilled security professionals, organisations around the world are struggling to keep a lid on evolving cyber threats and maintain their defences. In response, BT is launching its most sophisticated cyber defence platform yet — Eagle-i. It combines BT's industry-leading network insight with advances in AI and automation to predict, detect and neutralise security threats before they get a chance to inflict damage. The platform has been designed to self-learn from the intelligence provided by each intervention, so that it constantly improves its threat knowledge and dynamically refines how it protects customers across a multi-cloud environment. Eagle-i will utilise an AI layer to provide real-time detection of issues and intelligent automated responses, enabling users to significantly speed up their reaction to security issues and outpace their cyber threats. It is also uniquely able to integrate with technologies from across the security ecosystem so that organisations can both optimise their capabilities and spot any holes in their defences without having to replace existing investments. The platform will underpin how BT protects its global operations and provide phased enhancements and increased functionalities for all BT's managed security services. Security is now at the top of the boardroom and government agenda yet many organisations are seeing their cyber risks increase to unmanageable levels. This situation demands a new, proactive approach. Eagle-i leverages the latest advances in AI and automation to continually monitor, learn and evolve so customers can stay a step ahead of cyber criminals. Kevin Brown, managing director, BT Security About BT BT Group is the UK's leading telecommunications and network provider and a leading provider of global communications services and solutions, serving customers in 180 countries. Its principal activities in the UK include the provision of fixed voice, mobile, broadband and TV (including Sport) and a range of products and services over converged fixed and mobile networks to consumer, business and public sector customers. For its global customers, BT provides managed services, security and network and IT infrastructure services to support their operations all over the world. BT consists of four customer-facing units: Consumer, Enterprise, Global and its wholly-owned subsidiary, Openreach, which provides access network services to over 650 communications provider customers who sell phone, broadband and Ethernet services to homes and businesses across the UK.

Read More

DATA SECURITY

Argus partners with Microsoft to provide Microsoft Azure IoT end-to-end Cyber Security Cloud solution for car manufacturers.

Argus | March 30, 2021

Argus Cyber Security, a global pioneer in the field of cyber automotive security, cooperated with Microsoft Azure IoT to help car manufacturers to track, identify, and mitigate cloud attacks. Argus Fleet Protection, an Automotive Security Operation Center (ASOC) solution, in-vehicle insights from Argus Connected ECU Protection, and update capability with Argus Software Updates Over-the-Air comprise the Argus cybersecurity package for automotive applications, which is combined with Azure IoT. (OTA). The complete end-to-end cloud solution is one of the first to provide car manufactures with on-board and off-board tracking for the cyber wellbeing of their fleet. This automotive collaboration allows car manufacturers better access to security-related in-vehicle information as well as extensive coverage of security incidents. Argus Connected ECU Protection detects operating system irregularities and unusual behavior in the vehicle using customer-defined hazard models and is implemented on connected ECUs such as telematics, infotainment centers, and ADAS systems. Threat models may be built on UNECE R 155 (WP.29), the MITRE Attack structure, or some other model that is selected. Vehicle warnings are sent to Argus Fleet Protection, where they are paired with information from other sources in dedicated automotive hazard hunting and investigation modules. Vehicle manufacturers will create a more reliable, all-encompassing cyber intelligence picture by combining end-to-end automotive cyber protection with Microsoft Azure IoT. Furthermore, using Argus Delta OTA update technologies, car manufactures will immediately incorporate security upgrades to minimize vulnerability to cyber threats while reducing vehicle downtimes and deployment costs. "We are thrilled to be joining the world's leading businesses on Microsoft Azure. It represents a significant step forward for vehicle manufacturers looking to minimize their exposure to cyber risk while still adhering to applicable requirements and regulations such as UNR 155 (WP.29) "said Miki Hakak, Argus Cyber Security's VP Marketing, and Business Development. "By collaborating with a global leader like Microsoft, we're making it easier for vehicle manufacturers to cost-effectively incorporate cyber protection into their vehicles without disrupting manufacturing cycles or project risk." "Cybersecurity is a critical component in the transition to connected and autonomous vehicles," said Avijit Sinha, Microsoft's general manager for Azure Mobility. "Argus offers robust and flexible tools to ensure security through a vehicle's diverse computing resources and networks, whether it's avoiding attacks on safety-critical functions or personal data theft. The partnership of Argus and Microsoft Azure IoT offers a roadmap for automakers aiming to achieve their target of stable connected and autonomous vehicles." ABOUT ARGUS CYBER SECURITY To secure connected cars and commercial vehicles from cyber-attacks, Argus, a world pioneer in automotive cyber protection, offers in-vehicle solutions, consulting services, and an automotive security operation center (ASOC). Customers include automakers, retailers, and fleet managers. Argus products and services, which are currently in development, assist in the prevention, tracking, and reaction to cyber threats on in-vehicle components, networks, and post-production fleets. Via a suite of customized advisory services that help incorporate data security standards and procedures into the whole product lifecycle, Argus professional services assist its clients in complying with applicable guidelines and regulations, such as UNECE R 155 (WP. 29). Argus' groundbreaking approaches and solutions are based on decades of cybersecurity and automotive research, which has resulted in more than 70 awarded and pending patents. Argus was founded in 2013 in Tel Aviv, Israel, and has offices in Michigan, Stuttgart, Tokyo, Shanghai, and Korea. Argus is a wholly-owned subsidiary of Elektrobit, a multinational supplier of automotive products and services.

Read More

Spotlight

With a growing threat landscape, widening attack surface, and the increasing sophistication of attacks, threat detection and response has become increasingly challenging for security teams. While multiple security solutions are deployed in most organizations, serious threats continue to avoid detection because data is collected