SOFTWARE SECURITY

Atos to acquire In Fidem to strengthen its position in the North American market in cybersecurity

prnewswire | January 12, 2021

Atos to acquire In Fidem to strengthen its position in the North American market in cybersecurity
Atos today reports that it has consented to an arrangement to gain In Fidem, a Canada-based particular online protection counseling firm. This obtaining will fortify Atos' situation as the #3 overall network protection administrations leader1 and specifically improve its North America network safety administrations abilities by carrying experienced advisors to the Atos group.

Reliable with its focused on procurement system, the activity will extend Atos' customer portfolio and set up skill in online protection administrations in Canada. Established in 2005 and settled in Montréal with workplaces in Québec City and Ottawa, In Fidem has skill in cloud security, computerized personality, hazard the executives, security tasks, advanced criminology and digital penetrate reaction. It is a main part in the Canadian market and has a demonstrated history of effectively tending to enormous private and public associations' advanced security challenges. In Fidem will bring its organization of in excess of 100 profoundly gifted experts to the Atos online protection group.

"This acquisition reinforces our position in a fast-growing cybersecurity market and is a key addition to our current cybersecurity business in North America. In Fidem's strong long-standing client relationships will bring added value to our teams. We're excited to unite our expertise with that of In Fidem and see many synergies between our teams and business approach," said Pierre Barnabé, Senior Executive Vice-President, Head of Big Data & Cybersecurity at Atos.

"This strategic move will enable our customers to benefit from Atos' extensive expertise, global presence and its leading rankings in Managed Security Services. We're convinced that the combined capabilities of our portfolio and expertise with that of Atos' will bring added value to our clients. We look forward to the next steps in our journey together," said Matthieu Chouinard, CEO of In Fidem.

The closing of the transaction is expected to take place in Q1 2021.

About Atos

Atos is a global leader in digital transformation with 110,000 employees and annual revenue of € 12 billion. European number one in cybersecurity, cloud and high-performance computing, the group provides tailored end-to-end solutions for all industries in 73 countries. A pioneer in decarbonization services and products, Atos is committed to a secure and decarbonized digital for its clients. Atos operates under the brands Atos and Atos|Syntel. Atos is a SE (Societas Europaea), listed on the CAC40 Paris stock index.

The purpose of Atos is to help design the future of the information space. Its expertise and services support the development of knowledge, education and research in a multicultural approach and contribute to the development of scientific and technological excellence. Across the world, the group enables its customers and employees, and members of societies at large to live, work and develop sustainably, in a safe and secure information space.

Spotlight

The Dell EMC VxRail™ hyperconverged infrastructure appliance provides the foundation for a resilient, adaptive cybersecurity strategy. According to Risk Based Security, a security analytics company, more than 5,000 publicly-disclosed data breaches occurred in 2017, with nearly 8 billion records exposed. Governing bodies around the world are implementing sweeping regulations to force enterprises to be accountable for protecting customer data on their systems.

Spotlight

The Dell EMC VxRail™ hyperconverged infrastructure appliance provides the foundation for a resilient, adaptive cybersecurity strategy. According to Risk Based Security, a security analytics company, more than 5,000 publicly-disclosed data breaches occurred in 2017, with nearly 8 billion records exposed. Governing bodies around the world are implementing sweeping regulations to force enterprises to be accountable for protecting customer data on their systems.

Related News

DATA SECURITY

CyberMDX announces a partnership to integrate CyberMDX into newly announced integrated cybersecurity services with Philips

prnewswire | November 30, 2020

CyberMDX, a main medical care cybersecurity supplier conveying perceivability and danger anticipation for clinical gadgets and clinical organizations, today reported an association Royal Philips, a worldwide pioneer in wellbeing innovation, to incorporate CyberMDX's Healthcare Security Suite into the recently presented coordinated Cybersecurity Services offered by Philips. The expansion of millions of associated clinical gadgets permits clients and organizations to share, search, explore, oversee, think about, and break down a basically boundless progression of information that improves care results. Guaranteeing the security and protection of these frameworks and related information, notwithstanding, requires an exhaustive danger based cybersecurity program. Made as a stage for organization with medical care clients, the Philips Cybersecurity Services help characterize and actualize key and strategic programming and gadget insurance. As a feature of the association, Philips' clients will access CyberMDX's driving administrations including the organization's planning and assessment abilities, clinical gadget hazard appraisal, security prioritization, danger recognition and knowledge, interruption avoidance, consistence and administration, and related help. The information and experiences gathered through CyberMDX structure a center establishment for advancement and execution of a full cybersecurity plan for Philips' clients. "The size and complexity of modern healthcare networks necessitates a robust multi-tiered security approach," said Amir Magner CEO of CyberMDX. "Protecting the integrity of our medical devices so that our healthcare professionals can continue to provide their lifesaving services is our primary mission at CyberMDX and we believe that our partnership with Philips will be a tremendous asset towards furthering that goal." "Philips is pleased to work with CyberMDX to provide health technology customers with vendor-neutral solutions to protect connected medical systems and devices," said Conrad Smits, Head of Global Services and Solutions at Philips. "We look forward to offering integrated services to secure and protect technologies that have the promise to transform healthcare." About CyberMDX CyberMDX is an IOT security leader dedicated to protecting the quality care of health delivery worldwide. CyberMDX provides cloud-based cybersecurity solutions that support the advancement of The Internet of Medical Things. The CyberMDX solution identifies endpoints and assesses vulnerabilities to detect, respond to, and prevent cyber incidents. Deployed worldwide, CyberMDX is designed to integrate with our customers' existing environments through its scalable, easy-to-deploy and agentless solution.

Read More

DATA SECURITY

Vectra AI Reveals Cybersecurity Blind Spots in PaaS and IaaS Environments with Security Survey

Vectra AI | August 06, 2021

Vectra AI, a leader in threat detection and response, today released the findings of the PaaS & IaaS Security Survey Report. The report compiled the answers of 317 IT executives all using AWS, 70% coming from organizations of 1,000+ employees. The findings show a rapid expansion and reliance on AWS services while simultaneously showcasing security blind spots within many organizations. As digital transformation efforts continue, the survey found that AWS is becoming an even more critical component to organizations who are regularly deploying new workloads, leveraging deployments in multiple regions and are relying on more than one AWS service. The survey found: 64% of DevOps respondents are deploying new workload services weekly or even more frequently 78% of organizations are running AWS across multiple regions (40% in at least three) 71% of respondents say that they are using more than four AWS services (such as S3, EC2, IAM, etc.) The expansion of AWS services has naturally led to increased complexity and risk with 100% of companies surveyed having experienced at least one security incident in their public cloud environment. Gartner anticipated that over 99% of cloud breaches will have a root cause of customer misconfiguration. Some blind spots the Vectra report uncovered include: 30% of organizations surveyed have no formal sign-off before pushing to production 40% of respondents say they do not have a DevSecOps workflow 71% of organizations say that 10 or more people can modify the entire infrastructure in their AWS environments, creating numerous attack vectors for hackers. Despite these blind spots, the survey showed that companies are taking security seriously. Over half of the companies reported having double-digit security operations center (SOC) headcounts, showing a significant investment in keeping their organizations secure. "Securing the cloud with confidence is nearly impossible due to its ever-changing nature," said Matt Pieklik, Senior Consulting Analyst at Vectra. "To address this, companies need to limit the number of attack vectors malicious actors are able to take. This means creating formal sign-off processes, creating DevSecOps workflows and limiting the number of people that have access to their entire infrastructure as much as possible. Ultimately, companies need to provide security holistically, across regions and automate as many activities as possible to enhance their effectiveness." Vectra has answered this industry need through the creation of Detect for AWS which reduces risk of cloud services being exploited, detects threats against AWS services, and automatically responds to attacks against applications running in AWS. To learn more about the threats facing today's organizations you can download the full Paas & IaaS Security Survey Report or read our companion blog. About Vectra Vectra is the leader in threat detection and response – from cloud and data center workloads to user and IoT devices. Its Cognito® platform accelerates threat detection and investigation using AI to enrich network metadata it collects and stores with the right context to detect, hunt and investigate known and unknown threats in real time. Vectra offers four applications on the Cognito platform to address high-priority use cases. Cognito Stream™ sends security-enriched metadata to data lakes and SIEMs. Cognito Recall™ is a cloud-based application to store and investigate threats in enriched metadata. Cognito Detect™ uses AI to reveal and prioritize hidden and unknown attackers at speed. And Cognito Detect for Office 365 and Azure AD™ finds and stops attacks in enterprise SaaS applications and the Microsoft 365 ecosystem.

Read More

CISA Releases First of Its Series of Six Cybersecurity Essentials Toolkits

CISA | June 02, 2020

This is a starting point for small businesses and government agencies to understand and address cybersecurity risk as they do other risks, CISA’s toolkits will provide greater detail. Improve cybersecurity practices, the six cyber essentials toolkits will also include a list of actionable items for interested parties to take to reduce cybersecurity risks. Today’s launch highlights the first “Essential Element: Yourself, The Leader” and will be followed each month by a new toolkit. As a follow-up to the November 2019 release of Cyber Essentials, the Cybersecurity and Infrastructure Security Agency (CISA) released the first in a series of six Cyber Essentials Toolkits. This is a starting point for small businesses and government agencies to understand and address cybersecurity risk as they do other risks. CISA’s toolkits will provide greater detail, insight and resources on each of the Cyber Essentials’ six “Essential Elements” of a Culture of Cyber Readiness. Today’s launch highlights the first “Essential Element: Yourself, The Leader” and will be followed each month by a new toolkit to correspond with each of the six “Essential Elements.” Toolkit 1 focuses on the role of leadership in forging a culture of cyber readiness in their organization with an emphasis on strategy and investment. We thank all of our partners in government and the private sector who played an essential role in the development of CISA’s Cyber Essentials Toolkit, said CISA Director Christopher Krebs. “We hope this toolkit, and the ones we are developing, fills gaps and provides executives the tools they need to raise the cybersecurity baseline of their teams and the organizations they lead.” Developed in collaboration with small businesses and state and local governments, Cyber Essentials aims to equip smaller organizations that historically have not been a part of the national dialogue on cybersecurity with basic steps and resources to improve their cybersecurity. Cyber Essentials includes two parts – guiding principles for leaders to develop a culture of security, and specific actions for leaders and their IT professionals to put that culture into action. Read more: MICROSOFT: MASSIVE COVID-19 THEMED PHISHING CAMPAIGN UNDERWAY TO GAIN REMOTE ACCESS We thank all of our partners in government and the private sector who played an essential role in the development of CISA’s Cyber Essentials Toolkit . ~ said CISA Director Christopher Krebs. Each of the six Cyber Essentials includes a list of actionable items anyone can take to reduce cyber risks. These are: Drive cybersecurity strategy, investment, and culture; Develop heightened level of security awareness and vigilance; Protect critical assets and applications; Ensure only those who belong on your digital workplace have access; Make backups and avoid loss of info critical to operations; and Limit damage and restore normal operations quickly. Cyberspace and its underlying infrastructure are vulnerable to a wide range of risk stemming from both physical and cyber threats and hazards. Sophisticated cyber actors and nation-states exploit vulnerabilities to steal information and money and are developing capabilities to disrupt, destroy, or threaten the delivery of essential services. We hope this toolkit, and the ones we are developing, fills gaps and provides executives the tools they need to raise the cybersecurity baseline of their teams and the organizations they lead. This landmark legislation elevates the mission of the former National Protection and Programs Directorate (NPPD) within DHS and establishes the Cybersecurity and Infrastructure Security Agency (CISA). CISA builds the national capacity to defend against cyber attacks and works with the federal government to provide cybersecurity tools, incident response services and assessment capabilities to safeguard the ‘.gov’ networks that support the essential operations of partner departments and agencies. In recognition of the importance of governance in addressing cyber risks, the Cybersecurity and Infrastructure Security Agency's (CISA) Cybersecurity Division and the National Association of State Chief Information Officers (NASCIO) partnered to develop a State Cybersecurity Governance Report and series of State Cybersecurity Governance Case Studies exploring how states govern cybersecurity. The Cyber Essentials Toolkit is a set of modules designed to break down the CISA Cyber Essentials into bite-sized actions for IT and C-suite leadership to work toward full implementation of each Cyber Essential. Each chapter focuses on recommended actions to build cyber readiness into the six interrelated aspects of an organizational culture of cyber readiness. This page will be updated as new Toolkit chapters are published. The report and case studies identify how states have used laws, policies, structures, and processes to help better govern cybersecurity as an enterprise-wide strategic issue across state governments and other public and private sector stakeholders. According to over 1,700 IT service providers, the lack of cybersecurity awareness amongst employees is a leading cause of a successful ransomware attack against an SMB. Read more: COVID-19 PANDEMIC MOVES ORGANIZATIONS TO INCREASE CYBERSECURITY SPENDING

Read More