DATA SECURITY

CompTIA Launches Critical Cybersecurity Information Sharing and Analysis Organization in the U.K.

CompTIA | October 12, 2021

CompTIA Launches Critical Cybersecurity Information Sharing and Analysis Organization in the U.K.
CompTIA, the nonprofit association for the global information technology (IT) industry, today expanded the CompTIA ISAO (Information Sharing and Analysis Organization) to the United Kingdom to serve as the focal point for dealing with cyber-threats to technology vendors, MSPs, solution providers, integrators, distributors, and business technology consultants.

We are in a time of unprecedented and malicious hacking activity, much of which is targeted specifically at technology product, service and solution companies,CompTIA aims to improve the cybersecurity landscape in the U.K. by bringing together the know-how and power of the industry to deliver timely, relevant, actionable threat intelligence that companies can use to protect themselves and more importantly, to keep their customers safe and secure.

said MJ Shoer, senior vice president, executive director of the CompTIA ISAO

The CompTIA ISAO, which launched in the United States in 2020, currently has over 1,200 member companies and growing. Axcient, ConnectWise, Dark Cubed, Dell Technologies, and Sophos are Industry Partners of the CompTIA ISAO. The CompTIA ISAO is a member led initiative governed by three co-equal councils, the Executive Advisory Council, the MSP Champions Council and the SME (Subject Matter Expert) Champions Council representing all categories of CompTIA ISAO membership.

"In the current climate of cybercrime, one of the best ways to sharpen the industry's defences against today's cyberattacks, including ransomware, is through industry experts sharing threat intelligence. This move to launch the CompTIA ISAO in the UK will advance industry collaboration and innovation, and Sophos is proud to be a part of this effort," said James Wilson, product director, Sophos. "Having access to SophosLabs Intelix within the ISAO gives members easy and quick access to actionable, relevant threat intelligence from Sophos. Research from SophosLabs continually highlights how adversaries are constantly adapting their tactics, techniques and procedures (TTPs) to breach targets and carry out attacks and emphasises how essential it is for us to work together."

Additionally, innovative partnerships have been forged with the Information Technology-Information Sharing and Analysis Center (IT-ISAC) and  TruSTAR to build out the threat intelligence feed and custom reporting that will serve as the backbone of the CompTIA ISAO. This ensures that members will receive critical, targeted, real-time information in a way that's easy to understand and act upon.

"Raising the cybersecurity resilience of the global tech industry is important for everyone," Shoer explained. "This is how, together, we will fight back against this existential threat and do the right thing for our industry and the global economy."

The CompTIA ISAO is dedicated to advancing the cybersecurity resiliency of the global technology industry. It is a resource where organizations in the business of technology can share real-time threat intelligence, analysis of potential impacts, coordinated countermeasure response efforts, cybersecurity best-practice adoption, and workforce education.

In addition to the latest cybersecurity intelligence data, all CompTIA ISAO members will receive full access to CompTIA corporate member benefits, including all the resources, communities and tools designed to help a technology business thrive.

About CompTIA
The Computing Technology Industry Association (CompTIA) is a leading voice and advocate for the $5 trillion global information technology ecosystem; and the estimated 75 million industry and tech professionals who design, implement, manage, and safeguard the technology that powers the world's economy. Through education, training, certifications, advocacy, philanthropy, and market research, CompTIA is the hub for advancing the tech industry and its workforce.

Spotlight

SSL certificates are the industry standard for authentication and security. Depending on how you plan to use SSL certificates, multi-use certificates can provide greater flexibility than traditional certificates. Multi-use certificates protect multiple Fully Qualified Domain Names (FQDNs) and subdomains, which means they lower administrative costs and simplify certificate installation, management, and deployment. Download this white paper to discover how you can enable SSL on public or external facing servers.

Related News

DATA SECURITY

GBA to Launch Cyber Supply Chain Threat Mitigation Subsidiary

Global Business Alliance | July 19, 2021

The Global Business Alliance (GBA) has announced the launch of GBA Sentinel. It is a wholly-owned subsidiary that focused on assisting worldwide companies in identifying and addressing possible supply chain and cyber susceptibilities rapidly. Global companies know it is authoritative for the private sector to cooperate with federal agencies to confirm a safer atmosphere. Through GBA Sentinel, worldwide businesses can gain access to industry-leading supply chain risk management compliance tools of Fortress Information Security. Fortress exclusively delivers actionable risk visions on the supply chain ecosystem of resources and sellers, thereby allowing companies to alleviate their cybersecurity risks and assure controlling compliance logically. Today, Fortress secures the supply chains of dangerous infrastructure for more than 40 percent of the U.S. power grid. In addition, it works carefully with key federal agencies to improve their supply chain cyber flexibility. This inventiveness is a first for the Global Business Alliance, representing 200 of the major global companies operating in the US. About the Global Business Alliance The Global Business Alliance (GBA), as the premier voice of international companies in the United States, energetically encourages and protects an open economy that welcomes global companies to invest in America. Our associates are American companies with worldwide heritage and a crucial part of our nation's economic success. When America is open for business, we all take advantage of it.

Read More

DATA SECURITY

Balbix Extends Cyber Security Posture Automation to AWS

Balbix | November 02, 2021

Balbix, provider of the world's leading platform for cybersecurity posture automation, announced today the general availability of the Balbix Connector for AWS. As a result of the new offering, customers gain a comprehensive inventory of their assets spanning on-premises and cloud as well as the ability to discover, prioritize and mitigate unseen risks, including unpatched software vulnerabilities, weak credentials, missing or poor encryption, trust issues and cloud infrastructure misconfigurations. A surge in cloud adoption has made modern IT environments more complex and increased the enterprise attack surface. While gains have been made in cloud security, visibility remains siloed. Proactive cybersecurity tools are typically split into on-premises and cloud silos, making it extremely difficult to get a consolidated view into both environments. In addition, the ability to identify and address the most pressing risks requires the assistance of automation to successfully scale. Improved AWS Security Posture Management The new Connector for AWS provides support for the most popular AWS Cloud services including core services like Amazon Elastic Compute Cloud (Amazon EC2), Amazon Simple Storage Service (Amazon S3), and AWS Identity and Access Management (IAM); database and container services like Amazon Relational Database Service (Amazon RDS), and Amazon Elastic Kubernetes Service (Amazon EKS); and analytics services like Amazon OpenSearch Service. As a result, teams overseeing security of their AWS environments can: Get comprehensive visibility into cloud assets and accurately categorize them into compute, storage, network, and containers Discover exposure to common cloud attack vectors, especially misconfigurations – the most exploited attack vector for the cloud Measure risks in terms of the likelihood and monetary impact of them being exploited in order to prioritize risks for remediation and report on the overall security posture Visibility Across the Entire Network With the addition of the Connector for AWS, Balbix merges cloud and on-premises visibility in one view, eliminating the need for security practitioners to look through multiple dashboards and allowing them to work more productively. "With a significant portion of our IT infrastructure already running in AWS alongside a longer-term cloud-first strategy to migrate most workloads to the cloud, the addition of the Balbix Connector for AWS enables us to drive down risk comprehensively across our enterprise," said Nate Miller, Senior IT Manager, Global Cyber Security and IT Compliance at Cooper-Standard. "However, we know some critical IT infrastructure will remain on-premises. The unified visibility provided by Balbix is key to enable our cyber security teams to make the best decisions for the business and most efficiently minimize the risk of breach." Advanced Risk Analysis AWS data is analyzed using purpose-built AI algorithms to produce a comprehensive view of cyber-risk for organizational cloud assets, along with relevant context and recommended action items. Risk is measured in dollars, which provides a common language that organizations can use to prioritize projects, spending and track the effectiveness of their overall cybersecurity program. "Traditionally, cyber posture tools have been siloed, only offering views for cloud or on-premises, never both,We are excited to introduce the Balbix Connector for AWS to break down the siloed approach and offer AWS customers a holistic view of their overall corporate risk, along with new insights to manage security under the shared responsibility model." Gaurav Banga, CEO at Balbix About Balbix Balbix is the world's leading platform for cybersecurity posture automation. Using Balbix, organizations can discover, prioritize and mitigate unseen risks and vulnerabilities at high velocity. With seamless data collection and petabyte-scale analysis capabilities, Balbix is deployed and operational within hours, and helps to decrease breach risk immediately. Balbix counts many global 1000 companies among its rapidly growing customer base and was named a "Cool Vendor" by Gartner in 2018.

Read More

DATA SECURITY

AWS Marketplace Now Offers SafeGuard Cyber Digital Risk Protection

SafeGuard Cyber | May 03, 2021

SafeGuard Cyber, the SaaS stage devoted to dealing with the full lifecycle of digital danger protection, is pleased to report its availability on AWS Marketplace. Through its vast selection of programming applications, AWS Marketplace is home to an enormous base of big business-level cloud security purchasers. These clients would now be able to purchase the SafeGuard Cybersecurity solution straightforwardly from the AWS Marketplace and pay for the assistance through their incorporated Amazon Web Services (AWS) bill. SafeGuard Cyber's digital danger protection stage is intended to give remarkable perceivability and protection across more than 50 collaboration, portable visits, and online media channels. It ensures human connections that drive business in the digital world and makes it easier for ventures to get the progression of communication any place it exists. SafeGuard Cyber's SaaS stage conveys a solitary solution to distinguish, shield, and forestall cybersecurity assaults and alleviate compliance chances in corporate communications. Endeavors that purchase SafeGuard Cyber through AWS Marketplace gain admittance to the stage's high-level AI that secures against account compromise, spear-phishing, malware, and critical data loss on these channels, as well as providing information governance and compliance. "With businesses receiving new collaboration, communication, and talk stages, the border-based way to deal with information security is not, at this point enough. These channels have become an arising way for agitators hoping to abuse unstable digital communications," said SafeGuard Cyber VP of Strategic Partnerships, Karen Kukoda. "SafeGuard Cyber's relationship with AWS Marketplace ensures our joint clients through phenomenal admittance to security and compliance across many business-critical clouds and digital channels." AWS Marketplace clients can contact SafeGuard Cyber to recognize use cases that fit their digital communication channels and to demand a demo. SafeGuard Cyber remains 100% focused on the channel. Clients can purchase programming solutions straightforwardly from their accomplice of the decision in the AWS Marketplace through Consulting Partner Private Offers (CPPO). About SafeGuard Cyber SafeGuard Cyber ensures the human connections organizations need to flourish in a digital world. The cloud-local SafeGuard stage engages the safe and agreeable adoption of social, versatile, and cloud-based communication channels at the size of worldwide business. Based on inventive agentless engineering and grant-winning AI analytics, the SafeGuard stage gets business-critical communications, distinguishes and stops cyber threats, and guarantees compliance progressively without disruption to normal work processes. With SafeGuard, clients gain business deftness with better security and time to esteem. Current clients incorporate Global100 endeavors, private ventures, municipalities, and national governments.

Read More

Spotlight

SSL certificates are the industry standard for authentication and security. Depending on how you plan to use SSL certificates, multi-use certificates can provide greater flexibility than traditional certificates. Multi-use certificates protect multiple Fully Qualified Domain Names (FQDNs) and subdomains, which means they lower administrative costs and simplify certificate installation, management, and deployment. Download this white paper to discover how you can enable SSL on public or external facing servers.