SECURITY AUDIT AND COMPLIANCE, WIRELESS AND MOBILE SECURITY
Forescout Technologies Inc. | March 02, 2023
On March 1, 2023, Forescout Technologies, a leading automated cybersecurity solutions provider, launched Forescout XDR to enhance enterprises' investigation, detection, and response capabilities against advanced threats across their extended enterprises.
Currently, security operation centers (SOCs) are inundated with an average of 450 alerts per hour, and analysts often spend precious time correlating low-fidelity alerts and chasing false positives. Forescout XDR uses data science and automation to generate a single high-fidelity alert every hour from 50 million logs ingested, reducing the number of alerts that warrant further investigation and thus enabling analysts to focus on legitimate attacks.
Forescout XDR is vendor- and EDR-agnostic and collects data from over 170 sources, including security, cloud/SaaS infrastructure and enrichment sources, as well as dozens of leading vendors.
Forescout XDR contains over 70 threat information sources and 1500 confirmed detection rules and models. With data onboarding included, customers may become operational in hours, actively identifying, investigating, and responding to risks.
SOCs till now have excluded critical devices that are increasingly common points of attack, such as industrial control systems (ICS), operational technology (OT), building management systems (BMS), and IoT and medical devices. Furthermore, the technological stack on which SecOps teams have been forced to rely has made it impossible to respond to these threats promptly and thoroughly.
The technology integration with Forescout's network access control solution facilitates proactive prevention of attacks by reducing the attack surface through restriction of compromised or non-compliant devices from connecting to their networks and automating response workflows that can immediately touch every connected device throughout the enterprise. Thus helping reduce the blast radius of an attack in real-time, allowing proper mitigation or remediation measures to be completed.
Forescout XDR includes a multi-tenant architecture and supports local data storage while also providing an aggregated global view of threats and SOC performance. It is ideal for large firms, global corporations, and organizations with regional managed security service providers (MSSPs) and SOCs.
The SaaS licensing pricing model is based on the total amount of endpoints in the enterprise, offering customers the flexibility to leverage the data sources they need to support their use cases without concern for fluctuating costs associated with cloud log storage.
About Forescout Technologies Inc.
Forescout Technologies, Inc. protects the Enterprise of Things through comprehensive identification, segmentation, and enforcement of compliance with every connected device. The company's enterprise-class platform has been widely deployed across managed and unmanaged IT, IoT, and OT devices, making it a trusted choice for Fortune 1000 companies. Forescout provides organizations with the most extensive device intelligence in the world, enabling them to classify risks precisely, detect irregularities, and promptly remediate cyber threats without harming essential business assets.
Read More
DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY
1Password | March 09, 2023
1Password, the frontrunner in human-centric security and privacy, recently announced the launch of Unlock with Single Sign-On (SSO). Now, enterprise customers can unlock their 1Password accounts using Okta with Duo and Azure AD to follow in the coming months. With deeper integrations into existing IT workflows, Unlock with SSO enables IT teams to improve their security posture while minimizing the everyday difficulties and stress associated with employee logins.
Steve Won, Chief Product Officer at 1Password, said, "Securing employees at scale is no small task. At 1Password, we believe that the foundation of enterprise security is secure employees, and we're driven by the principle that the safe thing must be easy by default." He added, "SSO plays a central role in enterprise security. Unlock with SSO was designed with a trusted device model, so that even if a user's identity provider credentials are compromised, 1Password ensures attackers won't be able to access customers' vault."
(Source – Cision PR Newswrie)
In a Total Economic Impact (TEI) study commissioned and published by 1Password, Forrester Consulting revealed that a composite organization comprised of companies with experience using 1Password experienced a 206% return on investment (ROI) and a benefit of $1.3 million over three years. Unlock with SSO enhances employee and IT efficiency and productivity, where the return on investment is most evident.
Unlock with SSO is intended to integrate with existing workflows and assist organizations in securing their employees across any authentication process of their choosing. Fully integrated solutions, such as 1Password, consolidate authentication in a single location to complete the security architecture of a company.
About 1Password
Founded in 2005, 1Password is the market leader in human-centric security and privacy to keep people safe at work and at home. Its solution is designed from the ground up to enable everyone, regardless of their degree of technical expertise, to traverse the digital world without fear or difficulty. 1Password safeguards the most sensitive data of millions of individuals and families worldwide, enabling consumers and companies to accomplish more in less time – with security and privacy as a guarantee. The company's award-winning credentials management security technology is reshaping the face of authentication and is trusted by over 100,000 organizations, including IBM, Slack, Shopify, Snowflake, and Under Armour.
Read More
DATA SECURITY
Orca Security | February 22, 2023
On February 21, 2023, Orca Security, a leader in agentless cloud security, announced the addition of ThreatOptix's agent-based runtime protection and enforcement to its Orca Cloud Security Platform. The new capability expands Orca's industry leadership by offering customers a choice in how they secure their cloud-native applications, including virtual machines, containers, and Kubernetes applications. While remaining committed to agentless security, Orca's latest offering strengthens its comprehensive coverage and visibility across the cloud estate.
Cloud Security Platform's runtime detection and enforcement will be enhanced by new capabilities from ThreatOptix, which provides comprehensive Linux security focusing on cloud workload protection with its technology. Through a strategic partnership with ThreatOptix, all agent deployments, policy management, and data will be seamlessly integrated into the Orca Platform and offered as a single platform.
When it comes to securing modern workloads, security teams face numerous obstacles, such as compliance monitoring, vulnerability management, and advanced threat detection and prevention. Orca's sole focus has been delivering superior agentless capabilities to tackle these problems. However, there are specific mission-critical applications for which enterprises may need an agent for advanced runtime protection and enforcement.
With the completion of this integration, Orca Cloud Security Platform users will be able to quickly manage and deploy the ThreatOptix agent as well as customize policies from the Orca UI. In addition, all agent-based runtime telemetry will be completely accessible within the Orca Unified Data Model to facilitate usability. The integrated solution will be accessible in this year's second half.
Avi Shua, Orca Security's CEO and Co-Founder said, "At Orca Security, we have a mission to continually innovate cloud security and push the limits of what's possible to be your key partner for securing the entirety of your cloud environments now and in the future." He added, "As we expand our Cloud Security Platform, we are strategically partnering with ThreatOptix due to their core focus on delivering runtime protection and enforcement for cloud-native applications."
(Source – Business Wire)
About Orca Security
Oregon-based Orca Security is a globally trusted enterprise specializing in agentless cloud security solutions. Its Unified Data Model and patented SideScanning™ technology enable enterprises to move and scale confidently in the cloud. The Orca Cloud Security Platform provides comprehensive coverage and visibility of all cloud-related risks, making it the industry leader in identifying, prioritizing, and remediating security risks and compliance issues across AWS, Azure, Google Cloud, and Kubernetes. With continuous first-to-market innovations and expertise, Orca ensures security teams can quickly identify and mitigate risks to keep businesses secure.
Read More