Cloud Security
Cisco | September 15, 2023
Cisco Secure Application, new to the Cisco Full-Stack Observability Platform, brings application and security teams together to secure cloud-native application development and deployment.
The platform integrates Cisco's industry-leading security products' security intelligence with application performance data to provide business context with security findings.
Cisco-exclusive business risk observability enables IT professionals to identify, assess, and prioritize risk and fix application security concerns based on potential business impact.
Cisco, a worldwide technology leader that offers innovative software-defined networking, cloud, and security solutions, has unveiled the availability of the Cisco Secure Application, formerly known as Security Insights for Cloud Native Application Observability, on the Cisco Full-Stack Observability platform. This integration empowers organizations to seamlessly unite their application and security teams, facilitating the secure development and deployment of modern applications. The latest release of Cisco Secure Application extends its capabilities to securely manage both cloud-native and hybrid applications.
In an effort to assist organizations in bolstering their cloud-native applications security, Cisco has introduced the new Cisco Secure Application offering, which is available on Cisco's recently introduced Full-Stack Observability platform. This solution equips customers with enhanced visibility and intelligent insights regarding business risk in various cloud environments.
As a result, businesses gain the ability to more effectively prioritize and respond to security risks that could impact revenue and reputation in real time, leading to a reduction in overall organizational risk profiles.
As organizations strive to provide smooth digital experiences, IT teams have faced growing demands to transition to modern, distributed applications.
According to a recent study by Cisco, 92% of global technologists acknowledge that the urgency to innovate and adapt to evolving customer needs has often resulted in compromised application security during software development.
As a consequence, organizations have become susceptible to security vulnerabilities and threats. They face broader attack surfaces and gaps in their application security layer due to the isolation of teams. These teams face challenges in obtaining adequate visibility and the necessary business context for prioritizing vulnerabilities. Consequently, organizations are witnessing a surge in security incidents within the modern environment, thereby jeopardizing customer data and the reputation of their businesses.
Mark Leary, Research Director, IDC, stated,
Cisco's extensive domain experience across multi-cloud and hybrid environments and comprehensive full tech stack oversight positions the company well to assist customers bring business risk observability, application observability, and security intelligence data together. Combined, they give customers access to the critical information they need to make smarter decisions about their application security
[Source – Cision PR Newswire]
Senior VP and General Manager of Cisco Full-Stack Observability and AppDynamics, Ronak Desai, said,
An organization's ability to swiftly assess risks based on potential business impact, align teams and triage threats is entirely dependent on understanding where vulnerabilities exist, the severity of those risks, the likelihood they’ll be exploited, and the risk to the business of each issue. This business risk observability can enable IT professionals understand and prioritize those risks and is uniquely delivered by Cisco. The availability of Cisco Secure Application on the Cisco Full-Stack Observability platform is a crucial next step in our commitment to providing customers with the tools they need to provide unmatched and secure digital experiences across multi-cloud and hybrid environments.
[Source – Cision PR Newswire]
Read More
Software Security
PR Newswire | October 23, 2023
BlackBerry Limited (NYSE: BB; TSX: BB) today announced its new Generative AI powered assistant for Security Operations Center (SOC) teams. The enterprise-grade solution acts as a SOC Analyst providing Generative AI based cyberthreat analysis and support to enhance CISO operations. It leverages private large language models (LLMs) for greater accuracy and data privacy.
The solution, which will be available to BlackBerry's Cylance AI customers, predicts customer needs to proactively provide information rather than requiring users to manually ask questions and compresses research hours into seconds. Fully integrated in the Cylance Console, it produces a natural workflow instead of an inefficient chatbot experience. Cylance launched as the industry's first AI cybersecurity solution and the industry's first predictive cybersecurity solution. Predictive cybersecurity is a must for emerging cyber risks and seen as the future of cybersecurity.
BlackBerry pioneered the AI cybersecurity market and our commitment to innovation means we are once again at the forefront of the industry as we unveil our Generative AI powered cybersecurity assistant, said Nathan Jenniges, SVP & GM Spark, Cybersecurity Business Unit, BlackBerry. This new solution will enable our customers to modernize their SOC operations helping them to stay a step ahead of the adversary. It will be invaluable to CISOs in overcoming the challenges they face, including an evolving threat landscape and resource constraints.
BlackBerry has delivered transformative innovation for almost forty years and continues to set a standard in the technology industry. In the field of AI this is evidenced by the company today having more than five times the AI/ML patents than competitors and AI being integrated across the company's product portfolio. Furthermore, BlackBerry earlier this month was one of the first signatories of Canada's voluntary Code of Conduct on the responsible development and management of advanced Generative AI systems.
"Generative AI has the potential to deliver tremendous economic value, making it an area of focus for BlackBerry. Our patent portfolio already includes Generative AI," said Charles Eagan, Chief Technology Officer, BlackBerry. "Throughout our innovations we take our commitment to delivering enterprise-grade solutions seriously – innovations that deliver value rather than react to hype – as demonstrated by today's announcement and our being one of the first signatories of Canada's voluntary Generative AI Code of Conduct."
BlackBerry's Generative AI powered cybersecurity assistant will initially be made available to a select group of customers.
For more information register for BlackBerry Summit, taking place on October 17, where leaders from government, enterprise and BlackBerry will reveal the future of IoT, IT and Cybersecurity and showcase the latest BlackBerry innovations.
Read More
Software Security
Okta | October 09, 2023
Okta, Inc. announces Identity Threat Protection with Okta AI, a new product for Okta Workforce Identity Cloud.
It enables security teams and admins to constantly evaluate user risk during active sessions and respond automatically to Identity threats across the entire ecosystem.
Identity Threat Protection enables organizations to mitigate risk with enhanced threat detection and response capabilities.
Okta, Inc., the leading independent Identity partner, has introduced Identity Threat Protection with Okta AI, a revolutionary product within the Okta Workforce Identity Cloud. This innovative solution provides identity-based threat detection and mitigation in real-time. Identity Threat Protection goes beyond initial authentication by employing Okta AI and security infrastructure insights. It assures continuous user risk assessment during active sessions and enables automatic responses to Identity threats across the entire ecosystem.
Organizations are increasingly adopting diverse cybersecurity tools to counter evolving threats. However, this leads to a flood of detailed security data, making it daunting for administrators to set up efficient policies and identify crucial threats. This fragmentation makes it challenging to track the risk of any specific user session over time and requires navigating various consoles.
Okta stands out with its unified Identity deployment, offering a unique ability to evaluate risks across security domains and active user sessions. This innovative strategy solves a crucial business challenge as, according to Gartner, "By 2025, organizations that adopt a continuous adaptive trust strategy will reduce [account takeover] along with other identity risks by 30%..."
President and CDO of Workforce Identity Cloud at Okta, Sagnik Nandy, said,
Organizations need the ability to not only bring together risk insights at the point of login, but also to re-evaluate at any point in a user’s session. Identity Threat Protection extends Okta’s adaptive risk analysis and delivers automatic remediation and response, assisting businesses stop potential threats in real-time.
[Source – Business Wire]
Multi-factor authentication (MFA) is a vital tool in combating identity-based attacks. However, its effectiveness typically extends only to the login stage. Using shared signals throughout a user's active session, Identity Threat Protection equips organizations with enhanced threat detection and response capabilities, thereby mitigating risk. Initial launch capabilities include:
Continuous Risk Evaluation
Shared Signals Pipeline
Adaptive Actions
CIO at Palo Alto Networks, Meerah Rajavel, said,
Our world-class threat intelligence innovations assist secure enterprises against evolving attack methods. Partnering with Okta’s Identity Threat Protection is a great opportunity to further empower enterprises with security signal sharing, assisting them to better detect changes in user risk across their tech stack.
[Source – Business Wire]
Read More