DATA SECURITY, SOFTWARE SECURITY, WEB SECURITY TOOLS

Interos Enhances Industry-First Operational Resilience Score

Interos Inc | March 10, 2023 | Read time : 04:00 min

Interos Enhances Industry-First Operational Resilience Score

On March 9, 2023, Interos, one of the leading operational resilience companies creating the world's strongest, safest, and most secure supply chains, announced the introduction of its upgraded cyber risk factor, a part of its i-ScoreTM measurement of operational resilience.

The Interos i-Score is the first of its kind resilience score that assesses the health of extended supply chains against multiple risk factors, such as restriction, financial, geopolitical, operations/catastrophe, ESG, and cyber.

The i-Score update includes an innovative cyber behavior model to detect potentially harmful cyber activity irrespective of public disclosure, commercial cyber ratings, threat assessment (Mitre ATT&CK®), vulnerability information (CVEs), regulatory compliance, cyber events, and operating country issues into a single score.

This advancement directs cyber risk and procurement managers to their multi-tiered vendors most exposed to ransomware, breaches, data leakage, and other cyber-attacks carried out by malicious attackers who target suppliers concealed in the extended global supply chain. Interos's 2022 Resilience study of 1,500 cybersecurity and procurement leaders found that cyber incidents cause supply chain disruptions that cost businesses $37M each year.

Andrea Little Limbago, SVP, Research & Analysis, Interos, said, "This is another crucial step forward in helping organizations achieve operational resilience." She further mentioned, "We've added new, proprietary models that integrate and assess data on cloud-based risk exposure, evaluate anomalous cyber behavior, measure regulatory compliance risks and more. It's designed to deliver better and faster information to CPOs partnering with CISOs — who are increasingly being held accountable for collective cyber resilience — to respond to more frequent and severe supply chain cyberattacks, with enhanced monitoring of vendors and third-party service providers."

(Source – Cision PR Newswire)

About Interos Inc

Founded in 2005, Interos is one of the leading operational resilience companies. The company's first-of-its-kind scoring and relationship discovery technologies automate evaluation, detection, and response to risks. As the only operational resilience platform in the world, it protects customers from unethical labor, regulatory violations, cyberattacks, disasters, bankruptcy, and other supplier vulnerabilities. Interos is based in Washington, DC, and has clients all over the world, including NASA, the U.S. Department of Defense, and a number of Global Fortune 500 companies.

Spotlight

Discover What Makes an ASM Program Successful Cloud and remote work have not only revolutionized the way business is done, but they have irrevocably changed attack surfaces. Assets move, change and appear constantly, and this dynamic nature means traditional manual asset inventory processes simply cannot keep up. The modern atta

Spotlight

Discover What Makes an ASM Program Successful Cloud and remote work have not only revolutionized the way business is done, but they have irrevocably changed attack surfaces. Assets move, change and appear constantly, and this dynamic nature means traditional manual asset inventory processes simply cannot keep up. The modern atta

Related News

DATA SECURITY, ENTERPRISE SECURITY, PLATFORM SECURITY

BlueVoyant Enhances its Cloud-Native Splunk Managed Detection & Response (MDR), Consulting, and Implementation Services

BlueVoyant | March 20, 2023

BlueVoyant, a cybersecurity company that illuminates, validates, and remediates internal and external risks in one platform, announced enhanced Splunk capabilities, with end-to-end consulting, implementation, and Managed Detection & Response (MDR) services. With the increasing adoption of cloud technologies, organizations face a complex and rapidly evolving threat landscape. The service helps clients maximize their Splunk investment whether it be on the Splunk Cloud Platform or Splunk Enterprise. "Splunk Your Way with BlueVoyant enables our clients to have industry-leading consulting, implementation, and cyber defense in a cost-effective manner," said Drew Gibson, BlueVoyant senior director for the company's Splunk Alliance. "BlueVoyant has a strong relationship with Splunk, and is known for its dynamic expertise in the company's products, helping our joint clients have greater control and visibility of their data usage and security posture." Key components of Splunk Your Way with BlueVoyant include: Enabling clients to collect, monitor, and analyze security data across on-premise, hybrid, and multi-cloud environments in a single platform Cloud-native SIEM (security information and event management) with real-time visibility to identify security threats and remediate them quickly Clients can reduce their data burden by 20% or more with a proprietary Data Readiness model that improves data quality and reduces costs Onboarding within a month for Existing Splunk users to quickly see the benefits of BlueVoyant Continuously improving client's Splunk instance by using faster security content delivery, and parity between different SIEM and EDR (endpoint detection and response) tools Availability of numerous bundles of workshops, retainers, and MDR services to help clients optimize, implement, manage, and monitor and protect their Splunk instance "BlueVoyant has the strength of our MDR for Splunk which we launched in 2021, aided by the expertise of thousands of Splunk deployments by our Concanon Professional Services division to provide a compelling service which helps the client get the most their Splunk investment, whether Splunk is installed 'on-prem' or via Splunk Cloud," said Michael Cormier, managing director for Concanon, a BlueVoyant company. BlueVoyant acquired Conanon in fall 2021 to enhance its end-to-end Splunk platform capabilities. Splunk recognized BlueVoyant as a key MSP (managed service provider) partner with the new Premier Manage designation. BlueVoyant also earned core competency badges for Cloud Migration and Cloud Migration: Co-Delivery. The company has 200 active Splunk certifications. In 2022, BlueVoyant expanded its Splunk go-to-market by including its offerings on the Amazon Web Services (AWS) Marketplace. BlueVoyant is hosting a webinar at 1 p.m. EDT Thursday, April 13 to discuss what the company has learned from our Splunk deployments and clients, and to answer questions. Current clients, security professionals, and other parties are encouraged to attend. About BlueVoyant BlueVoyant combines internal and external cyber defense capabilities into an outcomes-based cloud-native platform by continuously monitoring your network, endpoints, attack surface, and supply chain, as well as the clear, deep, and dark web for threats. The full-spectrum cyber defense platform illuminates, validates, and quickly remediates threats to protect your enterprise. BlueVoyant leverages both machine-learning-driven automation and human-led expertise to deliver industry-leading cybersecurity to more than 900 clients across the globe.

Read More

DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY

Skyflow launches Skyflow GPT Privacy Vault

Businesswire | May 22, 2023

Today, Skyflow, the data privacy vault company, unveiled Skyflow GPT Privacy Vault, a robust privacy solution that enables organizations to safely and securely leverage the full power of large language models such as GPT. Companies are rushing to adopt AI, whether to increase productivity, enhance decision-making powered by data-driven insights, or to improve customer experience. However, privacy concerns hinder organizations from fully embracing AI. The Skyflow GPT Privacy Vault can provide enterprises with unparalleled data protection throughout the entire lifecycle of GPT models, and offers a comprehensive range of features tailored to meet the evolving needs of enterprises: Data Privacy and Security: Skyflow GPT Privacy Vault establishes a secure environment for sensitive data, protecting it from unauthorized access, breaches, and data leaks. Granular Data Control: Organizations can maintain strict control over sensitive data, ensuring that only authorized individuals or entities can access specific data sets or functionalities within GPT systems. Privacy-Preserving AI: Sensitive data is redacted and anonymized during data collection, model training, and interactions, enabling organizations to maximize AI capabilities without compromising privacy. Compliance and Regulatory Requirements: With Skyflow GPT Privacy Vault, global companies can leverage AI while complying with data residency requirements, such as GDPR, LGPD, and others. Here’s how organizations can leverage Skyflow GPT Privacy Vault: Data Collection and Preparation: Redact or tokenize sensitive information as it flows through GPT without lessening the value of the output. Skyflow’s proprietary polymorphic encryption technique enables the model to seamlessly handle protected data as if it were plaintext. Model Training: Safely train GPT models on content where sensitive data is redacted and anonymized. Robust multi-party training is also available, so that two or more entities can share anonymized datasets and safely use AI to unlock substantial insights. Interaction with GPT Models: De-identify sensitive data during interactions with GPT models, ensuring that privacy is preserved throughout the entire user interaction process. Secure Deployment and Integration: Seamlessly integrate Skyflow GPT Privacy Vault into existing data infrastructures to add a robust layer of data protection. Skyflow GPT Privacy Vault will protect all sensitive data flowing into GPT models and only reveal sensitive information to authorized parties once it has been processed by the model and returned. Skyflow GPT Privacy Vault delivers significant value across industries. Here are two specific use cases: Pharmaceutical Research: Pharmaceutical companies rely on Skyflow GPT Privacy Vault to protect sensitive data throughout the drug development lifecycle. It ensures the privacy and security of clinical trial data, safeguards proprietary research and intellectual property, and enables secure collaborations with external partners. Additionally, it supports personalized medicine initiatives by preserving the privacy of genetic data. Online Travel Booking: Online travel booking companies utilize Skyflow GPT Privacy Vault to protect customer data while leveraging AI models for personalized recommendations and enhanced customer experiences. It allows them to anonymize and protect personally identifiable information (PII) and payment data, ensuring compliance with privacy regulations while delivering superior travel experiences. “Generative AI can be a powerful tool for teams to maximize their output and scale their products. But the risk of a sensitive data leak is high, and with other providers, the cost of deploying a private GPT can be 10x what it is in a shared environment,” said Anshu Sharma, co-founder and CEO of Skyflow. “Skyflow can offer world-class data privacy throughout the lifecycle of GPT models, seamlessly and affordably.” The Global Partner in Cybersecurity and Privacy at Infosys, Joseph Williams, said, "Companies are eager to adopt ChatGPT and other generative AI platforms but they need to solve for privacy and regulatory compliance. Like we laid out in our seminal paper on the future of privacy engineering, data privacy vault architecture is a right way to go about this." Read more about Skyflow for GPT here. About Skyflow Skyflow is a data privacy vault company built to radically simplify how companies isolate, protect and govern their customers’ most sensitive data. With its global network of data privacy vaults, Skyflow helps companies meet complex data localization requirements. Skyflow customers span verticals like fintech, retail, travel, and healthcare. Skyflow is headquartered in Palo Alto, California and was founded in 2019. For more information, visit www.skyflow.com or follow on Twitter and LinkedIn.

Read More

PLATFORM SECURITY, SOFTWARE SECURITY, CLOUD SECURITY

Conceal Announces Strategic Partnership with White Rock Cybersecurity

Businesswire | May 23, 2023

Conceal, a global leader in Zero Trust browser isolation technology, has announced a new strategic partnership with White Rock Cybersecurity, an industry-recognized Value Added Reseller specializing in comprehensive IT and network security solutions. "White Rock Cybersecurity is committed to delivering innovative, scalable, and manageable solutions in information technology," said James Range, CEO of White Rock Cybersecurity. "With the inclusion of Conceal's Zero Trust isolation technology in our offerings, we are significantly boosting the defense capabilities of our customers against both existing and emerging cyber threats at the edge." ConcealBrowse, Conceal's flagship product, is a lightweight browser extension that turns any existing browser into a Zero Trust, secure browser. By monitoring and detecting new and potentially malicious URLs, ConcealBrowse can accurately determine if the activity at the edge is safe to continue via the organization's network. This layer of protection effectively blocks potentially malicious activity, minimizing the success of credential theft and ransomware that bypass other cybersecurity controls. In cases where the safety of a URL cannot be immediately determined, ConcealBrowse isolates the session, protecting the user's identity and the organization's network from potential threats. "White Rock Cybersecurity has a proven track record of delivering top-tier IT and cybersecurity solutions to their customers," said Gordon Lawson, CEO of Conceal. "We are excited to work closely with them to enhance their capabilities further and ensure their clients benefit from our innovative Zero Trust isolation technology." The partnership presents a tremendous opportunity for the security partner community. With ConcealBrowse, partners can now provide their customers with a comprehensive malware protection solution for any browser, enhancing the overall cyber resilience of organizations and protecting their digital assets at the edge. About Conceal Conceal enables organizations of all sizes globally to protect users from credential theft, malware, and ransomware at the edge. The ConcealBrowse Platform uses Zero Trust isolation technology to defend against sophisticated cyber threats, ensuring users and IT operations remain secure and isolated from attacks. For more information, visit https://conceal.io/.

Read More