SOFTWARE SECURITY

Onapsis Partners with NextGen Cyber Talent

Onapsis | May 05, 2022

Onapsis
Onapsis, the market leader in business-critical application cybersecurity and compliance, announced today a collaboration with nonprofit education provider NextGen Cyber Talent to help establish cybersecurity job possibilities for underprivileged talent. NextGen Cyber Talent is the newest addition to the company's Onapsis Cares (OnaCares) charitable portfolio, which comprises the Breast Cancer Research Foundation, the American Foundation for Suicide Prevention, and the United Nations Children's Fund (UNICEF).

According to the (ISC)² Cybersecurity Workforce Study, the global cybersecurity workforce must expand by 65% in order to effectively secure organizations' important assets. However, the scarcity of educational resources for underrepresented populations puts substantial impediments in the way of their youngsters pursuing lifetime careers in cybersecurity. The cooperation between Onapsis and NextGen Cyber Talent is intended to reach out to young professionals in these areas and help the underserved section of potential students via training and job placements.

“While the skills gap has become a prevalent challenge in the cybersecurity community, not enough opportunity is given to underserved and underprivileged talent. At Onapsis, we participate in programs that align with our mission statement of making a positive societal impact through educational and philanthropic initiatives. We’re thrilled to partner with NextGen Cyber Talent and provide young professionals with educational resources that will open doors in their cybersecurity careers and lead them to higher-paid employment.”

Mariano Nunez, CEO of Onapsis

In 2017, the OnaCares mission was officially founded. With the acquisition of NextGen Cyber Talent, Onapsis is able to expand on its mission statement. Onapsis will be at the SAP Sapphire conference in Orlando, Florida from May 10 to 12, the RSA Conference in San Francisco from June 6 to 9, and the Gartner Security & Risk Management Summit in National Harbor, Maryland from June 7 to 10. The firm invites all guests to interact with Onapsis and give monies to NextGen Cyber Talent at these events. Visit Onapsis at SAP Sapphire by clicking here or RSA by clicking here.

Krishnan Chellakarai, Founder and Co-Chairman of NextGen Cyber Talent said that “Addressing the cybersecurity talent shortage starts with enhancing diversity and inclusion in the industry. By bringing cybersecurity experts, providers, and enterprises together, we can make a difference in the community. Our partnership with Onapsis will help us reach this end goal and provide the younger generation with more opportunities to advance their cybersecurity careers."

Spotlight

Red Team Assessments test an organization’s ability to protect it’s critical assets by emulating a no-holds-barred cyber attack scenario. FireEye Mandiant experts use global frontline intelligence to simulate the tactics, techniques, and procedures (TTPs) of actual threat actors. This provides organizations with valuable experience to detect and respond to likely targeted attack scenarios—without the harmful consequences of interrupted business operations and negative media headlines.

Spotlight

Red Team Assessments test an organization’s ability to protect it’s critical assets by emulating a no-holds-barred cyber attack scenario. FireEye Mandiant experts use global frontline intelligence to simulate the tactics, techniques, and procedures (TTPs) of actual threat actors. This provides organizations with valuable experience to detect and respond to likely targeted attack scenarios—without the harmful consequences of interrupted business operations and negative media headlines.

Related News

DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY

Apiiro to Sponsor Cloud Native SecurityCon and KubeCon + CloudNativeCon North America

Apiiro | September 12, 2022

Apiiro, the leader in Cloud-Native Application Security, today announced it is a platinum sponsor of Cloud Native SecurityCon, an event designed to foster collaboration, discussion and knowledge sharing of cloud native security projects to address security challenges and opportunities. The in-person event takes place October 24-25, 2022 in Detroit, MI and will showcase breakthrough technology and advances in modern cybersecurity approaches including secure software development and supply chain security. Cloud Native SecurityCon is co-located at KubeCon + CloudNativeCon, the Cloud Native Computing Foundation's flagship conference. Apiiro executives including VP of Security Research Moshe Zioni will be in attendance to discuss how Apiiro is accelerating secure software delivery by addressing critical risks in cloud-native applications. KubeCon attendees can also meet with Apiiro executives to learn more about the code risk platform by visiting booth SU63. About Apiiro Apiiro helps security and development teams proactively remediate risk before releasing to the cloud. Backed by Greylock and Kleiner Perkins.

Read More

DATA SECURITY

SentinelOne and Cribl Partner to Deliver Data Flexibility Across Cybersecurity and Observability

Cribl | August 04, 2022

Cribl, the leader in enabling open observability, today announced a new partnership with SentinelOne, an autonomous cybersecurity platform company. The partnership enables SentinelOne customers to leverage Cribl's observability product suite to streamline cybersecurity triage, optimize data collection, and provide security teams control of their data. By integrating Cribl's observability product suite with Singularity XDR, SentinelOne customers can now unlock the value of all observability data. Key benefits include the ability to: 1) Operationalize endpoint and extended detection and response (EDR & XDR) of data sources in joint customer environments, 2) Streamline for triage and investigative functions in the Security Operations Center (SOC), and 3) Progress cybersecurity programs with enhanced threat intelligence, threat hunting, and adversary simulation. "Today's cybersecurity risk levels are increasingly associated with the ability to understand data across enterprise assets. "Our partnership with Cribl helps optimize data collection at scale, enabling security teams to minimize risk and save time." Chuck Fontana, SVP Business Development at SentinelOne "We're excited to partner with the SentinelOne team," said Zac Kilpatrick, VP of Channel and Alliances at Cribl. "To keep up with persistent threats and the ever-changing security landscape, SOC activity must move from reactivity to proactivity. SentinelOne's autonomous and proactive approach to cybersecurity is differentiated in the market and aligns with Cribl's objective of optimizing analytics platform cost and performance." Integration with SentinelOne's Cloud Funnel Cribl's product suite now integrates with SentinelOne's Cloud Funnel, a data subscription enabling XDR data to be stored locally in an enterprise's data lake. This solution works with any data type, such as file, process, DNS, flow, behavioral, registry, commands, scripts, and more. Cloud Funnel's flexibility provides SentinelOne customers the ability to choose which data type they need, optimize it to find the right signal, and route it for maximum efficiency - all at machine speed. Integration with DataSet Cribl Stream now supports SentinelOne's DataSet as a destination to seamlessly route data from legacy log analytics solutions. DevOps and IT teams choose DataSet to analyze data in real-time, effortlessly scale to petabytes, and cost-effectively retain data for longer periods of time for compliance and audit purposes. The new integration enables Cribl customers to pipeline their data to DataSet without changing their data instrumentation, collection, and ingestion. SentinelOne and Cribl will also continue bringing new offerings to market, including integrating Cribl Stream into SentinelOne's Singularity XDR platform. About Cribl Cribl makes open observability a reality for today's tech professionals. The Cribl product suite defies data gravity with radical levels of choice and control. Wherever the data comes from, wherever it needs to go, Cribl delivers the freedom and flexibility to make choices, not compromises. It's enterprise software that doesn't suck, enables tech professionals to do what they need to do, and gives them the ability to say "Yes." With Cribl, companies have the power to control their data, get more out of existing investments, and shape the observability future. Founded in 2017, Cribl is a remote-first company with an office in San Francisco, CA.

Read More

PLATFORM SECURITY

Deloitte Launches Zero Trust Access, a New Managed Security Service

Deloitte | July 12, 2022

To help organizations adopt zero trust more quickly and efficiently, Deloitte is launching a new managed service – Zero Trust Access— that offers a cloud-native approach to securing communications between users, on any device, and enterprise applications, wherever they may reside. The Zero Trust concept commits to removing implicit trust within an information technology (IT) ecosystem and replacing it with a risk-based approach to accessing organizational resources across identities, workloads, data, networks and devices. This trend is gaining momentum, given legacy approaches to security architecture are no longer suitable to secure the ubiquitous nature of the modern enterprise. Part of the newly expanded Zero Trust by Deloitte, Zero Trust Access facilitates zero trust adoption and the evolving needs of organizations in protecting their applications, infrastructure, and data. Following the integration of recently acquired talent and technology into existing Deloitte services, the Zero Trust Access managed service connects users to applications through a frictionless cloud-native solution that is inherently scalable, resilient, agile, and secure. Further, the managed service is available standalone, integrated with other Deloitte offerings, or as part of a broader solution leveraging technologies from Deloitte's alliances ecosystem. "As perimeter-based approaches are no longer suitable to secure the modern enterprise, many organizations are working to enhance protection for their IT ecosystems via zero trust. "Zero Trust Access was built as a turnkey managed service helping ourselves and our clients accelerate adoption of this transformative security framework. Our goal was to create a cost-effective solution that can be delivered standalone or complementary to a broader ecosystem and ultimately help decrease the burden on IT and security teams who likely need to manage multiple heterogenous solutions to achieve similar outcomes." Andrew Rafla, Deloitte Risk & Financial Advisory's zero trust offering leader and principal, Deloitte & Touche LLP With innovative data protection leveraging device-level secure microcontainer technology, Zero Trust Access helps protect infrastructure while also enabling organizations to protect sensitive enterprise data and enforce least privilege through dynamic access control to enterprise assets. The managed service can replace remote access solutions inclusive of virtual private network (VPN), virtual desktop infrastructure (VDI), and desktop as a service (DaaS), all of which typically require significant capital expenditure for infrastructure, high operating costs, and technology management overhead. Zero Trust Access includes features such as ephemeral connectivity built upon secure peer-to-peer (P2P) communication, conditional access and continuous authorization, as well as robust data protection for data at-rest, in-use, and in-transit are consistently applied to each session, regardless of the type or location of the applications being accessed (e.g., legacy hosted applications, software as a service (SaaS), thick-client, web-based applications). Implementation of Zero Trust Access can help organizations leverage outcome-based solutions that improve business agility, enhance user productivity, and reduce cost and complexity of security operations. "Beginning zero trust adoption isn't simple, fast or easy for most organizations," Deborah Golden, Deloitte Risk & Financial Advisory Cyber and Strategic Risk leader and principal, Deloitte & Touche LLP. "We're launching Zero Trust Access as the first in many adoption-enabling services and solutions to come, so that our clients are better able to modernize their security programs, enable agile operations and confidently advance with emerging technologies and transformative risk management principles that can build more resilient security practices." About Deloitte Deloitte provides industry-leading audit, consulting, tax and advisory services to many of the world's most admired brands, including nearly 90% of the Fortune 500® and more than 7,000 private companies. Our people come together for the greater good and work across the industry sectors that drive and shape today's marketplace — delivering measurable and lasting results that help reinforce public trust in our capital markets, inspire clients to see challenges as opportunities to transform and thrive, and help lead the way toward a stronger economy and a healthier society. Deloitte is proud to be part of the largest global professional services network serving our clients in the markets that are most important to them.

Read More