PLATFORM SECURITY
Uptycs | May 27, 2022
Uptycs, the first cloud-native security analytics platform that enables both cloud and endpoint security from a single platform, today unveiled expanded container and Kubernetes security posture management (KSPM) features for its cloud workload protection platform (CWPP). These features enable real-time identification of containerized workloads, proactive scanning of container images in the CI/CD pipeline, constant compliance monitoring, and Kubernetes security policy audit and enforcement.
According to Gartner, by 2026, over 90% of the world's enterprises will be operating containerized apps in production, up from less than 40% currently.
Businesses, on the other hand, struggle to manage and maintain these transitory assets. Misconfigurations in the control plane and insecure policies at the single container layer are used by attackers to escalate permissions, conduct container escapes, and compromise nodes for executing code.
"Organizations are rapidly scaling their Kubernetes environments and seeing tremendous gains in optimization, availability, and developer productivity, but too often Security teams are left playing catch up. With telemetry from Kubernetes systems supported by our analytics platform, Security teams know immediately what resources they have and the security posture of those resources—across public and private clouds, scaling to tens of thousands of pods. Combined with our industry-leading container security capabilities, this gives Security teams confidence that they have the proper controls in place to minimize risk while enabling innovation."
Ganesh Pai, CEO and Co-founder of Uptycs
Uptycs offers both fully managed (AWS EKS, Azure AKS, Google GKE) and self-managed Kubernetes environments, such as VMware Tanzu and Google Anthos. Uptycs contains a range of container runtimes (Docker, containerd, CRI-O).
The latest KSPM capabilities offered by the Uptycs platform are now readily accessible and will be shown at the 2022 RSA Conference (booth #435) from June 6-9. Learn more about the Uptycs container and Kubernetes security service by visiting the Uptycs blog.
Read More
DATA SECURITY
businesswire | January 14, 2020
RangeForce, the organization that is upsetting network safety preparing, today reported an association with the International Consortium of Minority Cyber Professionals (ICMCP) to help minority online protection understudies and experts advance their vocations.
The coalition makes the RangeForce Interactive CyberSkills Training Platform and its in excess of 400 learning modules available with ease to ICMCP individuals so they can gain new certifiable security abilities all the more rapidly and without any problem. The RangeForce stage empowers clients to utilize driving security instruments from Splunk, Recorded Future, Carbon Black and others to figure out how to protect against and react to mimicked network safety dangers.
“The current shortage of cyber security professionals is a classic chicken and egg scenario,” said ICMCP President Larry Whiteside. “Without training we can’t fill open positions, yet many future professionals can’t access the resources to acquire the skills employers want. Our partnership with RangeForce enables our members to eliminate this roadblock.”
“RangeForce believes deeply in the power of education to transform lives,” said Gordon Lawson, President of RangeForce. “We are honored to partner with ICMCP and help support its mission to foster diversity within the cyber security community by providing members with affordable access to our industry-recognized self-directed training platform.”
ICMCP tries to make enduring and commonly remunerating proficient systems administration and learning openings for network protection experts going about as guides or protégés. The associations' projects and occupation board encourage enrollment, incorporation and maintenance, and bring issues to light and improve value for minorities in network protection.
About ICMCP
The International Consortium of Minority Cyber Professionals (ICMCP) was created as a 501(c)3 non-profit association dedicated to the academic and professional success of minority cybersecurity students and professionals. Our mission is to achieve the consistent representation of women and minorities in the cybersecurity industry through programs designed to foster recruitment, inclusion and retention – one person at a time. The ICMCP tackles the ‘great cyber divide’ with scholarship opportunities, diverse workforce development, innovative outreach, and mentoring programs.
About RangeForce
RangeForce makes creating highly skilled cybersecurity defenders simple, flexible, and fast for all enterprises. Powered by the industry’s first SaaS-based, integrated cybersecurity simulation and virtual cyber range, we help customers operationalize a security training program in hours, saving up to 65% over traditional training and up to $1M annually on hosted cyber ranges. RangeForce is revolutionizing cybersecurity training with its adaptive learning to rapidly train and cross-train DevOps, IT, and security professionals, while integrating best-of-breed solutions from a growing ecosystem of RangeForce partners.
Read More
SOFTWARE SECURITY
DigitSec and UST | August 27, 2021
DigitSec, provider of the most comprehensive AppSec testing platform purpose-built for Salesforce, and UST, a leading digital transformation solutions company, today announced a partnership to provide full-spectrum application security testing as part of a comprehensive Salesforce portfolio for enterprise customers.
UST will offer its clients the DigitSec SaaS Security Scanner™- S4 for Salesforce™ as part of its plan to deliver more secure and resilient solutions for testing and remediation.
DigitSec S4 is a continuous application security testing platform for Salesforce DevSecOps that integrates multiple security tools, empowering developers and administrators to accurately identify security issues faster and with far fewer false positives than traditional AppSec testing solutions. It offers an automated penetration testing solution combining static source code analysis (SAST), interactive runtime testing (IAST), software composition analysis (SCA), and cloud security configuration review for a truly comprehensive Salesforce security assessment.
Commenting on the partnership, Prasan Vyas, General Manager and Global Head of SFDC Practice, UST, said, "At UST, we are constantly improving our value proposition for our Global 2000 and Fortune 500 customers by leveraging our platform expertise and working together with best-of-breed partners to help build secure and robust solutions. For our Salesforce customers, DigitSec presents a digital-age tool to secure applications against potential security threats early on in the build process. The partnership underwrites UST's deep commitment to the Salesforce platform and helping our customers identify and remediate security risks in their Salesforce orgs."
"Given the mission-critical and sensitive nature of customer personally identifiable information (PII) and other data, it's critical that developers consider security first in their Salesforce projects. Our S4 platform provides a continuous and automated 360-degree view of potential threats and now is available to UST clients as they create and update their Salesforce applications," said DigitSec CEO Waqas Nazir.
S4 for Salesforce can quickly and accurately identify thousands of potential security vulnerabilities with the lowest rate of false positives in the industry. The DigitSec platform also supports compliance framework requirements including GDPR, HIPAA, ISO-27001, SOX, PCI DSS, CCPA, and APPI.
About DigitSec
DigitSec provides the most comprehensive application security testing platform purpose-built for Salesforce, including automated penetration testing. Its patented SaaS Security Scanner, S4, quickly assesses Salesforce security posture, allowing developers to easily identify potential issues before deployment while supporting compliance requirements.
About UST
For more than 20 years, UST has worked side by side with the world's best companies to make a real impact through transformation. Powered by technology, inspired by people, and led by our purpose, we partner with our clients from design to operation. Through our nimble approach, we identify their core challenges and craft disruptive solutions that bring their vision to life. With deep domain expertise and a future-proof philosophy, we embed innovation and agility into our clients' organizations—delivering measurable value and lasting change across industries and around the world. Together, with over 26,000 employees in 25 countries, we build for boundless impact—touching billions of lives in the process.
Read More