SOFTWARE SECURITY

Vestech Securities Selects Entreda as Cybersecurity Service Provider

Vestech Securities | April 01, 2022

Vestech Securities
Vestech Securities, Inc., a St. Louis-based independent broker-dealer, and Vestech Asset Management, a state-registered investment advisor, have chosen Entreda to provide their advisors and employees with network protection under Entreda's industy-leading cybersecurity compliance software and solutions.

Vestech Securities' choice of Entreda to monitor and remediate cybersecurity risks demonstrates how the market vendor's proven track record in protecting businesses continues to solidify Entreda's reputation for best-in-class cyber risk management, backed by a deep understanding of regulatory standards. Vestech will have access to Unify's network vulnerability assessment and penetration testing, vendor due diligence, and cybersecurity threat mitigation solutions as a consequence of the arrangement, as well as the advantages of Entreda's dedication to service excellence.

"The rising threat of network breaches across industries have prompted wealth management firms to increase and enhance protection measures. Companies understand advisors cannot serve the best interests of their clients, or invest their money with confidence, without a platform that eliminates cyber risks or have in place a vendor risk assessment process. Entreda's relentless focus on network security, the capability of its end-to-end platform to give a full report on the cybersecurity of any users who access company data, help wealth managers guard against system vulnerabilities."

Sid Yenamandra, CEO and founder of Entreda, a subsidiary of Smarsh Company

John Huang, president of Vestech Securities, said, "As a firm dedicated to help growing the practices of independent financial advisors, Vestech understands the importance of protecting investment professionals, their valuable business, and their clients. Widespread vulnerability to cyberattacks looms large in the wealth management industry, and Entreda's Unify platform provides the tools we need for continuous monitoring and adjustment, to detect issues at the earliest stages and address them quickly."

Marco Ramirez, Vestech's Chief Compliance Officer, stated, "When we set out to identify a vendor of cybersecurity services, we wanted a company that understood our culture of integrity and achieving industry best practices. Entreda's highly regarded Unify platform, with its stellar ratings from other firms, was the most obvious choice. We are pleased to take cybersecurity to the next level on behalf of our independent advisors and the clients they serve."

The Unify platform provides continuous network and endpoint monitoring for all network PCs and other devices for wealth management and insurance corporate customers. Entreda's unique Cyber Risk Number, a rating system that assesses individuals' and organizations' cybersecurity postures, as well as Entreda's industry-leading auto-remediation, make up the platform. It also offers real-time network vulnerability assessment, cyber awareness and anti-phishing training, as well as third-party vendor cyber due diligence.

As per the T3 Inside Information Advisor Software Survey for 2021, Entreda has a 14 percent market share for cybersecurity resources, which is more than four times its nearest rival in the financial advising field.

Vestech's management team hired Entreda because they needed a firm that was familiar with FINRA standards. Entreda is included in FINRA's vendor registry.

Spotlight

CYBERSECURITY BASICS. Cyber criminals target companies of all sizes. Knowing some cybersecurity basics and putting them in practice will help you protect your business and reduce the risk of a cyber attack. Update your software This includes your apps, web browsers, and operating systems. Set updates to happen automatically.

Spotlight

CYBERSECURITY BASICS. Cyber criminals target companies of all sizes. Knowing some cybersecurity basics and putting them in practice will help you protect your business and reduce the risk of a cyber attack. Update your software This includes your apps, web browsers, and operating systems. Set updates to happen automatically.

Related News

INFOSEC PROJECT MANAGEMENT

CyberCube Partners With Kroll to Launch Response Service

CyberCube | May 31, 2022

CyberCube, a supplier of cyber risk analytics, has developed CAERS, a new cyber incident response service for customers of the company's SaaS products. CyberCube will collaborate with Kroll, the premier supplier of data, technology, and insights linked to risk, governance, and growth, to offer CyberCube's customers information and assistance on important cyber aggregation events via the Cyber Aggregation Event Response Service (CAERS). Kroll will deliver frontline risk information derived from thousands of incident response cases handled each year. Following a large cyber disaster, the CAERS team will provide the most recent information to CyberCube's customers, while CyberCube's SaaS tools, including Broker Manager, Account Manager, and Portfolio Manager, will aid in the reaction to any developing cyber calamity. “With cyber events becoming increasingly common, the speed and accuracy with which organisations respond to them is critical. That’s why we’ve launched this response service, specifically tailored to CyberCube’s growing client base. The pressure on our clients during a major cyberattack can be extreme. With CAERS, our team—comprising data scientists, actuaries, engineers, economists and cyber security experts—will become an extension of our clients’ teams, providing the updates they need and sharing both our expertise and data.” Darren Thomson, CyberCube’s Head of Cyber Intelligence Services Benedetto Demonte, Chief Operating Officer for Kroll’s Cyber Risk practice, said: “We’re pleased to be contributing to CAERS because effective incident response depends on the most current and relevant threat intelligence available. In our most recent Threat Landscape Report, we saw a 356% growth in the number of attacks quarter-on-quarter where the infection vector was a zero-day or freshly announced software exploit. Ransomware groups have also been found to be leveraging newly announced vulnerabilities just days after release. It is only with access to frontline intelligence that firms can prioritize resources, mitigate the risk of a cyberattack and react appropriately if the worst happens.”

Read More

SOFTWARE SECURITY

Foresite Cybersecurity Begins XDR & Compliance Platform

Foresite Cybersecurity | June 02, 2022

Foresite Cybersecurity, a leading cybersecurity and compliance provider, announced today that it is transitioning from technical services to a product-led Open XDR SaaS platform. The platform will provide a distinct edge for mid-market enterprises by allowing them to consolidate security data from several sources into a single spot to acquire a holistic view of their security and policy compliance maturity. "Our strategy is to provide our customers with an open, extensible platform to enable them to understand their risk and compliance posture. The ProVision Open XDR platform will deliver on the single vision of our customers security posture, allowing not only discovery, response, and remediation, but also providing real-time risk and maturity scores." Matt Gyde, Chairman and CEO of Foresite Cybersecurity Mid-market organizations have battled for years to achieve adequate cybersecurity due to a lack of in-house experience or funding, with many not understanding where to start. The growing trend of remote employment has only made things more complicated. Duane Shugars, Foresite Cybersecurity Chief Technology Officer said that "The market demanded an easier, more simplified model to be protected from cyberattacks and compliant to support business supply chain requirements. We are developing our Open XDR platform to easily absorb all log data, use advanced data science techniques, proprietary machine learning and natural language models, and supply chain illumination to simplify cybersecurity, maturity and compliance." ProVision Open XDR is a cloud-native platform that will be available in Q3 2022 and will employ machine learning to enable insight across the whole IT ecosystem. In the case of an attack, the vendor-agnostic platform allows any cybersecurity technology in the customer's ecosystem, including firewalls, EDR, NDR, and many more, to monitor events, resulting in quicker remediation and reduced economic damage.

Read More

SOFTWARE SECURITY

Bugcrowd Launches Reseller Partnership with SocialProof Security

Bugcrowd | June 27, 2022

Bugcrowd, the market leader in crowdsourced cybersecurity, announced today a strategic reseller collaboration with SocialProof Security, advancing the organization's objective to keep clients ahead of growing cyber threats. As part of the cooperation, Bugcrowd will resell SocialProof Security's services, including social engineering prevention training, protocol and practitioner seminars, and penetration testing. In addition to reselling social engineering services, Bugcrowd continues to innovate and invest in its award-winning Security Knowledge Platform, which provides the most comprehensive suite of security solutions such as bug bounty, vulnerability disclosure programs, attack surface management, and pen testing as a service. Bugcrowd, for example, allows consumers to buy pen tests from a single supplier for any sort of use case, from basic assurance of simple web apps and networks to continuous testing of cloud services and APIs, and now, social engineering. Due to their friendly hacker approach to boosting customer defenses against human-based assaults, SocialProof Security and CEO Rachel Tobac, the market leader in social engineering prevention services, have gained prominence. Twitter, PayPal, Uber, Prudential Insurance, Cisco Systems, WhatsApp, NATO, and the US Air Force are among the noteworthy clients of SocialProof Security. "We are excited to work with Bugcrowd on this reseller partnership as we move forward with our aligned mission to arm organizations with a proactive means to reduce social engineering risk through education, identity verification protocol improvements, technical tools, and measuring those updates with social engineering penetration testing. The majority of cyber attacks now start with some element of social engineering—manipulating people to take actions that could harm organizations. This partnership illustrates the priority Bugcrowd places on actionable and measurable social engineering risk mitigation in a well-rounded security program," said Tobac. "Even with current elevated threat levels, many organizations are surprisingly unprepared for the threats from social engineering attacks, as we repeatedly find low awareness across organizations, outdated or inconsistent identity verification, and limited practitioner skill sets. Fortunately, taking a multidimensional approach that combines prevention training and tools, human-based protocol updates, and pen testing can dramatically reduce the risk of social engineering attacks. We look forward to bringing this innovative solution to market as a part of our services." Ashish Gupta, CEO of Bugcrowd SocialProof specializes in defending against social engineering attacks, in which attackers deceive workers in order to get personally identifiable information (PII), passwords, and unauthorized access to accounts, money, or other sensitive information. Common attack vectors like phishing, impersonation, and pretexting can be used to carry out such manipulation. In fact, respondents to ISACA's 2021 State of Cybersecurity Survey rated social engineering as the #1 cyber threat.

Read More