DATA SECURITY

Vulcan Cyber to Introduce Risk Scoring Platform for Businesses

Vulcan Cyber | June 19, 2021

The only risk remediation platform of developers of the industry, Vulcan Cyber®, has announced a new for IT security organizations to measure risk compliance through IT asset health scores across logical business groupings. For the first time, this enables enterprise cybersecurity teams to track remediation progress against prioritized risks to measure business risk against customizable security compliance KPIs.  This will help businesses protect themselves from various exploits such as ransomware attacks and data breaches.

Other approaches lack many aspects in vulnerability risk prioritization and often only the risks at the individual, atomic, and asset levels. Customers of Vulcan Cyber now benefit from the ability to control custom risk parameters and improved vulnerability prioritizing scores weighted with industry asset data. These newest additions to the Vulcan Cyber risk model improve the industry's only threat remediation orchestration platform and are an indispensable second step after susceptibility scanning.


Practically all subjugated vulnerabilities are known by IT and security teams in advance; they are exploited at the occurrence. As a result, the windows for vulnerability remediation presently span much time giving bad actors an intolerable amount of time to abuse businesses with significantly less capacity to protect themselves.

Vulcan Cyber helps get the proper remedies to the right people, prioritize vulnerabilities, automate remediation tasks at scale, integrate with dozens of best-of-breed tools, and measure risk across the complete process to get it fixed finally.

About Vulcan Cyber

Vulcan Cyber developed the industry's first vulnerability remediation orchestration platform, which was built to help various businesses reduce the online threat risks using application security and measurable cloud. By curating and delivering the best remedies, prioritizing vulnerabilities, and automating processes and fixes via the last mile of remediation, the platform of Vulcan orchestrates and tracks the remediation lifespan from scan to fix. Vulcan Cyber platform’s unique capability has garnered Vulcan Cyber recognitions.

Spotlight

"ertificate-based network authentication can be a powerful first step towards a safer, more agile business.  This paper explains how it works and how it compares to other leading identity and access management solutions.

Organisations now have to deal with customer data transiting to the cloud, employees bringing their mobile devices to work (and expecting them to be accepted) and hackers looking to score the next big information leak.

This white paper will assist organisations in creating a best practice based information security strategy and demonstrates how investing in certificate-based network authentication can be a powerful first step towards a safer, more agile business. It explains certificate-based network authentication, how it works and how it compares to other leading identity and access management solutions."

Spotlight

"ertificate-based network authentication can be a powerful first step towards a safer, more agile business.  This paper explains how it works and how it compares to other leading identity and access management solutions.

Organisations now have to deal with customer data transiting to the cloud, employees bringing their mobile devices to work (and expecting them to be accepted) and hackers looking to score the next big information leak.

This white paper will assist organisations in creating a best practice based information security strategy and demonstrates how investing in certificate-based network authentication can be a powerful first step towards a safer, more agile business. It explains certificate-based network authentication, how it works and how it compares to other leading identity and access management solutions."

Related News

DATA SECURITY

Argus partners with Microsoft to provide Microsoft Azure IoT end-to-end Cyber Security Cloud solution for car manufacturers.

Argus | March 30, 2021

Argus Cyber Security, a global pioneer in the field of cyber automotive security, cooperated with Microsoft Azure IoT to help car manufacturers to track, identify, and mitigate cloud attacks. Argus Fleet Protection, an Automotive Security Operation Center (ASOC) solution, in-vehicle insights from Argus Connected ECU Protection, and update capability with Argus Software Updates Over-the-Air comprise the Argus cybersecurity package for automotive applications, which is combined with Azure IoT. (OTA). The complete end-to-end cloud solution is one of the first to provide car manufactures with on-board and off-board tracking for the cyber wellbeing of their fleet. This automotive collaboration allows car manufacturers better access to security-related in-vehicle information as well as extensive coverage of security incidents. Argus Connected ECU Protection detects operating system irregularities and unusual behavior in the vehicle using customer-defined hazard models and is implemented on connected ECUs such as telematics, infotainment centers, and ADAS systems. Threat models may be built on UNECE R 155 (WP.29), the MITRE Attack structure, or some other model that is selected. Vehicle warnings are sent to Argus Fleet Protection, where they are paired with information from other sources in dedicated automotive hazard hunting and investigation modules. Vehicle manufacturers will create a more reliable, all-encompassing cyber intelligence picture by combining end-to-end automotive cyber protection with Microsoft Azure IoT. Furthermore, using Argus Delta OTA update technologies, car manufactures will immediately incorporate security upgrades to minimize vulnerability to cyber threats while reducing vehicle downtimes and deployment costs. "We are thrilled to be joining the world's leading businesses on Microsoft Azure. It represents a significant step forward for vehicle manufacturers looking to minimize their exposure to cyber risk while still adhering to applicable requirements and regulations such as UNR 155 (WP.29) "said Miki Hakak, Argus Cyber Security's VP Marketing, and Business Development. "By collaborating with a global leader like Microsoft, we're making it easier for vehicle manufacturers to cost-effectively incorporate cyber protection into their vehicles without disrupting manufacturing cycles or project risk." "Cybersecurity is a critical component in the transition to connected and autonomous vehicles," said Avijit Sinha, Microsoft's general manager for Azure Mobility. "Argus offers robust and flexible tools to ensure security through a vehicle's diverse computing resources and networks, whether it's avoiding attacks on safety-critical functions or personal data theft. The partnership of Argus and Microsoft Azure IoT offers a roadmap for automakers aiming to achieve their target of stable connected and autonomous vehicles." ABOUT ARGUS CYBER SECURITY To secure connected cars and commercial vehicles from cyber-attacks, Argus, a world pioneer in automotive cyber protection, offers in-vehicle solutions, consulting services, and an automotive security operation center (ASOC). Customers include automakers, retailers, and fleet managers. Argus products and services, which are currently in development, assist in the prevention, tracking, and reaction to cyber threats on in-vehicle components, networks, and post-production fleets. Via a suite of customized advisory services that help incorporate data security standards and procedures into the whole product lifecycle, Argus professional services assist its clients in complying with applicable guidelines and regulations, such as UNECE R 155 (WP. 29). Argus' groundbreaking approaches and solutions are based on decades of cybersecurity and automotive research, which has resulted in more than 70 awarded and pending patents. Argus was founded in 2013 in Tel Aviv, Israel, and has offices in Michigan, Stuttgart, Tokyo, Shanghai, and Korea. Argus is a wholly-owned subsidiary of Elektrobit, a multinational supplier of automotive products and services.

Read More

DATA SECURITY

BitSight and Glass Lewis Partner to Expand Investor Understanding of Cybersecurity

BitSight | September 28, 2021

BitSight, the standard in security ratings, and Glass Lewis, the leading provider of independent global governance solutions, today announced a strategic partnership to include critical cybersecurity information – comprised of BitSight Security Ratings, data, and insights – with Glass Lewis' Proxy Paper research reports. Information on 20,000+ companies will be included in an effort to help investors better understand how cybersecurity issues may affect their investments. Investor concerns around environmental, social, and governance issues continue to rise, leading to closer examinations of management and board effectiveness in addressing these challenges. Failure to adequately manage cyber risk can materially impact a company's revenue and financial performance. BitSight's Security Ratings and data will supply Glass Lewis clients with data-driven, evidence-based cybersecurity intelligence, which, in turn, will provide new visibility into a dimension of company performance and governance. Investors are mostly in the dark when it comes to the cybersecurity of their investments.Providing Glass Lewis clients with BitSight ratings and data alongside its proxy research reports will deliver the insights necessary to have an enhanced understanding of the efficacy of a company's oversight of cybersecurity risks and outcomes. It's a new era in informing investors about cyber risks. Steve Harvey, BitSight's chief executive officer. "The BitSight Security Rating and insights will allow our clients to identify cyber risk exposure, potentially minimizing both reputational risk and long-term financial losses," said Dan Concannon, Glass Lewis Chief Commercial Officer. "We are excited to include the industry's most respected and widely leveraged Security Rating in our Proxy Paper research reports allowing our clients to address this rapidly expanding risk." The landscape of governance, especially as it pertains to cyber controls, is changing rapidly and institutions from the United Nations to the Securities and Exchange Commission (SEC) are increasingly focused on market transparency for global investors. Beginning in 2011 with its landmark cybersecurity guidance, the SEC has signaled that cybersecurity is a material business risk requiring consistent, adequate disclosure. The SEC created a cyber enforcement unit in 2017, updated guidance in 2018, and recently levied a series of fines at companies over inadequate disclosures of cybersecurity issues. Over 1,300 clients, including most of the world's largest pension plans, mutual funds, and asset managers who collectively manage over $40 trillion in assets, use Glass Lewis' research and technology solutions to inform and facilitate their corporate governance activities. About BitSight BitSight is transforming the way that the global marketplace addresses cyber risk with cybersecurity ratings and analytics. The BitSight Security Ratings Platform applies sophisticated algorithms, producing daily security ratings that range from 250 to 900, to help organizations manage their own security performance; mitigate third party risk; underwrite cyber insurance policies; conduct financial diligence; and improve national security. With 2,300 global customers and the largest ecosystem of users and information, BitSight is the Standard in Security Ratings. About Glass Lewis: Glass Lewis is the leading provider of independent global governance solutions. We enable institutional investors and publicly listed companies to make sustainable decisions based in research and data. We cover 30,000+ meetings each year, across approximately 100 global markets. Our customers include the majority of the world's largest pension plans, mutual funds, and asset managers who collectively manage over $40 trillion in assets. Our core solutions include Proxy Paper proxy research and Viewpoint proxy vote management platform.

Read More

DATA SECURITY

EclecticIQ, CyberSecurity Malaysia, and Syntx Signed MOU to Improve Malaysia's Cybersecurity Posture

EclecticIQ | January 27, 2022

At a virtual ceremony, the government agency providing specialized cybersecurity services, CyberSecurity Malaysia (CSM), a leading global threat intelligence, hunting, and response technology provider, EclecticIQ, and a Malaysian cybersecurity company, Syntx, signed a Memorandum of Understanding (MOU). The three organizations have committed to engaging in various activities targeted at enhancing Malaysia's and Southeast Asia's cybersecurity postures to address escalating threats. Expanding the use of cyber threat intelligence (CTI), a type of cybersecurity that focuses on gathering and evaluating information about current and possible attacks, is one of the main objectives. Chief executive officer for CyberSecurity Malaysia, Dato' Ts. Dr. Haji Amirudin Bin Abdul Wahab FASc, said, "CSM is pleased to work with an international industry player and partner with a local SME that have the same shared core beliefs to empower prudent cybersecurity practices. It is timely to forge this strategic collaboration that will drive higher awareness and adoption of cyber threat intelligence in Malaysia." The three organizations plan to collaborate on a joint research publication on a CTI topic relevant to the region, support the creation of a centralized CTI knowledge base, and provide practical guidance on the use of CTI methods through case studies, including lessons learned from CSM's deployment of the EclecticIQ Threat Intelligence Platform. All actions will align with the Malaysia Cyber Security Strategy 2020-2024 and will support it. "As a global leader in threat intelligence technology, we advocate for a safer world through collaboration. Building strong partnerships in the fight against cyber threats is an important part of that advocacy. This memorandum will further strengthen collaboration and represent an important milestone in our efforts to empower Malaysia and the entire Southeast Asia region with tools and technologies to enhance cyber situational awareness. In addition, we are honored by the confidence placed in EclecticIQ by the Malaysian government and our partner Syntx." CEO and founder of EclecticIQ, Joep Gommers Chief executive officer for Syntx Sdn Bhd, Fadzril Azhar, stated"Syntx is honored to be a part of this collaboration, which manifests the trust placed in us by both parties and provides significant encouragement for us to work harder. We are committed to grow more local capabilities and capacities in cybersecurity, especially around cyber threat intelligence."

Read More