A mix of news last week from Security vendors and some from larger organisations such as IBM and Microsoft. Logpoint changes its majority ownership to Summa Equity. Check Point Software announced a new Chief Product Officer.
There were also partnership announcements from IBM, Ivanti, Trustwave and Nethone. Product announcements emerged from Forescout, ManageEngine, Microsoft and WatchGuard. For the security sector, a rare customer case study emerged from Axio.
Axio
Riverstone Holdings, a leading private markets asset management firm, uses the Axio360 platform to measure and monitor cybersecurity across their equity investment portfolio. Deficiencies were identified within several months of platform usage, and a holistic representation of cyber posture was available in a single view.
The result was noticeable. Investors and operators could sleep well at night knowing necessary financial and technological controls were identified and plans were put in motion to mitigate and manage security events before they transpire.
Axio has published a full case study about the experiences of Riverstone Holdings. It highlights the problem, solution and results.
Check Point Software Technologies
Check Point announced the appointment of several executives this last week. Nataly Kremer joins as Chief Product Officer and Head of R&D. Dr Dorit Dor was appointed Chief Technology Officer. It also promoted Rupal Hollenbeck to President of Check Point.
Gil Shwed, Founder and CEO at Check Point Software Technologies, commented, “We are excited to have Nataly on board and confident that her expertise will be invaluable to our products organization. We are also proud to have Dorit take on the role of Chief Technology Officer and continue leading our rocket initiatives, and we congratulate Rupal on her well-deserved promotion to President of Check Point.”
Forescout Technologies
Forescout Technologies unveiled Forescout XDR to help enterprises better detect, investigate, and respond to the broadest range of advanced threats across the extended enterprise. The solution generates one high-fidelity alert that warrants analyst investigation from every 50 million logs ingested per hour.
Forescout XDR is vendor- and EDR-agnostic. It ingests data from over 170 security, infrastructure, application, cloud/SaaS and enrichment sources and dozens of leading vendors. With over 70 sources of threat intelligence and 1500 verified detection rules and models, and data onboarding included, Forescout XDR customers can be operational within hours, actively detecting, investigating, and responding to threats.
Justin Foster, CTO of Forescout, said, “The true value of an XDR solution lies in its ability to ingest telemetry and data from across the entire enterprise: cloud, campus, remote and datacenter environments, and every managed and unmanaged connected device. This is what the X in XDR is all about, after all.
“Traditional XDR products lack this capability, or they only leverage data from the vendor’s own EDR or a few other security tools. This significantly limits the flexibility, scalability and effectiveness that an XDR solution must provide.”
IBM
IBM and Cohesity announced a new collaboration. It will address organisations’ critical need for increased data security and resiliency in hybrid cloud environments. Combining data protection, cyber resilience, and data management capabilities from both companies, IBM will launch its new IBM Storage Defender solution, including Cohesity’s data protection as an integral part of the offering.
Denis Kennelly, General Manager, IBM Storage, said, “Protecting against ransomware and other forms of malware requires a layered approach to data resiliency that involves early detection, automated protection, and rapid recovery. Fighting sophisticated threats to data is a team sport.
“When we looked at the overall market, we were impressed by the Cohesity platform and the team’s differentiated focus on scalability, simplicity, and security. By integrating our leading software-defined technologies, I am excited to bring essential cyber resiliency capabilities to IBM clients. Cyberattacks are on the rise, but data can be protected and restored when you are prepared.”
Ivanti
Ivanti and Deutsche Telekom announced an expanded partnership based on their joint commitment to secure endpoints against ever-increasing cybersecurity threats. Deutsche Telekom’s Mobile Enterprise Management solutions now include Ivanti Neurons for Discovery, Ivanti Neurons for RBVM and Ivanti Neurons for Patch Management. This will enable Deutsche Telekom’s business customers to secure a more diverse set of endpoints and prioritize and better manage their risks.
Peter Arbitter, Senior Vice President of Portfolio and Product Marketing – Enterprise Customers Germany, Deutsche Telekom, said, “With threats becoming increasingly dangerous, it is vital that our customers have the ability to identify and protect their mobile devices, tablets, and laptops.
“This expanded partnership with Ivanti allows Deutsche Telekom customers to better safeguard themselves against cybercrime by instantaneously and continuously discovering assets and securing endpoints through patching based on real-time vulnerabilities.”
Logpoint
Summa Equity announced the acquisition of a majority stake in Logpoint, the creator of a reliable, innovative cybersecurity operations platform. Following the investment, Yttrium (formerly Digital+ Partners) will remain a significant minority shareholder in Logpoint.
Logpoint CEO Jesper Zerlang said, “We are at a historical tipping point where the digital transformation is key to our collective future and prosperity. This foundational transformation is threatened by increasingly aggressive adversaries, organised crime, and state-sponsored actors.
“The war in Ukraine, the energy crisis, and the Covid-pandemic have made us realise our vulnerabilities, and advanced cyber-technology is a core element in securing the transformation. In partnership with Summa, we will create the strongest European cybersecurity company with global reach, making this technology available to organisations of all sizes.”
ManageEngine
ManageEngine announced adding a security and risk posture management dashboard to Log360, its unified security information and event management (SIEM) solution with integrated DLP and CASB capabilities. Enterprises can leverage this new feature to implement proactive security strategies and prevent cyberattacks before they occur.
The dashboard facilitates active directory (AD) security hardening and compliance with Microsoft security baselines. It will also offer granular visibility into the security and risk posture of critical network assets and users.
Manikandan Thangaraj, vice president of ManageEngine, commented, “With the introduction of more regional compliance mandates, aligning security and compliance is more crucial than ever and has become an important conversation in board meetings. Security and risk posture management-a proactive security strategy-is an integral part of many compliance requirements.
“ManageEngine has augmented its unified SIEM solution with security and risk posture management that allows enterprises to gain visibility into the current risk posture of their network resources. This helps identify critical loopholes and vulnerabilities that, if exploited, can cause significant damage. Furthermore, the feature helps curb account compromise and misconfigurations, two of the most commonly used techniques for launching an attack.”
Microsoft
Microsoft has launched the Microsoft Intune Suite, which unifies mission-critical advanced endpoint management and security solutions into one simple bundle. It claims that “the new Intune Suite can simplify our customers’ endpoint management experience, improve their security posture, and keep people at the center with exceptional user experiences.”
Microsoft Security and Microsoft 365, deeply integrated with the Intune Suite, will empower IT and security teams with data science and AI to increase automation, helping them move simply and quickly from reactive to proactive in addressing endpoint management and other security challenges.
Michael Wallent, Corporate Vice President, Management, revealed in a blog, details of the solution and three reasons why the solution matters:
- Even better security by reducing attack vectors
- Simplification through consolidation and automation of IT and security operations workflows
- Savings through lower management overhead and reduced support costs.
Nethone
Nethone and Ailleron have formed a technology partnership to enhance digital retail banking services and further develop KYC offers. Cooperation with Nethone will further amplify Ailleron’s cybersecurity, AML (anti-money laundering)and fraud prevention capabilities.
Michał Walerowski, Business Unit Director AI/ML & Data Solutions at Ailleron, commented, “Our clients’ common challenges are streamlining customer interactions during identity verification (IDV) and improving customers’ digital enrollment and authentication experiences. Partnership with Nethone allows us to deliver highly anticipated software solutions in these areas.
“In 2023 we bring further machine learning adoption to support security, risk, AML, fraud management, and compliance professionals. Algorithms that can look at hundreds of contextual parameters and learn from investigator feedback are becoming the norm.”
Hubert Rachwalski, CEO of Nethone, added, “We are delighted to be working with Ailleron to help bring them and their clients success through innovation. Our solutions not only aid cybersecurity measures and effectively detect and prevent fraud, but they impact the overall customer user experience – something that both of our companies place great importance on. This approach is the key to success.”
Trustwave
Trustwave Government Solutions (TGS), a Federally focused Managed Detection and Response (MDR) provider and the wholly-owned subsidiary of Trustwave Holdings, Inc., today announced it has become a Palo Alto Networks Cortex® XMDR Specialization partner.
Bill Rucker, President of Trustwave Government Solutions, said, “We are thrilled to be expanding our managed security services collaboration with Palo Alto Networks to bring a whole new level of protection to government institutions. This achievement confirms our commitment to providing our clients with next-generation security technology and services and offering the first-ever managed detection and response (MDR) service specifically built for the rigorous requirements of the federal government.”
WatchGuard Technologies
WatchGuard announced the launch of ThreatSync. It is a comprehensive and simple-to-use XDR solution included as part of WatchGuard’s Unified Security Platform® architecture that provides eXtended Detection and Response (XDR) technology for WatchGuard Network and Endpoint Security products.
WatchGuard ThreatSync equips organizations with XDR capabilities to centralize cross-product detections and orchestrate the automated response to threats from a single pane of glass. It simplifies cybersecurity while improving visibility and response to threats across the organization faster, reducing risk and cost and providing higher accuracy that would otherwise be impossible.
Ricardo Arroyo, principal product manager at WatchGuard Technologies, said, “Securing complex networks amid a constantly changing cybersecurity threat landscape requires unified visibility and fast, integrated response capabilities. ThreatSync equips our partners and customers with true XDR capabilities through WatchGuard’s consolidated tooling.
“Not only does ThreatSync simplify cybersecurity and empower them to work more effectively and efficiently, but it also reduces risk and cost – all while providing a higher degree of accuracy that would be impossible to achieve otherwise.”