Category: Integrated Risk Management (GRC Management)

Cyware has announced the adoption of the newly launched Traffic Light Protocol (TLP) standard version 2.0 to strengthen threat intelligence sharing capabilities within and between organizations worldwide.

The TLP standard is an essential system that aids organizations all over the world in sharing sensitive information with the necessary disclosure rules, the Forum of Incident Response and Security Team (FIRST) for the cybersecurity industry has updated it. In 2015, FIRST spearheaded efforts to harmonize and standardize the TLP to encourage greater sharing of threat information across industries, and Cyware has become one of the early adopters of the new standard.

Anuj Goel, CEO of Cyware commented, “The initiative to elevate threat intelligence sharing capabilities while keeping pace with the latest industry standards puts Cyware in a leading position with regards to adoption of the TLP 2.0 standard. In addition to providing large enterprises, MSSPs/MDRs, information-sharing communities (ISACs/ISAOs), and national CERTs with state-of-the-art threat intelligence-sharing, low-code security automation, and threat response solutions, Cyware has now taken one more step to enable organizations across the spectrum to modernize their information sharing initiatives to foster cybersecurity collaboration.”

Cyware Situational Awareness Platform (CSAP) helps businesses and information-sharing communities (ISACs/ISAOs) to precisely regulate the dissemination of sensitive threat intelligence, vulnerability, and malware advisories. Industry-leading ISACs and ISAOs from the healthcare, retail, energy, space, aviation, automotive, and other sectors use the platform extensively to share threat intelligence with their members and amongst themselves using the ISAC-to-ISAC sharing capability provided by Cyware.

TLP: WHITE has changed to TLP: CLEAR under the new TLP 2.0 standard, while a new TLP: AMBER+STRICT label has been added to highlight information that is only accessible within the recipient’s organization. There are four labels and a sub-label in the TLP standard. This comprises:

• No restrictions on disclosure; TLP: CLEAR.
• Limited disclosure to the community; TLP: GREEN.
• TLP: AMBER – Need-to-know basis restricted disclosure both inside the company and with clients.
• TLP: AMBER+STRICT – Limited disclosure within the organization only to those with a need-to-know basis.
• TLP: RED – Only one recipient may receive disclosure.

Chris Taylor, Director of ME-ISAC stated, “Since the ME-ISAC transitioned to Cyware’s threat intelligence sharing solutions for all of our alert distribution and indicator sharing, we have seen a huge increase in member engagement. The increased efficiency in writing and distributing alerts has enabled our analysts to spend more time focused on analysis instead of the tedium of alert authoring, and the incredible granularity in distribution options with the new TLP 2.0 support has enabled the distribution of alerts to be more focused so that our members receive just the alerts that are the most meaningful to them.”

Read More : Integrated Risk Management Platforms – All You Need to Know

Drata introduced Drata Risk Management, to enable customers to manage end-to-end risk programs by constantly monitoring, identifying, assessing, and treating risks. Following the recent launch of Drata’s Trust Center, Risk Management is now integrated into the company’s current platform to provide a more comprehensive view of developing and maintaining a healthy security posture. 

Adam Markowitz, Co-Founder, and CEO of Drata stated, “Drata aims to be the trust layer between our customers and those they do business with, and we know compliance automation is just one critical piece of that equation. Launching Risk Management and integrating it into our platform is one of the many steps we’re taking to address the maturing needs of customers advancing in their compliance journey.” 

Companies of all sizes and industries face a plethora of risks that can have long-term consequences for their security, reputation, and financial well-being, but monitoring risks frequently results in the management of cumbersome data sheets or siloed tools. With the majority of business executives unsure how or when their organization will be impacted by a cybersecurity incident, Drata’s Risk Management solution gives customers who already have a mature risk and compliance program a centralized view of all potential risks, allowing them to make strategic decisions across the organization and resolve issues quickly. 

The comprehensive Risk Management solution includes a risk register that creates and maintains a risk register to identify and analyze risks, proactively monitor, and manage risks, recognize evolving patterns, and more, as well as a library of more than 150 pre-mapped threat-based risks based on established sources such as NIST SP 800-30, ISO 27005, and HIPAA guidelines. 

Continuous automated monitoring to evaluate and proactively notify customers about the effectiveness of their controls to mitigate new or evolving risks. The Drata Control Framework (DCF) comes pre-mapped to Drata’s threat-based risk library as well as the requirements of multiple security and privacy standards and regulations for integrated risk and compliance. 

Tonya Thepthongsay, Director of Risk and Compliance at Rialtic commented, “Drata’s Risk Management module adds enormous value to our risk management program. Automating the relationship of risks to controls and tests in Drata gives us near real-time visibility to changes in our risk environment. The ability to assign risk owners and automate the follow up process elevates risk visibility and accountability throughout the business.” 

Forescout and Allied Telesis have announced a collaboration in which Allied Telesis’ Vista Manager Ex network management solution will be integrated with Forescout’s Continuum Platform. Customers can now leverage Forescout’s unrivaled device discovery capabilities to improve the security and manageability of their enterprise networks.

The integration of Vista Manager and Forescout provides complete network topology and endpoint device information. Vista Manager uses graphic visualization to quickly identify the connected network segment from the devices in the dashboard map. The map updates with any status change to ensure that the information is always up to date. The dashboard provides easy access to device discovery, visualization, monitoring, and traffic analysis features.

Digital resources, BYOD policies, and third-party devices, such as the Internet of Things (IoT), security cameras, and IP phones, all necessitate wired and wireless access on corporate networks. Prior to today’s explosion in the number and variety of devices in use, remote management was made possible by installing software agents on the devices themselves. Organizations must devise methods for collecting, visualizing, and controlling network assets while not overburdening operational staff to successfully manage this complex environment.

Allied Telesis’ Vista Manager is a graphical network dashboard that simplifies the management of enterprise wired, wireless, and wide-area networks. Originally designed as a graphical interface for the company’s network automation tool, Autonomous Management Framework (AMF), the latest update elevates Vista Manager to a true vendor-agnostic management solution.

Rahul Gupta, Chief Technology Officer at Allied Telesis commented, “We’re delighted to launch an integration with an industry leader like Forescout. Their agentless device discovery and automated security features are second-to-none, and together with our Vista Manager network dashboard, we have a powerful solution for enterprises that is very easy to use.”

The Forescout integration with Vista Manager provides simple plug-in style integration for easy Forescout Continuum installation. Forescout’s agentless discovery technology detects network devices automatically. Discovered devices are added to the network topology and labeled with meaningful icons so that they can be easily identified and controlled.

Read more Blogs:

Major Concerns of IoT Security in 2022

Fusion announced the expansion of its Dynamic Response capability as well as the launch of Fusion Intelligent Incident Manager to deliver agile and interactive resilience. Fusion Risk Management Inc. is a leading provider of operational resilience, risk management, and business continuity software and services. The new Intelligent Incident Manager is a purpose-built solution that allows businesses to identify the full scope of an incident and impacted assets or known outages.

Cory Cowgill, Chief Technology Officer at Fusion Risk Management stated, “The past two years have proven that organizations must remain agile and adaptable as disruptions continue to impact business as usual. Static response plans are no longer sufficient for businesses that need to operate in a layered threat landscape. Data-driven recovery strategies and response plays are increasingly critical. We are excited to offer our global customers these new agile capabilities to help businesses navigate chaos but also thrive during times of disruption.”

The enhanced Dynamic Response features build on already-existing capabilities to drive data-driven response plans that are customized for any business concern. Instead of using static plans to respond promptly when a disruption occurs, the new functionality makes use of dynamic response strategies. Response strategies are dynamic runbooks compiled in real-time based on a unified picture of business operations and the current operating environment. Through flexible diagnostic and remediation procedures that can be flexibly combined into plays based on what the situation commands, organizations will be able to reduce time spent on response planning.

Fusion’s Intelligent Incident Manager uses insights from scenarios and live response outcomes to inform greater agility in times of crisis. The functionality provides a centralized location for resolving critical incidents more quickly. With frictionless activation, organizations can focus on precision of response, more accurately forecast incident resolution time, and provide real-time updates to customers, partners, and internal teams.

Fusion’s new functionalities enable organizations to quickly understand the full impact of disruption and engage teams, critical partners, and response automation in response and recovery efforts by providing a dynamic approach to incident response. Organizations now could safeguard critical services and products by resolving incidents more quickly and preventing future occurrences.

Read more articles:

The Ultimate Guide to GRC in 2022!!