Today’s TIP industry encompasses more than 20 vendors, and Frost & Sullivan selected the top 10 based on solid growth potential, rapid growth rates and commitment to innovation. Cyware is one of only three vendors to lead the report’s Innovation Index, due to its scalable innovations, thought leadership in the TIP space, and robust innovation roadmaps.

Martin Naydenov, report author and senior industry analyst with Frost & Sullivan, notes: “Cyware is one of the leading TIP providers (and) leaders on the Innovation Index, thanks to its comprehensive Cyber Fusion Center Platform that integrates TIP, SOAR, collaboration, threat detection, and generative AI capabilities called Quarterback AI. Cyware distinguishes itself with strong customer alignment, achieving 100% CSAT scores for three consecutive years and leading the industry with R&D investments, ranking in the 100th percentile.

“Intel Exchange, Cyware’s TIP solution, offers many use cases and features, including ROI Feed dashboards, TI lifecycle automation, and bi-directional data sharing and actioning. Over the years, Cyware has continuously enhanced its TIP solution. In 2023, it introduced new collaboration capabilities, enabling threat detection and intel teams to join forces and share content, such as SIEM and YARA rules and automated playbooks. In 2024, the vendor added Cyware Quarterback AI, designed to scale, optimize, and accelerate an organization’s security team’s effectiveness across their tech stack to up-level security teams,” Naydenov said.

Anuj Goel, CEO and Co-founder of Cyware, said, “The value threat intelligence provides goes beyond identifying Indicators of Compromise (IoCs), and unless organizations operationalize cyber threat intelligence (CTI), they often miss its potential to reduce risk and improve SecOps efficiency and effectiveness. Cyware’s threat-driven automation simplifies and substantially advances intelligence actioning. It breaks down the barriers between security, DevOps, and IT teams, and ensures that actionable CTI swiftly reaches the right team members who can act on it to protect the organization.”

Leveraging the right threat intelligence platform helps security operations teams get more from intel and ensure the right insights inform critical decision-making. Frost & Sullivan’s 2024 Threat Intelligence Platform Radar Report provides meaningful insights into today’s TIP landscape.

To learn why Cyware is proudly recognized as a leader in the Threat Intelligence Platform market, please download your complimentary copy here.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Cyware Named as Recognized Leader in 2024 TIP Frost Radar™ Report first appeared on AI-Tech Park.

Nozomi Networks, the leader in OT and IoT security, today announced the general availability of the Nozomi TI Expansion Pack. Powered by Mandiant Threat Intelligence, the federated solution helps strengthen and streamline the way industrial and enterprise CISOs and their teams anticipate, diagnose and respond to cyber threats across all their critical business operations. 

With the Nozomi TI Expansion Pack, Nozomi Networks customers now have the option to enrich Nozomi Networks threat intelligence with Mandiant Threat Intelligence to gain more comprehensive access to real-time information about threats to their IT, OT and IoT systems.

“The cybersecurity threat landscape is rapidly evolving, with attacks growing in both number and impact enterprise-wide,” said Edgard Capdevielle, Nozomi Networks CEO. “To minimize risk and maximize operational resilience, CISOs and their security teams need comprehensive solutions that enable them to quickly assess and respond to threats across their IT, OT and IoT systems. We are pleased to be able to give our customers the option to easily incorporate Mandiant’s world-class threat intelligence as part of a whole solution that delivers superior security outcomes.”

“For nearly a decade, Mandiant and Nozomi Networks have partnered to deliver advanced, AI-powered OT and IoT security solutions to customers,” said Melissa Smith, Google Cloud’s Head of Strategy & Technology Partnerships. “This latest expansion is another critical step in our journey to combine threat intelligence sources and defenses to deliver the best possible security outcomes for the world’s critical infrastructure. By blending Mandiant’s threat intelligence and expertise with Nozomi Networks’ OT threat intelligence and tools, we can enable critical infrastructure organizations to enhance their threat intelligence and investigations for a stronger defense.”

Nozomi TI Expansion Pack, Powered by Mandiant
Nozomi Networks customers who wish to gain comprehensive access to real-time information about threats to their IT, OT and IoT systems now have access to an integrated threat feed that combines the breadth and depth of Mandiant’s threat intelligence with Nozomi Networks’ industry-leading OT threat intelligence. The Nozomi TI Expansion Pack extends Nozomi Networks’ advanced OT and IoT threat intelligence by providing organizations with a deeper understanding of the coinciding IT threat landscape. This makes it possible to holistically monitor and respond to emerging threats for the strongest possible security outcomes.     

Nozomi Threat Intelligence Cards
Vantage Threat Cards, also announced today, are a new presentation capability in Nozomi Vantage, the company’s cloud-based OT/IoT cyber management console. Vantage Threat Cards revolutionize the way users access and derive value from threat intelligence feeds. These cards logically cluster and organize threat data, offering instant access to critical information such as:

• Threat descriptions
• First and last seen dates
• Exploitation status and vectors
• Targeted industries and countries
• MITRE ATT&CK details
• Mitigation suggestions
• And more

Users can swiftly narrow down threats by filtering based on specific countries and regions, ensuring they receive the most relevant information for their needs. Vantage Threat Cards empower OT and IoT cyber teams to quickly scan and filter key threat information, significantly speeding up response times and enhancing accuracy. Analysts can easily input an IP address, domain name, hash or threat actor alias to identify any associated rules, streamlining the identification process. The integration of Mandiant Threat Intelligence will be used throughout the Vantage solution to enhance our offering even further. Updates to the vulnerability data include:

• Improved CVSS mapping
• Detailed summaries
• Lists of vulnerable products
• Exploitation details
• MITRE ATT&CK details
• Workarounds and vendor fixes
• Links back to Threat Cards and malware groups

These enhancements ensure comprehensive coverage and deeper insights into vulnerabilities, enabling more effective threat management.

The Nozomi TI Expansion Pack is available now for customers using Nozomi Networks’ on-premises and cloud-based monitoring solutions. Vantage customers have the added benefit of accessing the new threat intelligence feed through Nozomi Threat Cards.

The Nozomi TI Expansion Pack and Vantage Threat Intelligence Cards are available now. Sign up for our webinar to get more information. 

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Nozomi Networks, Mandiant Unite for IT, OT, IoT Security Solution first appeared on AI-Tech Park.

Adaptiva, a global leader in autonomous endpoint management, today announced the integration of OneSite Patch with Tenable Vulnerability Management, including Tenable Security Center for vulnerability management on-premise. This integration seamlessly bridges the gap between vulnerability identification and remediation, enabling joint customers to automate the patching process at scale and significantly enhance their organization’s security posture.

The integration between OneSite Patch and Tenable Vulnerability Management allows users to swiftly identify, investigate, and prioritize vulnerabilities based on Tenable’s threat intelligence, including Vulnerability Priority Rating (VPR) and Asset Criticality Rating (ACR) scores. IT administrators can then define their desired autonomous patching behaviors – encompassing phased deployments, approvals, testing, and notifications – and let OneSite Patch for Tenable Vulnerability Management fully automate the patch management process, addressing vulnerabilities before they can be exploited.

“Tenable not only created the vulnerability management category, we continue to raise the bar to protect enterprises from critical cyber exposures that expose enterprises to business risk. We’re excited about our integration with Adaptiva OneSite Patch, as its advanced autonomous patching capabilities enable customers to efficiently remediate vulnerabilities at scale,” said Ray Komar, vice president of Cloud and Technology Alliances at Tenable. “This partnership represents a significant step forward in helping organizations streamline their security and IT operations to reduce risk.”

Third-party research shows that 60% of organizations take two weeks or more to initiate a patch deployment. The traditional approach involves siloed vulnerability assessment and patching processes, which results in delays and increased exposure to cyberattacks. This integration with Tenable Vulnerability Management bypasses these challenges by connecting vulnerability discovery and automated remediation.

“To keep up with the volume of vulnerabilities and required patches, organizations need to unify their vulnerability management and patching processes,” said Dr. Deepak Kumar, Founder and CEO of Adaptiva. “By leveraging Adaptiva’s autonomous patching capabilities in conjunction with Tenable’s comprehensive vulnerability management expertise, organizations gain the foresight and automation needed to address threats proactively and efficiently.”

Along with the integration, Adaptiva has joined the Tenable Technology Partner Program. As a member, Adaptiva customers can now benefit from discounts on Tenable products.

Availability

OneSite Patch for Tenable Vulnerability Management is now available to new customers or those already using OneSite Patch. Customers can seamlessly access and leverage this new integration to remediate vulnerabilities with speed and control for Windows operating systems, 1600+ third-party applications, drivers, and BIOS, with support for Linux and Mac operating system patching coming later this year.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Adaptiva Integrates OneSite Patch With Tenable first appeared on AI-Tech Park.

Expel, the leading managed detection and response (MDR) provider, today announced a new strategic partnership with Wiz, the leading cloud-native application protection platform (CNAPP). The partnership provides an integration offering MDR for Wiz toxic risk combinations (including vulnerabilities, secrets, malware, and threats), allowing customers to secure across their cloud environments with precision and unrivaled speed.

“Cloud infrastructures are increasingly desirable targets for attackers as more workloads move to, or are born in, the cloud,” said Yonni Shelmerdine, Chief Product Officer, Expel. “Expel’s cloud knowledge runs deep. This partnership offers Wiz customers even greater ability to modernize and grow, knowing Expel’s team of security experts have their backs 24x7x365—applying a detection and response strategy across their entire security stack, with Wiz as a cornerstone.”

As organizations move to the cloud, the need for a robust cloud security strategy remains a critical priority. However, many SecOps teams don’t know where to start in order to effectively detect and respond to risks within their cloud environments. Expel’s deep cloud detection and response expertise, paired with Wiz’s industry-leading CNAPP platform offers unmatched cloud coverage—enabling organizations to enrich cloud issues with deep context, correlate events across tools from their cloud environment, and continuously improve detection accuracy with cloud threat intelligence written by Expel’s detection and response experts.

Expel already ingests and analyzes a variety of Wiz issue types for evidence of post-exploit behavior, including issues generated via Wiz’s Kubernetes runtime sensor. Expel correlates and enriches Wiz issues with additional context from customers’ environments, providing status updates on the investigations in real-time with detections spanning containers and Kubernetes security, cloud detection and response, CNAPP, and cloud-workload protection platforms (CWPP).

“Expel’s expertise in cloud security and rapid incident response perfectly complements Wiz’s CNAPP capabilities, helping deliver enhanced protection for our customers’ cloud environments,” said Oron Noah, VP, Product Extensibility & Partnerships at Wiz. “This partnership continues our commitment to securing complex cloud infrastructures, enabling our customers to focus on what truly matters to their business goals.”

The integration offers a versatile MDR approach that’s tailored to each organization’s unique cloud needs. Expel’s transparent MDR platform and comprehensive service approaches security operations in an entirely new way, amplifying value for Wiz customers.

Register now to join the Expel team, Wiz, and Amazon Web Services (AWS) for an upcoming webinar on September 26, 2024, focused on securing your cloud investment. Attendees will hear from two joint customers leveraging Wiz’s advanced cloud visibility and security capabilities alongside Expel MDR to achieve unparalleled protection and operational efficiency in AWS.

Here’s what one Expel customer has to say:

“This partnership between Expel and Wiz helps alleviate the burden of sifting through alerts for my team, allowing us to identify threats more efficiently so we can get back to more pressing business priorities. Expel and Wiz combine to be the powerful one-two punch we need, granting us peace of mind knowing our business is protected so we can focus on continuing to innovate and further our own operational goals.”

Jason Waits, CISO, Inductive Automation

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Expel Doubles Down on Cloud Leadership with Wiz Strategic Partnership first appeared on AI-Tech Park.

The deployment of these new resolvers aligns with HYAS’s commitment to strengthening cybersecurity defenses in critical regions where emerging threats are on the rise. The introduction of HYAS Protect Protective DNS in South Africa marks a significant step forward to empower organizations with proactive defense mechanisms that can detect, identify, and neutralize malicious activities before they cause damage, and is part of a modern cyber resiliency strategy and zero-trust implementation.

“Expanding our protective DNS footprint in South Africa is a pivotal moment for HYAS,” said David Ratner, CEO of HYAS Infosec. “By placing DNS resolvers across the region, we’re ensuring that clients have low-latency access to the most effective solution available to safeguard their operations against the increasingly sophisticated tactics employed by cyber adversaries.”

This deployment is part of a broader collaboration with Cyberrey, which has been instrumental in integrating protective technologies into the cybersecurity frameworks of organizations throughout South Africa, Turkey, and other regions.

“The demand for robust cybersecurity solutions in South Africa has never been higher, particularly with the rapid increase in remote and hybrid work environments,” said Abdullah Kaymakci, Cyberrey Executive. “Proactive defense is at the heart of our mission as we work together to create a more secure and resilient digital environment across South Africa.”

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post HYAS Infosec Launches New Point-of-Presence (PoP) In South Africa first appeared on AI-Tech Park.

Enzoic, a leading provider of threat intelligence solutions, today released the latest version of Enzoic for Active Directory. The solution provides a frictionless way to continuously monitor, identify and remediate unsafe credentials by screening username and password combinations in Active Directory against Enzoic’s dynamic database. This helps organizations eliminate weak, exposed, or shared passwords, reducing the risk of a successful account takeover.

The Verizon DBIR identified that compromised credentials remain a leading way for cybercriminals to access an organization, and Active Directory is a popular target, with 50% of organizations experiencing an attack. This, coupled with the evergreen password reuse problem, makes it vital that businesses continuously monitor and identify every potential risk. The latest release of Enzoic for Active Directory provides companies with granular insights, helping ensure their IT environment is free of exposed or vulnerable passwords before they become an entry point. The solution automates the monitoring and detection, reducing the burden on the IT team and creating zero friction for employees.

“As the threat landscape continues to expand, the perennial weak link is passwords,” said Mike Wilson, founder and CTO of Enzoic. “We developed our comprehensive solution in conjunction with feedback from our customers, and it provides IT teams with a way to quickly and easily identify credential vulnerabilities and take action to protect their Active Directory environment, helping reduce their risk.”

Key features in the latest release of Enzoic for Active Directory:

• Actionable Dashboard: A single integrated view makes it easy to remotely manage all password settings. The compromised user reporting shows more detail, including the history of the exposure, the original policy, the action taken, and the current policy in place. This detail can highlight where more education is required and help shape policies to further enhance password security. IT teams can now address compromised user accounts manually after the fact with more granular options, including renotifying the user, forcing a reset, or deactivating the account.
• Increased Visibility: Alerts now provide more insight into user behavior at every level, even those outside of the password policy, allowing teams to easily run an automated multi-policy approach driven by historical data. The monitoring extends beyond exposed credentials and pinpoints additional security risks, including whether accounts have administrative privileges, detecting password sharing, identifying users who have not set a password, and detecting inactive accounts. Administrators can also now set time zone preferences for their alerts.
• Reduced Workload on IT Team: Organizations can now authorize Enzoic to pull product logs remotely, reducing the burden on admins and providing more detailed information for troubleshooting. This process is further simplified with adjustable log detail levels. In addition, the update provides a simple UI to configure a personalized SMTP server, allowing email alerts to be sent from your domain.
• Refined Permission Management: Accessing the dashboard, viewing reports, and updating configuration settings previously required Domain or Enterprise administrator rights. Now, users can be assigned to a new least-privileged group that grants these permissions without necessitating domain or enterprise-level access.

For more on Enzoic for Active Directory, please click here.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Enzoic Unveils Forensic Insights into Active Directory Environment first appeared on AI-Tech Park.

Anomali, the leading AI-Powered Security Operations Platform, today announced powerful new capabilities for Anomali Copilot to help security, and now also IT departments, use the latest innovations in AI to successfully defend, protect, and propel their organizations forward. Anomali Copilot empowers security or IT analysts at any skill level to search through petabytes of data––which now includes custom datasets not typically captured by event logs––in seconds. The new capabilities, a result of Anomali’s latest AI model innovations, ensure security and IT professionals can work more productively by asking Anomali Copilot an expanded array of questions, in 80+ languages, and immediately get crystal clear answers, context, or direction on limitless security and IT topics. Anomali Copilot also now powers new IT, fraud and business risk use cases.

“Our safe and intelligent Anomali Copilot gives our customers visibility on a grand scale to proactively defend and efficiently drive their organizations. In terms of cost, speed, and performance, there is nothing in the market that is comparable,” said Ahmed Rubaie, CEO at Anomali. “There are Copilots and then there is the Anomali Copilot, rooted in the largest repository of global threat intelligence data (both IOCs and predictive IOAs). We are helping customers modernize their operations. Our Copilot automates important tasks while integrating security and IT into the business. It helps analysts navigate an intelligent data lake to drive better results and without the extra cost and complex architecture of sitting on top of another big data provider. This technology feat alone can save our customers millions of dollars.”

“Today’s announcement expands our vision beyond cybersecurity to help businesses and government agencies manage their big data challenges in IT and security in one single cloud- native platform,” added Rubaie.

“For over a decade, Anomali has been building AI-powered products. Unlike other Copilots on the market that are resting their laurels on a basic LLM model or ChatGPT, Anomali’s Copilot uses multiple sophisticated AI models so organizations can get the most actionable information out of their data,” said Hugh Njemanze, President and Founder at Anomali. “Beyond the basics of two-way interaction using natural language, Anomali Copilot quickly constructs complex queries, deeply understands threat intelligence, and creates custom content that is specific to our customers’ environments. It’s more than a game changer––it’s an entirely different and better way to do security and IT. We are excited that IT and risk teams can now benefit from our advanced AI Copilot capabilities as well.”

“Anomali Copilot stands out from competition in the market with its ability to quickly interact with large amounts of data and, most importantly, its ability to contextualize information and results based on the customer’s unique environment,” said Christian Karam, former Deputy CISO at UBS. “One of the other biggest differentiators is Anomali Copilot’s ability to tailor to the needs of CIOs and CISOs. Anomali has consolidated into one simple, unparalleled, and versatile unified platform, combining their data lake, ETL, SIEM, XDR, UEBA, TIP, and IT observability capabilities –– going beyond security use cases into fraud and business risk insights.”

Anomali Copilot Provides Management Visibility and Retains Talent

Anomali Copilot demystifies security and IT and empowers management to be more engaged in these functional areas. This visibility at the highest levels enables operational leaders to manage security and IT with the same level of attention that they do any other business risk. Supported by the world’s largest repository of threat intelligence data, Anomali Copilot also limits hallucinations and false positives for security teams.

Another benefit is that Anomali Copilot gives junior analysts a way to operate at the level of senior analysts since it eliminates the need to master complex query language. Using natural language searches slashes analysis time by 50 percent. One recent Anomali customer reported that their investigation search time went from an average of 44 minutes to 40 seconds with Anomali Copilot.

“Anomali Copilot improves security posture and IT visibility, helps organizations retain talent and gives senior management direct purview over other critical business drivers,” said Anthony Aurigemma, Chief Revenue Officer at Anomali. “We are excited that our team continues to expand Copilot to a growing list of use cases, including IT asset management, fraud detection, supply chain risk management, and HR analytics.”

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Anomali announced powerful new capabilities for Anomali Copilot first appeared on AI-Tech Park.

FireHydrant, the most innovative reliability platform across the entire incident response lifecycle, today announced that it has closed on a transaction to acquire Blameless. This acquisition accelerates FireHydrant’s rapid growth into the enterprise segment for incident management.

Blameless has proven its leadership in incident management, and by consolidating the category, FireHydrant cements its position as a proven end-to-end platform for alerting, incident management, and communications. The integration of Blameless’ enterprise capabilities will further empower FireHydrant’s platform for the growing number of businesses treating reliability as a core business metric.

“At FireHydrant, our focus is on delivering next-generation incident management functionality, and Blameless shares that mission with us,” says Robert Ross, CEO of FireHydrant. “This acquisition galvanizes us to penetrate the enterprise segment that the legacy providers have held uncontested for years.”

FireHydrant has already been expanding its platform to better support the world’s largest businesses. The company launched Signals, its sophisticated alerting and on-call tool, which is already sending thousands of notifications daily. The company has experienced a significant increase in cross-sells as customers actively consolidate their incident toolchain.

As a part of this transaction, FireHydrant has secured additional funding, providing the company with a robust financial foundation to execute its long-term growth strategy. The company plans to utilize this new capital to develop key strategic features to enhance its product offerings, recruit top engineering talent with a strong product focus, and integrate its platform with highly requested third-party tools.

Blameless board members Vas Natarajan from Accel and Dan Moskowitz from Third Point Ventures have joined FireHydrant’s board of directors as a part of the acquisition.

“We’re so excited to bring Firehydrant and Blameless together in this unified mission to bring enterprise-grade reliability tools to enterprises everywhere,” said Natarajan. “This is one of those rare situations where the two companies are clearly stronger as a combination. I look forward to working with Robert and our board to advance the mission of a more reliable web.”

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post FireHydrant Acquires Blameless to Solidify Enterprise Market Leadership first appeared on AI-Tech Park.

SOC 2: An Industry Gold Standard for Data Security

The SOC 2 certification, developed by the American Institute of Certified Public Accountants (AICPA), is recognized as the gold standard in information security and compliance. It is designed to assess and validate the effectiveness of an organization’s controls related to security, availability, processing integrity, confidentiality, and privacy. Specifically, SOC 2 Type II certification involves a rigorous, ongoing evaluation process that not only assesses the design of security controls but also monitors their effectiveness over a defined period.

The successful completion of this audit highlights HYAS Infosec’s commitment to building and maintaining a secure, reliable, and resilient infrastructure that safeguards sensitive customer data from emerging threats. By achieving SOC 2 Type II compliance, HYAS Infosec has demonstrated its ability to adhere to the most stringent requirements for data protection, solidifying its position as a trusted partner in the cybersecurity industry.

Johanson Group LLP: Trusted Auditors in Security Compliance

The SOC 2 Type II audit was conducted by Johanson Group LLP, a premier certification body renowned for its expertise in global compliance standards. Johanson Group specializes in SOC 2 audits and has a track record of helping organizations of all sizes and industries achieve and maintain compliance with the most critical data security standards.

Throughout the audit process, Johanson Group performed an in-depth examination of HYAS Infosec’s security controls, policies, and procedures. The comprehensive evaluation confirmed that HYAS Infosec’s information security controls not only meet but exceed industry best practices, ensuring that robust measures are in place to protect customer data against unauthorized access, breaches, and other cybersecurity threats.

“We are incredibly proud to have successfully achieved SOC 2 Type II certification, which is a testament to our team’s relentless focus on security and our commitment to our valued clients and partners,” said David Ratner, CEO, HYAS Infosec. “Given the sensitivity of our industry in particular and the critical role it plays in safeguarding businesses and organizations worldwide, we recognize the value of maintaining the highest standards of data protection to ensure the ongoing cyber resiliency of our clients.”

A Commitment to Excellence in Cybersecurity

At HYAS Infosec, cybersecurity is not just a priority; it is the foundation of the company’s mission to provide unique and innovative threat intelligence and proactive security solutions. With a focus on protecting the most critical assets of organizations across various sectors—including financial services, technology, law enforcement, and government—HYAS Infosec has made data integrity and security a cornerstone of its operations.

The SOC 2 Type II certification is more than just a compliance milestone for HYAS Infosec; it represents the company’s ongoing commitment to excellence in cybersecurity. By continuously refining its security practices and staying ahead of industry trends, HYAS Infosec ensures that its customers can operate with confidence, knowing that their data is in safe hands.

“We believe that trust is the foundation of any successful partnership, and achieving SOC 2 Type II compliance is a clear demonstration of our commitment to building and maintaining that trust with our clients,” added Ratner. “We are dedicated to providing secure, reliable, and innovative solutions that meet their evolving needs.”

For more information about HYAS Infosec and its commitment to data security, please visit HYAS.com.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post HYAS Infosec Achieves SOC 2 Type II Certification first appeared on AI-Tech Park.

Expel, the leading managed detection and response (MDR) provider, and modePUSH, a leading cybersecurity incident response (IR) firm, today announced a new strategic partnership—combining their premier cybersecurity capabilities to deliver increased and complementary threat protection capabilities to modePUSH clients. This collaboration provides new modePUSH clients with Expel’s best-in-class MDR solutions, offering comprehensive support from the onset of their IR engagement with the firm, through the conclusion of modePUSH’s end-to-end breach response process.

“modePUSH’s services fulfill a critical need for companies in their most vulnerable moments,” said Dan Webb, VP, Global Channel Sales and Alliances at Expel. “This partnership enables the unmatched breadth and depth of Expel MDR coverage to follow modePUSH’s strategy-driven approach to cloud-native cyber forensics, helping modePUSH customers not only recover from data breaches, but also build a comprehensive security strategy to prevent future incidents.”

As cloud-native data breaches continue to plague security teams—with adversaries increasingly entering through the cloud control pane, rather than the workload—Expel’s tailored detections, 125+ integrations, and deep expertise across cloud and traditional environments afford modePUSH clients increased peace of mind, knowing their environment has the added benefit of Expel MDR protection throughout modePUSH’s investigative process. Together, Expel and modePUSH help allow organizations to concentrate on future goals and prioritize implementing a strategic action plan to eliminate threats and bolster resilience.

“We work with companies experiencing their darkest hour. They need to know that they’ll be protected throughout our investigation, while we root out the ‘bad’ and help them strategize for a secure future,” said Ben Harel, co-founder of modePUSH. “Expel was among the first to invest in cloud detection and containment, and nobody does it better. This partnership provides our customers with the added layer of Expel’s unmatched expertise, alongside our tailored forensic approach—guiding businesses through the recovery process and better safeguarding them for the long haul.”

Driven by AI and automation, Expel provides unrivaled visibility, threat detection and response, and proactive hunting across environments for more holistic coverage, enabling modePUSH clients to experience rapid resolution of security issues, including a 20-minute mean-time-to-remediate on high/critical alerts.

modePUSH assists customers across various environments, including cloud-native, cloud workloads, and on-premises servers. Regardless of whether an attacker pivots from a server to the cloud or vice versa, modePUSH is equipped to help manage any type of breach, including ransomware attacks, through this partnership with Expel.

To understand how modePUSH’s solutions empower organizations to strengthen their security posture and mitigate risks effectively, or to learn what makes Expel MDR different, reach out directly at modepush.com/contact or expel.com/contact/.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Expel and modePUSH Partner to Provide MDR and IR Capabilities first appeared on AI-Tech Park.