Digest May 2020



Hello!πŸ’« In May we’ve continued to adjust the site after the redesign and were creating handy materials for setting up a safe remote work.

This month on the site appeared:

πŸ“ 22 companies. These are vendors of virtual events platforms, solutions and services for employees cybersecurity training and education, user companies.

πŸ“ 12 IT products. Here are digital risk protection solutions, corporate security trainings, threat intelligence platforms.

πŸ“ 5 deployments. This month all of them are aimed at network security training for staff in universities, banks, aviation firms.

πŸ“Category “Threat Intelligence Platform”. These are solutions that help organizations aggregate, correlate, and analyze threat data from multiple sources in real time to support defensive actions.

Three new analytical comparison tables were compiled.

πŸ“‚ Threat Intelligence Platforms. These solutions make it possible for organizations to gain an advantage over the adversary by detecting the presence of threat actors, blocking and tackling their attacks, or degrading their infrastructure.

Compared products:

Anomali ThreatStream: operationalizes threat intelligence and unites all the tools in your security infrastructure, speeding the detection of threats and enabling proactive defense measures.

EclecticIQ Platform: empowers threat analysts to perform faster, better, and deeper investigations while disseminating intelligence at machine-speed.

R-Vision TIP: provides automatic collection, normalization and enrichment of indicators of compromise, transfer of processed data directly to internal security tools.

ThreatConnect Platform: robust integrations with tools like your SIEM, EDR, and firewall pull internally generated logs into ThreatConnect for further enrichment.

ThreatQ: the integrated, self-tuning threat library, adaptive workbench and open exchange allow you to quickly understand threats, make better decisions and accelerate detection and response.

πŸ“‚ Cyber Security Training and Simulation. It is a powerful tool for CISOs and SOC managers to accurately simulate their network and security tools within a dynamic IT, or OT environment. In this table were compared:

Barracuda PhishLine: helps you guard against a range of threats with patented, highly-variable attack simulations for multiple vectors, including phishing, smishing, vishing, and found physical media.

Cofense PhishMe: educates users on the real phishing tactics your company faces. We leverage extensive research, threat intelligence, and front-line phishing defense resources that other providers lack.

CybeReady Blast: autonomous training platform continuously trains 100% of employees every month, year-round, using proven methodology and localized, customized content.

Dcoya Behave: simulates social engineering attacks, triggered automatically by employee real-time interactions with a phish, or by risk scores from past performance.

KnowBe4 Enterprise Security Awareness Training: a way to better manage the urgent IT security problems of social engineering, spear phishing and ransomware attacks.

Proofpoint ThreatSim: help you assess users’ susceptibility to phishing and spear-phishing attacks, with email templates based on real phishing lures spotted “in the wild” by Proofpoint threat intelligence.

πŸ“‚ DRP — Digital Risk Protection. These solutions reduce risks that emerge from digital transformation, protecting against the unwanted exposure of a company’s data, brand, and attack surface and providing actionable insight on threats from the open, deep, and dark web. In this category were compared:

Digital Shadows SearchLight: minimizes your digital risk by detecting data loss, securing your online brand, and reducing your attack surface.

Group-IB Threat Intelligence: be prepared to any attack scenario with Intelligence cyber analytics: receive the most specific and detailed information for prompt response and the most recent data for threat prevention.

IntSights Threat Intelligence Platform: helps organizations centralize and operationalize various sources of intelligence to ensure blocklists are up to date.

Kaspersky Threat Intelligence: global intelligence delivering in-depth visibility into cyber threats targeting your organization.

RiskIQ Illuminate: provides the most comprehensive discovery, intelligence, and mitigation of threats associated with an organization’s digital presence.

ZeroFOX Platform: ingests data from the social networks and web, analyze it and alert for malicious activity, and work on behalf of the customer to remediate issues to and remove risks.

That is how our May went. More details about everything that appears on the site you can read on ROI4CIO’s Facebook page. We’ll see you here in the summer! πŸ‘‹

--
ROI4CIO Team

No comments