SYS-CON MEDIA Authors: Jim Kaskade, Yeshim Deniz, Elizabeth White, Greg Ness, Sean Houghton

News Feed Item

Agiliance Introduces First NIST Cybersecurity Framework Security Checklist and Best Practices Content Pack

Agiliance®, Inc., the Big Data Risk Company™ and leading independent provider of integrated solutions for Operational and Security Risk programs, today announced the release of the Agiliance NIST Cybersecurity Framework (NIST CSF) Content Pack, the market’s first commercially available Security Checklist and Best Practices in a risk management solution. The Agiliance NIST CSF Content Pack is fully integrated with the company’s RiskVision™ platform, which is in production today for continuous diagnostics and mitigation (CDM), managing a million assets, prioritizing remediation for 20 million vulnerabilities, and conducting 100 million daily control checks.

Using the Agiliance NIST CSF Content Pack for RiskVision, organizations can gather, score, and review their data- and survey-driven control assessment results. Furthermore, they can identify their control gaps, take the necessary remediation actions, and gain a comprehensive measurement of their cyber security risk posture. The Agiliance NIST CSF Content Pack incorporates all five functions of the Framework Core for managing cyber security risk – Identify, Protect, Detect, Respond, and Recover – and automates:

  • Assessment of an organization’s current cyber security posture;
  • Definition of an organization’s target cyber security posture;
  • Identification of areas for improvement within the context of a continuous and repeatable process;
  • Assessment of progress toward the target cyber security posture; and
  • Information sharing among internal and external stakeholders about cyber security risk.

“Applying all of the outlined standards, guidelines, and practices of the NIST Cybersecurity Framework is a considerable challenge that requires the rethinking of existing processes, including the tools organizations use to gather and analyze data,” said Torsten George, vice president of worldwide marketing and products at Agiliance. ”RiskVision and the Agiliance NIST CSF Content Pack combine pre-packaged intelligence with the controls, data automation, data aggregation, and a workflow engine needed to automate security risk management and strengthen cyber resilience.”

In response to escalating cyber-threats to the nation’s economy and national security, and mandated by the February 2013 White House Executive Order 13636, NIST released its Framework for Improving Critical Infrastructure Cybersecurity in February 2014. However, applying the NIST Cybersecurity Framework adds to the volume, velocity, and complexity of data feeds that must be analyzed, normalized, and prioritized. The combination of RiskVision and the Agiliance NIST CSF Content Pack provides organizations automated tools designed to assess, monitor, and mitigate cyber security risks.

Since 2011, Agiliance has pioneered and established a software segment called Security Risk Management. The company has developed several innovations in the areas of cyber systems modeling, threat-based continuous diagnostics, and operationally efficient remediation. The company also hosts the industry’s first Cyber Stress Test tool developed with Robert Bigman, former CISO for the CIA.

Agiliance has received more than two dozen industry accolades over the last 12 months, including the Security Products magazine's 2014 Govies Platinum Award for Best Homeland Security Product of the Year, 2014 Cyber Defense Magazine Most Innovative InfoSec Award for Most Innovative Risk Management Product, Deloitte 2013 Technology Fast 500 Honoree (#4 in security software), and Government Security News 2013 Homeland Security Award.

Availability

The Agiliance NIST CSF Content Pack is available immediately and is included with all RiskVision subscriptions.

The company will demonstrate RiskVision’s threat-based risk management capabilities at booth #118 at the Gartner Security & Risk Management 2014, June 23 – 26, 2014 in National Harbor, MD.

About Agiliance

Agiliance, the Big Data Risk Company, is the leading independent provider of integrated solutions for Operational and Security Risk programs. Agiliance is automating how Global 2000 companies and government agencies continuously monitor big data for risks across financial, operations, and IT domains to increase operational efficiency and orchestrate incident, threat, and vulnerability actions in real time. RiskVision customers demonstrate automation use cases within 30 days on-demand, and within 60 days on-premise, made possible by a configurable platform and applications, broad library of technology integrations, and vast domain and regulatory content. RiskVision scales with businesses, effectively managing assets, data, people, and processes to achieve 100 percent risk and compliance coverage. Its real-time risk analysis leads to optimized business performance and better investment decisions. For more information, please visit www.agiliance.com.

More Stories By Business Wire

Copyright © 2009 Business Wire. All rights reserved. Republication or redistribution of Business Wire content is expressly prohibited without the prior written consent of Business Wire. Business Wire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
SYS-CON Events announced today that Gridstore™, the leader in hyper-converged infrastructure purpose-built to optimize Microsoft workloads, will exhibit at SYS-CON's 16th International Cloud Expo®, which will take place on June 9-11, 2015, at the Javits Center in New York City, NY. Gridstore™ is the leader in hyper-converged infrastructure purpose-built for Microsoft workloads and designed to accelerate applications in virtualized environments. Gridstore’s hyper-converged infrastructure is the ...
The security devil is always in the details of the attack: the ones you've endured, the ones you prepare yourself to fend off, and the ones that, you fear, will catch you completely unaware and defenseless. The Internet of Things (IoT) is nothing if not an endless proliferation of details. It's the vision of a world in which continuous Internet connectivity and addressability is embedded into a growing range of human artifacts, into the natural world, and even into our smartphones, appliances, a...
Fundamentally, SDN is still mostly about network plumbing. While plumbing may be useful to tinker with, what you can do with your plumbing is far more intriguing. A rigid interpretation of SDN confines it to Layers 2 and 3, and that's reasonable. But SDN opens opportunities for novel constructions in Layers 4 to 7 that solve real operational problems in data centers. "Data center," in fact, might become anachronistic - data is everywhere, constantly on the move, seemingly always overflowing. Net...
"ElasticBox is an enterprise company that makes it very easy for developers and IT ops to collaborate to develop, build and deploy applications on any cloud - private, public or hybrid," stated Monish Sharma, VP of Customer Success at ElasticBox, in this SYS-CON.tv interview at DevOps Summit, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
"Matrix is an ambitious open standard and implementation that's set up to break down the fragmentation problems that exist in IP messaging and VoIP communication," explained John Woolf, Technical Evangelist at Matrix, in this SYS-CON.tv interview at @ThingsExpo, held Nov 4–6, 2014, at the Santa Clara Convention Center in Santa Clara, CA.
The Internet of Things will put IT to its ultimate test by creating infinite new opportunities to digitize products and services, generate and analyze new data to improve customer satisfaction, and discover new ways to gain a competitive advantage across nearly every industry. In order to help corporate business units to capitalize on the rapidly evolving IoT opportunities, IT must stand up to a new set of challenges. In his session at @ThingsExpo, Jeff Kaplan, Managing Director of THINKstrateg...
The Internet of Things promises to transform businesses (and lives), but navigating the business and technical path to success can be difficult to understand. In his session at @ThingsExpo, Sean Lorenz, Technical Product Manager for Xively at LogMeIn, demonstrated how to approach creating broadly successful connected customer solutions using real world business transformation studies including New England BioLabs and more.
How do APIs and IoT relate? The answer is not as simple as merely adding an API on top of a dumb device, but rather about understanding the architectural patterns for implementing an IoT fabric. There are typically two or three trends: Exposing the device to a management framework Exposing that management framework to a business centric logic Exposing that business layer and data to end users. This last trend is the IoT stack, which involves a new shift in the separation of what stuff happe...
An entirely new security model is needed for the Internet of Things, or is it? Can we save some old and tested controls for this new and different environment? In his session at @ThingsExpo, New York's at the Javits Center, Davi Ottenheimer, EMC Senior Director of Trust, reviewed hands-on lessons with IoT devices and reveal a new risk balance you might not expect. Davi Ottenheimer, EMC Senior Director of Trust, has more than nineteen years' experience managing global security operations and asse...
DevOps is all about agility. However, you don't want to be on a high-speed bus to nowhere. The right DevOps approach controls velocity with a tight feedback loop that not only consists of operational data but also incorporates business context. With a business context in the decision making, the right business priorities are incorporated, which results in a higher value creation. In his session at DevOps Summit, Todd Rader, Solutions Architect at AppDynamics, discussed key monitoring techniques...
P2P RTC will impact the landscape of communications, shifting from traditional telephony style communications models to OTT (Over-The-Top) cloud assisted & PaaS (Platform as a Service) communication services. The P2P shift will impact many areas of our lives, from mobile communication, human interactive web services, RTC and telephony infrastructure, user federation, security and privacy implications, business costs, and scalability. In his session at @ThingsExpo, Robin Raymond, Chief Architect...
The 3rd International @ThingsExpo, co-located with the 16th International Cloud Expo - to be held June 9-11, 2015, at the Javits Center in New York City, NY - announces that it is now accepting Keynote Proposals. The Internet of Things (IoT) is the most profound change in personal and enterprise IT since the creation of the Worldwide Web more than 20 years ago. All major researchers estimate there will be tens of billions devices - computers, smartphones, tablets, and sensors - connected to th...
What do a firewall and a fortress have in common? They are no longer strong enough to protect the valuables housed inside. Like the walls of an old fortress, the cracks in the firewall are allowing the bad guys to slip in - unannounced and unnoticed. By the time these thieves get in, the damage is already done and the network is already compromised. Intellectual property is easily slipped out the back door leaving no trace of forced entry. If we want to reign in on these cybercriminals, it's hig...
The definition of IoT is not new, in fact it’s been around for over a decade. What has changed is the public's awareness that the technology we use on a daily basis has caught up on the vision of an always on, always connected world. If you look into the details of what comprises the IoT, you’ll see that it includes everything from cloud computing, Big Data analytics, “Things,” Web communication, applications, network, storage, etc. It is essentially including everything connected online from ha...
SYS-CON Media announced that Centrify, a provider of unified identity management across cloud, mobile and data center environments that delivers single sign-on (SSO) for users and a simplified identity infrastructure for IT, has launched an ad campaign on Cloud Computing Journal. The ads focus on security: how an organization can successfully control privilege for all of the organization’s identities to mitigate identity-related risk without slowing down the business, and how Centrify provides ...