Category: Channel News

Comforte AG and ACI Worldwide have announced a partnership together to accelerate payment modernisation with global PCI DSS v4.0 Compliance.

PCI DSS v3.2.1 will be retired on March 31, 2024, as it will underscore the need for businesses and companies to act swiftly and comply with v4.0 until it comes into full effect on March 31, 2025.

Real-time payments software ACI Worldwide and provider of data-centric security solutions comforte AG will focus on offering customers the needed tools and features to meet the new Payment Cards Industry Data Security Standards (PCI DSS) v4.0 standard. In addition, the collaboration will enable ACI Worldwide to use comforte AG’s data-centric security suite of products, which were tested to be compatible with ACI’s service portfolio.

Under this partnership, ACI will use comforte’s data-centric security solutions, which ACI has rigorously tested to be compatible with ACI’s solutions.

PCI DSS is a global standard that provides a baseline of technical and operational requirements designed to protect sensitive payments data. This new version fortifies core security principles while providing more flexibility and guidance to help organizations secure account data now and in the future. Adhering to the new PCI DSS v4.0 standards is not just about compliance but a stride towards payment modernization – offering opportunities for better payment experiences and enabling the adoption of emerging technologies while bolstering protection against cyber threats.

“Market forces and security mandates such as real-time payments and PCI DSS v4.0 are key catalysts for payment modernization, paving the way for growth and innovation across the industry,” said Abe Kuruvilla, Chief Technology Officer of ACI Worldwide. “ACI’s partnership with comforte aligns with our unwavering commitment to provide our customers with the highest levels of security and fraud protection to meet the increasing security demand in this dynamic payment landscape.”

PCI DSS v4.0 requirements for data security at rest move beyond disk-level encryption to protection within applications. comforte’s Data Security Platform meets this requirement by inserting a protection layer into applications that buffers for tokenization or encryption of sensitive data. By leveraging standards-based data encryption, tokenization, and masking, the comforte Data Security Platform provides granular audit and control for regulatory compliance without affecting service levels or compromising efficiency.

“We are proud to partner with a global payment solutions leader like ACI that shares our dedication to customer service, innovation, and security. Customers around the world will benefit from enhancing their data security and privacy while maintaining usability for analysis and powering business processes,” said Michael J. Deissner, CEO at comforte AG. “ACI’s and comforte’s combined expertise and proven solutions will facilitate seamless transactions across diverse platforms while enabling customers to streamline the compliance process and achieve their security objectives.”

The post ACI Worldwide and comforte AG Pave the Way for Payment Modernization with PCI DSS v4.0 Compliance first appeared on IT Security Guru.

The post ACI Worldwide and comforte AG Pave the Way for Payment Modernization with PCI DSS v4.0 Compliance appeared first on IT Security Guru.

Today, Keeper Security have announced the appointment of Dr. Chase Cunningham to its Public Sector Advisory Board. Cunningham’s appointment reflects Keeper Security’s commitment to zero-trust security. Keeper’s early adoption of zero-trust architecture has become a model for national security and cybersecurity organisations preparing to invest in and implement zero trust. As an advisory board member, Cunningham will contribute his expertise to bolster Keeper’s ongoing efforts to meet the shifting cyber demands of the US government as it continues to set the pace toward a future of zero trust.

Cunningham, also known as ‘DrZeroTrust’, has over 20 years of experience in cyber forensics analytics including highly technical work centres within the NSA, CIA and FBI. He is also recognised as a pioneer in zero-trust architecture and market analytics.

Cunningham founded Forrester’s Zero Trust eXtended (ZTX) framework, guiding hundreds of thousands of organisations into the adoption of zero-trust security. His research has revolutionised the security industry, illuminating the efficacy of zero trust in a dynamic, hybrid public sector environment.

“Chase has been instrumental in the development of zero-trust frameworks, and we are thrilled to have him on our Public Sector Advisory Board,” said Darren Guccione, CEO and Co-founder of Keeper Security. “From the start, Keeper has adopted zero trust and zero knowledge as foundational technologies in our cybersecurity platform. The addition of Chase as a new advisor reinforces our vested commitment to protecting the public sector with innovative, next-gen cybersecurity solutions.”

Moving the nation toward zero-trust is a government-wide initiative to modernise the US federal government’s approach to cybersecurity, as mandated by the 2021 President’s Executive Order (EO) 14028. Civilian federal agencies must implement zero trust by September 2024 and many organizations are scrambling to prepare. Cunningham’s appointment to Keeper’s Public Sector Advisory Board will strengthen Keeper’s existing Keeper Security Government Cloud (KSGC) solution, which is already FedRAMP and StateRAMP authorised.

Dr. Cunningham says: “The initiatives the federal government is trying to solve for – cybersecurity, zero trust, national security – are moving targets, especially in the digital space. Keeper provides innovative FedRAMP and StateRAMP Authorised solutions that empower public sector organisations to achieve their goals. Keeper has been a driving force in making zero trust possible for a wide variety of organisations that do business in the public sector, and I’m excited to help them continue and scale that mission.”

The importance of zero-trust has been widely reported on in recent years. In fact, research has revealed that, for many organisations, zero-trust is core to a contemporary cybersecurity strategy.

Cunningham is the Vice President of Security Market Research at G2, a former Chief Cryptologic Technician for the NSA and a former Forrester analyst. Cunningham holds a PhD in Computer and Information Systems Security and Information Assurance, a Master’s in Information Security from Colorado Technical University and a Bachelor of Applied Science from American Military University. He brings deep technical expertise, numerous certifications and operational experience in cybersecurity, national security and zero-trust industries.

The post “Dr. Zero Trust” Chase Cunningham Joins Keeper Security Public Sector Advisory Board first appeared on IT Security Guru.

The post “Dr. Zero Trust” Chase Cunningham Joins Keeper Security Public Sector Advisory Board appeared first on IT Security Guru.

Recent reports indicate that SME resellers specialising in security are optimistic about the future, expecting a better year ahead than the challenges they faced in the previous 12 months. 

With increasing cyber threats and the need for secure and reliable solutions, these resellers are poised to provide valuable services to businesses seeking to safeguard their networks and data.

Mark Appleton, Chief Customer Officer at ALSO Cloud UK, believes many businesses are putting a greater focus in security solutions to safeguard themselves from cyber threats and thus, increasing their profits.

“SMEs need to ensure that they are well-prepared to meet the increasing demand in the market; the priority should be focused on investing in the right security solutions that can protect their business from potential cyber threats. This can include implementing firewalls, antivirus software, and other security measures to safeguard their systems and data.

By investing in the right security solutions and delivering top-notch customer service, SMEs can differentiate themselves from their competitors and build a solid reputation in the market. This will help them retain and attract new customers, leading to increased revenue and business growth”. 

Appleton concluded that SMEs face complex security challenges requiring a nuanced approach to risk mitigation.

“SMEs should take a proactive approach towards security measures to safeguard their assets and stakeholders. The most common cyber-attacks that SMEs face include phishing attacks, ransomware, data breaches, and malware infections. 

These attacks can lead to financial losses, damage to reputation, and disruption of business operations. Therefore, SMEs must implement strong security measures and update themselves on the latest cybersecurity practices. The Channel can also be vital in protecting SMEs from security threats.” 

The post The Channel can help SMEs protect themselves from increasing security threats first appeared on IT Security Guru.

The post The Channel can help SMEs protect themselves from increasing security threats appeared first on IT Security Guru.

Own Company, a leading SaaS data platform, today announced the launch of a global Channel Partner Program aimed at empowering resellers and system integrators to proactively prevent their customers from losing mission-critical data and metadata. With automated backups and rapid, stress-free recovery, Own partners will be equipped with the essential resources, skills, and support necessary to generate new lines of business and increase profit margins.

“Our new Channel Partner Program not only underscores our commitment to protect and activate SaaS data, but also unfolds a vast realm of opportunities for our partners,” said Kevin Delane, Chief Revenue Officer at Own. “This launch marks a pivotal moment in our ongoing efforts to nurture and fortify our partner ecosystem, setting the stage for mutually beneficial growth and success.”

The Channel Partner Program will give partners access to exclusive benefits and incentives, including partner-led services, deal registration, partner pricing and discounts, marketing support, and training and enablement.

Key Features and Benefits: 

  1. Partner Tiering: Introducing partner tiers to provide additional benefits and incentives.
  2. Training & Certifications: Access to sales and technical enablement and certifications.
  3. Incentives & Financial Rewards: Partner discounting, revenue incentives, and rebate programs.
  4. Partner Support: Launch of deal registration program, dedicated Own partner and technical partner manager support, and customer service resources.
  5. Sales and Marketing Support: Partner-guided POCs, partner-led service opportunities, and access to MDF and marketing campaigns.

“Own Company is a valued CDI partner for Data Protection of our clients’ mission critical SaaS applications,” said Anthony Chianese, EVP Sales at CDI. “We have seen phenomenal engagement with our partnership, and are looking forward to continued growth in 2024 with the launch of the Own Channel Partner program.”

“Carahsoft is excited about the launch of Own’s partner program, which offers a wealth of benefits to our collaboration,” said Craig P. Abod, President at Carahsoft Technology Corp., The Trusted Government IT Solutions Provider®. “This program empowers us to strengthen our partnership with Own and our reseller network, extending valuable resources to our Government customers and enabling them to confidently safeguard and activate their mission-critical SaaS data. With these exciting prospects, we look forward to delivering even greater value to constituents and communities.”

“Our partnership with Own Company significantly strengthens our commitment to providing secure and resilient DevOps solutions,” said Christie Marsh, VP Alliances at Copado. “With the rollout of their new partner program, we are thrilled to incorporate their exceptional backup and recovery features into our platform. This integration empowers our shared clients to conduct their operations with enhanced confidence and agility, knowing their critical data is well-protected and easily recoverable in any scenario.”

The post Own Company Unveils New Channel Partner Program first appeared on IT Security Guru.

The post Own Company Unveils New Channel Partner Program appeared first on IT Security Guru.

Today, intelligence-powered cybersecurity pros Centripetal have announced a strategic partnership with Renaissance, the leading Irish value-added distributor in Ireland. This collaboration marks a significant milestone in bolstering Ireland’s cybersecurity landscape and underscores the commitment to combating the rising tide of cyber threats. Additionally, this partnership bolsters Centripetal’s channel presence.

The cost and complexity of protecting IT assets from cyberthreats is increasing and enterprises are struggling to know where best to invest their efforts and budgets for maximum impact. Centripetal’s CleanINTERNET® delivers real-time protection against all known cyber attacks by operationalising the world’s largest collection of threat intelligence, in real-time. The solution also provides a team of elite, highly skilled, intelligence operational analysts augmented by AI technology to monitor and protect an organization’s network. 

“In an age where the digital terrain is rife with escalating cyber threats, Centripetal stands as a crucial ally for Irish organizations in pursuit of thorough protection,” said Michael Conway, Director at Renaissance. “This partnership signifies a transformation in the cybersecurity landscape of Ireland. CleanINTERNET® not only delivers a robust alternative protection strategy but does so at a dramatically lower cost, redefining the landscape of digital defense.”

With this partnership, Centripetal and Renaissance aim to empower Irish organisations to stay ahead of cyber threats, reinforcing the importance of intelligence-powered cybersecurity in an era where traditional, legacy, methods fall short. 

“This collaboration marks a significant milestone, extending the reach of proactive, intelligence-powered cybersecurity solutions to organizations across Ireland,” added Dave Silke, European MD at Centripetal. “Together, we are excited to elevate the standards of digital defense in the Irish market.”

Earlier this year, Centripetal announced their physical expansion into Ireland by opening a Galway office, the European Cyber Intelligence Centre of Excellence. This happened at the same time as their CleanINTERNET® technology expanded to the Cloud.

The post Centripetal Expands Channel Program With Irish Renaissance Partnership first appeared on IT Security Guru.

The post Centripetal Expands Channel Program With Irish Renaissance Partnership appeared first on IT Security Guru.

Today, threat intelligence powered cybersecurity pros Centripetal have  launched their partner program to protect organisations around the world by operationalising threat intelligence to safeguard them from every known cyberthreat. 

The Centripetal Global Partner Program gives organisations the opportunity to implement a stronger approach to cybersecurity, putting operationalised threat intelligence at the forefront, moving from a reactive to proactive defence, and helping security teams be more efficient and effective. Critical results and findings can be identified by Centripetal’s CleanINTERNET® solution within minutes after install is complete. 

“We remain consistently amazed by Centripetal’s CleanINTERNET® solution and its ability to safeguard internet traffic from well-known threat actors” stated Chuck Veth, CEO at CVM. “Unlike traditional firewalls that assess traffic validity, this technology focuses solely on public endpoints, cross-referencing them with extensive threat intelligence feeds containing countless identifiers. It’s truly impressive to witness their increased dedication and investment in their partner program. CleanINTERNET’s® distinctive patented technologies leverage global threat intelligence and technical innovation, establishing it as both the initial and ultimate line of defence.”

“In an era where the digital landscape increasingly fraught with cyber threats, Centripetal is a vital asset for Irish organisations seeking comprehensive protection,” said Michael Conway, Director at Renaissance. “Centripetal’s Global Partner Program extends the scope of their cutting-edge cybersecurity solutions, offering organizations a real-time view of threat analysis and access to actionable global threat intelligence, enabling them to proactively address emerging security threats.”

The Centripetal Global Partner Program provides channel partners with Centripetal’s innovative and patented solution, which includes a wealth of experienced professionals, with expertise, and exponential growth.

“Our global partners are pivotal in driving the proactive adoption of CleanINTERNET® within the enterprise landscape,” added Dave Silke, CMO at Centripetal. “Together, we fortify organizations with the knowledge and tools needed to stay ahead of emerging threats, securing a safer digital future for all.”

Earlier this year, Centripetal announced the expansion of its CleanINTERNET® technology to the Cloud.

The post Centripetal Launches Global Partner Program first appeared on IT Security Guru.

The post Centripetal Launches Global Partner Program appeared first on IT Security Guru.

Keeper Security, a provider of zero-trust and zero-knowledge cybersecurity software protecting passwords, passkeys, privileged access, secrets and remote connections, has announced that Keeper Secrets Manager (KSM) can now be integrated with ServiceNow. This integration enables enterprises to manage and protect their secrets with a fully managed, cloud-based platform that is both affordable and easy to deploy.

 

KSM is Keeper’s platform for securing infrastructure secrets such as API keys, database passwords, access keys, certificates and more. KSM secures an organisation’s environment and eliminates secrets sprawl by removing hard-coded credentials from source code, config files and CI/CD systems. ServiceNow provides workflow automation, service management and business-process automation solutions to enterprises around the globe. Through the integration, ServiceNow customers can use KSM for efficient and secure on-demand discovery, incident response and as a custom credential provider.

 

“By integrating with Keeper, ServiceNow users now have the ability to dynamically retrieve credentials from the Keeper Vault without storing any credentials on the instance,” said Craig Lurey, CTO and Co-founder of Keeper Security. “This furthers our mission to provide cost-effective, efficient and robust cybersecurity solutions and empowers DevOps and DevSecOps teams with the critical tools they need to manage and protect their secrets.

 

“Partnerships succeed best when we lean into our unique skills and expertise and have a clear view into the problem we’re trying to solve,” said Erica Volini, senior vice president of global partnerships at ServiceNow. “Keeper Secrets Manager extends our reach well beyond where we can go alone and represents the legacy and goals of the Now Platform. I am thrilled to see the continued innovation we will achieve together to help organisations succeed in the era of digital business.”

 

To help enterprises improve their security posture, the ServiceNow Management, Instrumentation, and Discovery Server integration with the Keeper Vault enables ServiceNow Orchestration, ServiceNow Discovery and ServiceNow Service Mapping to seamlessly retrieve credentials from the user’s vault.  No credentials are stored on the ServiceNow instance, which is critically important to avoid integration and audit challenges, and reduce an organisation’s attack surface. ServiceNow users can eliminate secrets sprawl through this integration with KSM, avoiding potentially devastating security risks and compliance issues.

 

By supporting external credential storage for discovery and orchestration, and allowing usage as a Custom Credential Provider, this new integration provides customers with unprecedented security, efficiency and ease-of-use.

 

 

 

The post Keeper Security Announces Integration with ServiceNow first appeared on IT Security Guru.

The post Keeper Security Announces Integration with ServiceNow appeared first on IT Security Guru.

CREST and IASME are delighted to announce their partnership with the NCSC to help deliver its new Cyber Incident Exercising scheme. The NCSC (National Cyber Security Centre) has created the scheme to help organisations find high quality providers that can advise and support them to effectively practise their cyber incident response plan.

The benefits of exercise are clear, and this extends to practising a cyber incident response plan. While practise might not make perfect, it does build resilience. An organisation that rehearses their incident response plan is better placed to respond to cyber attacks and can get back up and running again quicker than those who don’t.

Organisations wishing to join the CIE scheme will be assessed against the NCSC CIE Standard. CREST and IASME will both manage the assessment, onboarding, monitoring and offboarding of providers assured under the Cyber Incident Exercising scheme on behalf of the NCSC. The organisations were selected for this role because they both meet the NCSC’s high standards and offer a choice for potential providers and different routes into the scheme.

Dr Emma Philpott MBE, CEO of IASME says, “We are really looking forward to working with companies of all sizes and in all areas of the UK to deliver this important scheme. We feel strongly about ensuring that the scheme is accessible for smaller cyber security companies to become assured providers and we encourage you to contact us to discuss becoming a provider if this is something that interests you.”

Rowland Johnson President at CREST explains “We are delighted to be helping deliver this important new scheme for the NCSC by assessing and onboarding Assured Service Providers.  With rising cyber attacks on enterprises of all types, effective cyber incident response is one of the most important parts of building cyber resilience. This will give all organisations who want to test their incident response, access to Assured Service Providers who can support them.”

The Cyber Incident Exercising scheme provides assurance of companies which deliver two types of cyber exercises to organisations that want to test their existing cyber incident response plans:

Table-Top – discussion-based sessions where participants talk about their roles and responsibilities, activities and key decision points (following their organisation’s incident response plan) in relation to a pre-agreed scenario.

Live-Play – more in-depth sessions in which participants execute their roles and responsibilities to respond to events in a real world cyber scenario. Activities are tailored to the organisation and take place in close to real-time, providing a realistic simulation of a cyber event. Live play exercises are best suited to mature organisations looking for in-depth validation of plans.

The scope of the CIE standard covers exercises designed to simulate incidents which have a significant impact on a single client organisation. It does not cover incidents spanning multiple organisations or Category 1 and Category 2 incidents as defined by the UK’s Cyber Attack categorisation system.

The new CIE scheme will launch officially later this year when exercising providers have been assured and on-boarded, ready to offer services.

Notes for editors

For more information from the NCSC go to CIE Scheme standard

For more information about the scheme and how to apply go to:

https://iasme.co.uk/cyber-incident/

https://www.crest-approved.org/membership/ncsc-cyber-incident-exercise-scheme/

The first Assured Service Providers for the scheme will be available soon. They will be listed on the website of the relevant Delivery Partner and on the NCSC website once they are available.

The post CREST and IASME announce partnership with the NCSC to deliver Cyber Incident Exercising scheme appeared first on IT Security Guru.

cyberelements, the Zero Trust Privileged Access Management (PAM) platform, today announces its strategic partnership with leading technology distributor, ABC Distribution heralding a new era in access security across Europe and beyond. cyberelements’ pioneering Zero PAM platform is set to transform how organisations secure access for standard and privileged users to critical business applications and assets.

The significance of secure access on business performance is paramount. Seamless connectivity to applications instils operational efficiency, enabling workforces to function at their best. cyberelements.io ensures rapid setup and access to IT/OT systems, a process that takes mere minutes for end users and IT service providers. The platform seamlessly integrates remote access for regular users and PAM for critical users, whether internal or external to the organisation.

“cyberelements brings a new era in access security by making it not only effective but also accessible to businesses of all sizes,” comments, Chris Walsh, Managing Director of ABC Distribution. “This partnership underscores our commitment to delivering innovative solutions that empower organisations to enhance their security posture.”

Traditional cybersecurity tools often present challenges in configuration and integration, leading to gaps in protections. While detection and response solutions are vital, the cornerstone of defence lies in Zero Trust principles. Industry experts agree that Identity and Access Management (IAM) and Privileged Access Management (PAM) should converge in a unified platform to ensure the enforcement of robust Zero Trust security policies.

Jonathan Fussner, Head of cyberelements, said, “After a decade in the cybersecurity domain, our team is proud to introduce the first Zero Trust access security SaaS Platform in Europe. We understand the daily challenges faced by CISOs and CIOs, and our platform addresses these concerns head-on. Easy, swift, and secure access is pivotal to driving business performance.”

With cyberelements, businesses can establish secure access for all users, both regular and privileged, in a matter of minutes. This approach embraces the Zero Trust paradigm, considering identity and context as the new security perimeter, revolutionising access security in the European market.

ABC Distribution brings a wealth of experience in supporting vendors from initial market entry to mainstream adoption. The company’s expertise extends to working with both innovative startups and established challengers in the technology landscape. 

The partnership between ABC Distribution and cyberelements sets a new standard in access security, offering organisations a streamlined and robust solution to protect their digital perimeters.

To discuss how you can secure your business with cyberelements, visit the team at International Cyber Expo 2023 (26-27 September 2023) at Olympia London on Stand L40.

The post Cyberelements Partners with ABC Distribution Partners to Revolutionise Privileged Access Management in Europe appeared first on IT Security Guru.

Lookout, Inc., the data-centric cloud security company, today announced the availability of Lookout Mobile Endpoint Security to CrowdStrike channel partners and customers via the CrowdStrike Marketplace. As part of CrowdStrike’s world-class ecosystem of compatible solutions from trusted partners, Lookout will be the first mobile threat defence solution in the CrowdStrike Marketplace.

While remote work is becoming the new normal for businesses around the world, many struggle to secure an increasingly mobile-centric environment. According to The Global State of Mobile Phishing Report published by Lookout, 2022 saw the highest mobile phishing encounter rate ever, with more than 50% of personal devices exposed to a mobile phishing attack. Lookout estimates the potential annual financial impact of a mobile phishing attack to an organisation of 5,000 employees is nearly $4 million.

Lookout Mobile Endpoint Security provides visibility into mobile threats and state-sponsored spyware, while protecting against mobile phishing and credential theft. The platform analyses telemetry from more than 215 million devices, 269 million apps, and millions of web destinations to uncover hundreds of phishing domains each day.

“With the CrowdStrike Marketplace, we make it easy for customers to have flexibility and choice through integrations with best-of-breed security products into the CrowdStrike Falcon® platform,” said Daniel Bernard, Chief Business Officer, CrowdStrike. “Lookout’s Mobile Endpoint Security is a great example of an innovative partner security solution that addresses the critical security challenges that organisations face when employees connect their mobile devices to corporate networks.”

“The rapidly evolving threat landscape calls for a collaborative approach that brings together best-in-class solutions to secure the new hybrid workforce,” said Jim Dolce, Lookout CEO. “Being listed in the CrowdStrike Marketplace is a great opportunity for organisations to directly procure Lookout’s advanced mobile security solution to help execute a comprehensive security strategy.”

Lookout at Crowdstrike Fal.Con 2023

Today through September 21, Lookout will join CrowdStrike and thousands of cybersecurity’s best as a Platinum sponsor of CrowdStrike Fal.Con 2023 at Caesars Palace in Las Vegas. Attendees are invited to booth #802 to witness first-hand why Lookout Mobile Endpoint Security is the industry’s most advanced mobile threat defence platform.

On Tuesday, September 19 at 8:30 a.m. PDT in the Partner Theater @The Hub, Justin Albrecht, Lookout Director of Mobile Threat Intelligence, will host a speaking session titled “Phishing Tricks and Zero Clicks: Tracking Mobile Threats.” This session will shed light on the importance of viewing mobile devices as endpoints requiring protection, sharing trends, and reporting on mobile threats while offering unique insights into Lookout’s intelligence on APT activity targeting this often-overlooked sector.

To access Lookout Mobile Endpoint Security on the CrowdStrike Marketplace, click here.

The post Lookout Announces CrowdStrike Marketplace Availability of Mobile Threat Defense appeared first on IT Security Guru.