in Security

Panaseer launches continuous Business Risk Perspectives

Posted 24 February 2020 · Add Comment

Panaseer is today launching a world-first in security with the availability of continuous Business Risk Perspectives.


Image by janews / copyright Shutterstock


This is solving one of the biggest challenges in security today – trusted and timely business context into an organisation's technology risk. For the first time, enterprises will be able to continuously monitor total security risk, segmented to critical operations. Panaseer's customers can now use its platform to understand their security risk for any business function and process.

The ability to continuously view risk across all security areas and asset types, personalised for any stakeholder, business process, or business function, paves the way for effective prioritisation and remediation of an organisation's most critical risks. Views can be seen and reported within any preferred security framework, such as NIST and CIS.

McKinsey's report, 'Perspectives on transforming cybersecurity' outlines that identifying business value and context as it relates to a process or function is a key guiding principle to enable organisations to take a unified approach to prioritising digital assets and risk. The report states, "The CISO's team, particularly when it is part of the IT organisation, tends to begin with a list of applications, systems, and databases, and then develop a view of risks. There are two major flaws to this approach. First, it often misses key risks because these can emerge as systems work in combination. Second, the context is too technical to engage the business in decision-making on changes and investments." That is what Business Risk Perspectives set out to address.

Technology powers all facets of business, but previously it has been hard to relate the technology's security risks to different areas of a business. Risks usually stem from people, processes and technologies, both on-premise and on the cloud - at a faster rate than can be addressed by security and risk teams. This makes linking risk to different mission-critical parts of the business a strategic priority.

Andrew Jaquith, industry veteran, CISO of QOMPLX Inc and author of 'Security Metrics: Replacing Fear, Uncertainty, and Doubt' commented, "Every security team operates in a unique business environment, with unique risks, regulatory pressures and internal perspectives. Security measurements and data need to be shown in customised, contextual and concise ways that allows audiences to make effective decisions about the risks they manage."

Panaseer was founded in 2014 to address the security measurement market. It recognised the old, manual, consultant driven way of doing risk assurance was unfeasible, so it pioneered a new category of Continuous Controls Monitoring, with its platform that gives visibility of assets and insight into whether controls are in place and working effectively across them. It also enables automated production of metrics and measurement, which tailor insights to stakeholders at every level, enhancing decision-making from the boardroom to the analyst.

Nik Whitfield, CEO, Panaseer: "Today marks a major milestone in our strategy to become the de facto automation platform for security measurement. Enterprises are struggling with an explosion in data, too many security tools, increasing scrutiny from external bodies and no let-up in the exploitation of control gaps by adversaries. In a world where there's too much of everything, we have to be smart and make effective decisions which best protect the business."

"One CISO summed this up perfectly, "Nobody cares about a vulnerability on a Linux server but everyone cares about a vulnerability in our payments process. Those are the same thing, just described differently." In the past, the technology didn't exist to give us business aligned insight on a continuous basis – another CISO recently told me, "Security metrics are the bane of my life". With our latest platform release, security and risk teams now have an automated way to prioritise and view risk through the perspective they need, empowering the business to operate with confidence and control."
 
 

* required field

Post a comment

Other Stories
Advertisement
Latest News

UK Space Agency backs Covid-19 testing kit drones deliveries

Drones delivering Covid-19 test kits and a mobile app that uses space-derived data to identify and support vulnerable or elderly people who may be suffering from poverty or loneliness, are among the projects that have been backed by new

Hardide Coatings appoints Rob Holmes as VP Aerospace

Advanced surface coating technology company, Bicester based Hardide Coatings, has appointed Rob Holmes as VP Aerospace as the company targets strategic growth in the aerospace and defence sectors.

Aerospace fuel expert celebrates centenary with student lecture

Dr Eric Goodger, a Cranfield University lecturer for many years following his career as a Cranfield academic, will celebrate his 100th birthday this week with a lecture on his favourite topic, fuels and combustion.

Uncoordinated measures restrict reopening of EU borders

A4E and ACI EUROPE, representing Europe’s airlines and airports, are urging EU and Schengen States to do away with politics and follow their agreed, fact-based approach towards lifting the ban on non-essential travel to the EU &

IATA wants post-COVID-19 green recovery to embrace SAF

The International Air Transport Association (IATA) emphasised the aviation industry’s commitment to its emissions reduction goals and called for the International Energy Agency (IEA) to prioritise investment in sustainable

UK Space Agency, ESA and DCMS seek 5G logistics support solutions

The UK Space Agency, European Space Agency (ESA) and DCMS have joined forces to invite companies to submit ideas for how they can use 5G terrestrial and space technology to support the UK’s logistics businesses – from rail to ports, from

Getac SK0707210720
See us at
DVD 2020