in Security

Panaseer launches continuous Business Risk Perspectives

Posted 24 February 2020 · Add Comment

Panaseer is today launching a world-first in security with the availability of continuous Business Risk Perspectives.


Image by janews / copyright Shutterstock


This is solving one of the biggest challenges in security today – trusted and timely business context into an organisation's technology risk. For the first time, enterprises will be able to continuously monitor total security risk, segmented to critical operations. Panaseer's customers can now use its platform to understand their security risk for any business function and process.

The ability to continuously view risk across all security areas and asset types, personalised for any stakeholder, business process, or business function, paves the way for effective prioritisation and remediation of an organisation's most critical risks. Views can be seen and reported within any preferred security framework, such as NIST and CIS.

McKinsey's report, 'Perspectives on transforming cybersecurity' outlines that identifying business value and context as it relates to a process or function is a key guiding principle to enable organisations to take a unified approach to prioritising digital assets and risk. The report states, "The CISO's team, particularly when it is part of the IT organisation, tends to begin with a list of applications, systems, and databases, and then develop a view of risks. There are two major flaws to this approach. First, it often misses key risks because these can emerge as systems work in combination. Second, the context is too technical to engage the business in decision-making on changes and investments." That is what Business Risk Perspectives set out to address.

Technology powers all facets of business, but previously it has been hard to relate the technology's security risks to different areas of a business. Risks usually stem from people, processes and technologies, both on-premise and on the cloud - at a faster rate than can be addressed by security and risk teams. This makes linking risk to different mission-critical parts of the business a strategic priority.

Andrew Jaquith, industry veteran, CISO of QOMPLX Inc and author of 'Security Metrics: Replacing Fear, Uncertainty, and Doubt' commented, "Every security team operates in a unique business environment, with unique risks, regulatory pressures and internal perspectives. Security measurements and data need to be shown in customised, contextual and concise ways that allows audiences to make effective decisions about the risks they manage."

Panaseer was founded in 2014 to address the security measurement market. It recognised the old, manual, consultant driven way of doing risk assurance was unfeasible, so it pioneered a new category of Continuous Controls Monitoring, with its platform that gives visibility of assets and insight into whether controls are in place and working effectively across them. It also enables automated production of metrics and measurement, which tailor insights to stakeholders at every level, enhancing decision-making from the boardroom to the analyst.

Nik Whitfield, CEO, Panaseer: "Today marks a major milestone in our strategy to become the de facto automation platform for security measurement. Enterprises are struggling with an explosion in data, too many security tools, increasing scrutiny from external bodies and no let-up in the exploitation of control gaps by adversaries. In a world where there's too much of everything, we have to be smart and make effective decisions which best protect the business."

"One CISO summed this up perfectly, "Nobody cares about a vulnerability on a Linux server but everyone cares about a vulnerability in our payments process. Those are the same thing, just described differently." In the past, the technology didn't exist to give us business aligned insight on a continuous basis – another CISO recently told me, "Security metrics are the bane of my life". With our latest platform release, security and risk teams now have an automated way to prioritise and view risk through the perspective they need, empowering the business to operate with confidence and control."
 
 

* required field

Post a comment

Other Stories
Advertisement
Latest News

Amphenol Invotec supporting NHS ventilator challenge

The Amphenol Invotec team have answered the UK Government 'Call for businesses to help make NHS ventilators' and are now actively engaged in producing accelerated and volume production of 180,000 PCBs, equivalent to 30,000

IATA sees 25 million jobs at risk

The International Air Transport Association (IATA) has released new analysis showing that some 25 million jobs are at risk of disappearing with plummeting demand for air travel amid the COVID-19 crisis.

Peli donates products to Italian Red Cross

A large number of Peli 9600 Linear Lighting units have been donated to the Italian Red Cross to help build and maintain field hospitals and emergency first response centres across Italy.

Dstl scientists helping conquer spread of COVID-19

The Defence Science and Technology Laboratory (Dstl) is carrying out vital work in partnership with a number of organisations including Public Health England (PHE) and the National Health Service (NHS) to get the COVID-19 outbreak

ALA acquires Germany based Industrio GmbH

ADS member ALA – Advanced Logistics for Aerospace, has acquired a majority stake in Germany based Industrio GmbH.

Airspace User Portal to be suspended

From 30th April 2020, drone users, General Aviation pilots and those submitting Non-Standard Flight (NSF) applications will no longer be able to do so via the Airspace User Portal (AUP), so after that date, users should revert to the

AVMENA20 SK14191020
See us at
DVD 20203CDSE BT2702150720SMI favws BT0602040620