Four Inc. | June 01, 2022
Synopsys, Inc. has named Four Inc. as a federal aggregator. As part of Four Inc.'s boutique aggregation program, Four Inc. will deliver Synopsys Software Integrity Group application security solutions to the federal government through its government contract vehicles and network of channel partners. The program includes multi-year financial solutions and as-a-service products to support and develop Synopsys' government business.
Our agreement with Four Inc. is a milestone that will help expand the Synopsys portfolio's reach within the Federal IT ecosystem via a trusted federal aggregator. Broadening our business through the channel is one of our top strategic priorities. This agreement signals the continued momentum and growth we expect by further extending our world-class application security solutions through the channel in the Federal space moving forward."
Tom Herrmann, vice president of global channels and alliances within the Synopsys Software Integrity Group
Synopsys has been named a six-time Gartner® Magic QuadrantTM Leader for Application Security Testing, a three-time Forrester WaveTM Leader for Software Composition Analysis, and a two-time Forrester WaveTM Leader for Static Application Security Testing.
The Synopsys Software Integrity Group assists development teams in producing safe, high-quality software while minimizing risks and increasing productivity. Synopsys is a well-known leader in application security. Its static analysis, software composition analysis, and dynamic analysis tools help teams quickly find and fix vulnerabilities and problems in proprietary code, open source components, and application behavior.
Jeff Nolan, Four Inc.’s COO, avers that their government customers are more vulnerable to sophisticated cyber assaults that target vulnerabilities in source code development and network-based applications. They say Synopsys is a great fit for their boutique aggregation platform of services, and they are delighted to work with them. They are also happy to be able to offer their channel partners and government clients Synopsys application security testing solutions that are made to stop these threats.
CrowdStrike | June 03, 2022
CrowdStrike, a leader in cloud-delivered endpoint, cloud workload, identity, and data security, today announced that the Falcon Identity Threat Protection module for its GovCloud-1 environment is now generally available. Falcon Identity Threat Protection is now available to U.S. public sector enterprises that require FedRAMP Moderate or Impact Level 4 (IL-4) authorization. This covers federal agencies in the United States, state and local governments in the United States, and the Defense Industrial Base (DIB).
In May 2021, the White House issued Executive Order (EO) 14028, which defined security best practices, including how the federal government should progress toward a Zero Trust Architecture to stay up with today's dynamic and increasingly complex cyber threat environment. CrowdStrike believes that identity protection and Zero Trust principles should be applied to hybrid and multi-cloud systems. Customers' on-premises and cloud settings, as well as other identity suppliers, require all-encompassing identity protection. A breach can occur if a section of the architecture or the authentication flow is not visible.
Falcon Identity Threat Protection works with the most popular identity providers (IdPs), allowing clients to implement multi-factor authentication (MFA).
Customers can use the same MFA for on-premises authentication processes using this integration, and those who desire can use several IdPs. If a compromised identity is found, Falcon Identity Threat Protection can stop it from authenticating and getting to more resources on-premises or in the cloud.
According to the2022 CrowdStrike Global Threat Report, nearly 80% of cyberattacks leverage identity-based attacks to compromise legitimate credentials. We are committed to helping the U.S. public sector protect against identity-based threats. With GovCloud-1 support, Falcon Identity Threat Protection can enable U.S. public sector organizations to get visibility and control of their identity infrastructure and apply Zero Trust principles.”
Shawn Henry, CrowdStrike chief security officer and president of CrowdStrike Services
"As agencies adopt Zero Trust, they need to continuously verify user identity and device posture," said Katy Mann, VP of Federal at Okta. "Through our partnership with CrowdStrike, Falcon Identity Threat Protection examines authentication requests in real-time, sharing risk scores with Okta for access policy enforcement. That way, agencies are confident that only the right people with secure devices can access mission-critical resources. And users benefit from a simpler experience and seamless single sign-on across apps. Together, Okta and CrowdStrike are accelerating the transition to Zero Trust."
MSPAlliance | March 23, 2022
In conjunction with MSPWorld 2022, the International Association of Cloud & Managed Service Providers (MSPAlliance) announced a new program designed to address the cybersecurity talent shortage facing the managed services profession. Featuring a partnership with Boise State University and Stellar Cyber, the program has an overall goal of creating Managed Service Provider (MSP)-specific business, technical, and cybersecurity training, along with job placement tools. The program will be launched in the coming months and will begin producing viable MSP security candidates for hire within the year.
This program will leverage existing cyber and general educational capabilities of organizations such as Boise State, combined with cybersecurity-specific training of students on actual technology tools used by MSPs, such as Stellar Cyber's Open XDR platform. Further, MSPAlliance will be contributing MSP-specific business and operational content to make the students highly attractive to MSPs looking to fill positions.
We have known for a long time that MSPs were facing difficulty in identifying, hiring, and training employees who had necessary skills. Through this partnership with Stellar Cyber and Boise State, we are taking the first steps to solving this problem and bringing much-needed help to the MSP profession."
Celia Weaver, president and co-founder of MSPAlliance
While many cybersecurity training programs do exist, they fall short of the specific needs of the global MSP profession in several areas. First, the candidates graduating from a vast number of traditional computer science programs are not being trained on current technologies used by MSPs. Second, the graduates do not possess the specific knowledge necessary to make them relevant to MSPs. Third, the graduates do not have relevant work experience, also needed to improve their utility to the MSP profession. This program will address all three of these issues.
Boise State, a leader in cybersecurity education, will accelerate real-world training for new students as well as MSP analysts who want to upgrade their skillsets to offer Managed Security Service Provider (MSSP) services. Boise State's new Cyberdome leverages Stellar Cyber's Open XDR platform in the University's in-house MSSP service, which provides enterprise-class security to rural schools and communities throughout Idaho while significantly enhancing students' cybersecurity skills in a real-world environment.
"At Boise State, we built this program to become a competency hub for new students as well as working analysts looking to broaden their skills to work effectively in a cybersecurity provider environment," said Edward Vasko, CISSP and director of the Boise State Institute for Pervasive Cybersecurity. "With this announcement, the MSP industry now has a partner inside the education community that believes in the mission we're trying to accomplish."
"We are excited to help solve one of cybersecurity's biggest business problems—talent shortage," said Mark Porter, President and CEO at High Wire Networks, a Stellar Cyber Master MSSP Partner. "With our human capital management expertise and SOC services, we can help build a pipeline of security analysts who will help the MSP community reach their customers more effectively and efficiently."
Stellar Cyber's Open XDR platform provides the cybersecurity technology that underpins the Cyberdome program. Thanks to its ease-of-use and comprehensive, "everything detection and response" functionality and AI-driven analytics, the platform quickly prepares Boise State students for careers in cybersecurity.
"This is great news for MSPs who want to add security services to their offerings but can't find any analysts to deliver it," said Brian Stoner, vice president of MSSP at Stellar Cyber. "Our Open XDR platform is ideal for MSPs who want to capitalize on the hot market for cybersecurity services, and Boise State's Cyberdome program has the potential of enabling security analysts to meet our industry partner demand."
MSPAlliance is a global industry association and accrediting body for the Cyber Security, Cloud Computing, and Managed Services Provider (MSP) industry. Established in 2000 to help MSPs become better MSPs. Today, MSPAlliance works with cloud computing and managed service provider corporate members worldwide in a collaborative effort to assist its members, along with foreign and domestic governments, on creating standards, setting policies, and establishing best practices.
About Boise State University's Institute for Pervasive Cybersecurity
Boise State University's Institute for Pervasive Cybersecurity is a leader of innovative cybersecurity research and advancement in Idaho and the region. The Institute welcomes and facilitates strategic partnerships with industry, higher education, business, and government to improve cybersecurity for Idaho and the nation. The Institute also works to commercialize ground-breaking research and tools, and educate graduates to become the change-makers and forward-thinkers of the 21st century.
About Stellar Cyber
The Stellar Cyber Open XDR platform delivers Everything Detection and Response by ingesting data from all tools, automatically correlating alerts into incidents across the entire attack surface, delivering fewer and higher-fidelity incidents, and responding to threats automatically through AI and machine learning. The Stellar Cyber XDR Kill Chain, fully compatible with the MITRE ATT&CK framework, is designed to characterize every aspect of modern attacks while remaining intuitive to understand. This reduces enterprise risk through early and precise identification and remediation of all attack activities while slashing costs, retaining investments in existing tools and accelerating analyst productivity. Typically, Stellar Cyber delivers an 8x improvement in MTTD and a 20x improvement in MTTR. The company is based in Silicon Valley.