Government Business, Cybersecurity
Prweb | July 26, 2023
Today, iboss, the leading Zero Trust cloud security provider, is proud to announce that it has achieved State Risk and Authorization Management Program (StateRAMP) Authorized status. This milestone is indicative of iboss' unyielding dedication to assisting state agencies and local governments to secure their users and data from an evolving landscape of cyber threats.
StateRAMP provides an equivalent security baseline to FedRAMP. iboss takes pride in being able to meet and exceed both of these rigorous security standards. With rising challenges posed by cybersecurity threats to government agencies, iboss provides an innovative, robust solution that reduces risks, lowers costs, and increases productivity and security.
Built on a revolutionary Zero Trust Security Service Edge (SSE) platform, iboss provides a comprehensive and integrated cloud-based security solution that replaces legacy VPNs, Proxy appliances, and VDI with a single, unified service. The iboss platform includes ZTNA to replace legacy VPN, Security Service Edge to replace legacy proxies, and Browser Isolation to replace legacy VDI.
iboss includes ZTNA, CASB, malware defense, compliance policies, DLP, Browser Isolation, and logging that applies to users inside and outside the office. It scales to secure traffic volume as functionality is delivered within the cloud security service instead of strictly with appliances hosted within the data center.
The iboss Zero Trust SSE implements the concepts in the NIST 800-207 and is a technical implementation of the centerpiece of this model. Organizations, such as state and local government agencies, wishing to implement Zero Trust according to the NIST 800-207 Zero Trust Architecture principles can use iboss to do so as it forms the technology foundation of this architecture. The NIST 800-207 model provides a strong and clear foundation for organizations to implement Zero Trust which greatly reduces cyber risk, breaches, and data loss.
“Achieving the StateRAMP certification signifies that the iboss Zero Trust SSE platform meets the rigorous security standards required by state and local governments,” said Paul Martini, CEO of iboss. “We’re proud to achieve this certification, as it strengthens our mission to provide government entities with the most secure, efficient, and comprehensive Zero Trust Security solutions.”
StateRAMP is a program that delivers a uniform approach to security assessment, authorization, and continuous monitoring for cloud products and services for state and local governments.
iboss is a cloud security company that enables organizations to reduce cyber risk by delivering a Zero Trust Security Service Edge platform designed to protect resources and users in the modern distributed world. Applications, data, and services have moved to the cloud and are located everywhere, while users needing access to those resources are working from anywhere.
The iboss platform replaces legacy VPN, Proxies, and VDI with a consolidated service that improves security, increases the end-user experience, consolidates technology, and substantially reduces costs. Built on a containerized cloud architecture, iboss delivers security capabilities such as SWG, malware defense, Browser Isolation, CASB, and Data Loss Prevention to protect all resources via the cloud instantaneously and at scale. The iboss platform includes ZTNA to replace legacy VPN, Security Service Edge to replace legacy Proxies, and Browser Isolation to replace legacy VDI. This shifts the focus from protecting buildings to protecting people and resources wherever they are located. Leveraging a purpose-built cloud architecture backed by 230+ issued and pending patents and more than 100 points of presence globally, iboss processes over 150 billion transactions daily, blocking 4 billion threats per day. More than 4,000 global enterprises trust the iboss platform to support their modern workforces, including a large number of Fortune 50 companies. iboss was named a Leader in the IDC MarketScape for Worldwide ZTNA, one of the Top 25 Cybersecurity Companies by The Software Report, one of the 25 highest-rated Private Cloud Computing Companies to work for by Battery Ventures, and CRN’s top 20 Coolest Cloud Security Companies.
Emerging Technology, Cybersecurity
PR Newswire | August 18, 2023
Axiad, a leading provider of organization-wide passwordless orchestration, today announced a new Unified Credential Management System (UCMS) package calledPasswordless for Air Gapped and Critical Environmentsto meet the phishing-resistant requirements of The White House Executive Order (EO) 14028. This package brings passwordless authentication and end user self-service capabilities to air gapped and critical infrastructure environments that integrate Microsoft Security solutions. Overall, the package helps government agencies as well as critical infrastructure and defense industrial base (DIB) organizations maximize security and end-user acceptance and minimize security overhead.
In the United States, critical infrastructure systems continue to be a top target for cybercriminals. In fact,Microsoft reportedthat critical infrastructure cyberattacks doubled in 2022 from 20% to 40% of nation-state-sponsored attacks. Because of this, the U.S. government, via EO 14028 on improving the nation's cybersecurity, has mandated security measures, including strong passwordless multi-factor authentication (MFA), for government agencies and is strongly recommending the use of this technology for critical infrastructure.
In response to this growing need, Axiad's Passwordless for Air Gapped and Critical Environments provides a seamless way for organizations to integrate government-grade, phishing-resistant passwordless authentication as well as key functional and operational support into on-premises air gapped environments.
The new package provides full interoperation with a range of Microsoft products – including Microsoft Active Directory Federation Services and Microsoft Certificate Authority – to ensure authentication is highly secure and consistent and customers get maximum value out of their existing environments. Additionally, it provides credential management and self-service credential enrollment and account recovery (CEAR), which are critical capabilities due to the high costs or the complete lack of on-site IT support in air gapped environments.
"Organizations with air gapped and critical infrastructure environments need passwordless authentication and a range of physical and platform authenticators to help prevent cyber-attacks," said Jerome Becquart, chief operating officer at Axiad. "With this new package, Axiad is the first company to provide all these elements plus the critical missing ingredient – self-service authentication management, including enrollment and account recovery – and bring them to the on-premises Microsoft ecosystem."
Axiad's Passwordless for Air Gapped and Critical Environments provides the following unique capabilities:
Strong Authentication:The package provides government-grade FIPS 140 validated passwordless authentication with the flexibility needed to accommodate the full range of needs of employees, contractors, vendors and suppliers. For example, it offers a range of passwordless options, including both physical (YubiKeys, smart cards, PIV cards, USB keys, etc.) and platform (virtual smart cards).
Powerful Self-Service Capabilities:Axiad AirLock, which provides help desk automation by eliminating temporary passwords, provides self-service credential enrollment, and Axiad MyCircle provides self-service account recovery within a trusted circle of colleagues rather than waiting for the help desk to respond – both of which help to increase operational efficiencies for frontline workers and reduce IT costs.
Ready Implementation:The package's architecture is made to operate in air gapped environments and to seamlessly interoperate with existing authentication and infrastructure investments without requiring upgrades. This package fully leverages and extends the life of Microsoft authentication (e.g., Microsoft Active Directory) and infrastructure (e.g., Microsoft Windows Server) investments.
"Axiad's integration with Microsoft empowers critical infrastructure, government and defense industrial base to easily upgrade their existing Microsoft on-premises infrastructure to become passwordless," said Ehud Itshaki, principal product manager at Microsoft. "With phishing-resistant, passwordless authentication, they can enhance their security posture and comply with the recent EO mandating phishing-resistant MFA – all while getting more out of their existing Microsoft authentication and infrastructure investments."
Axiad delivers organization-wide passwordless orchestration to secure people, machines, and interactions for enterprise and public sector organizations that must optimize their cybersecurity posture while navigating underlying IT complexity. The company's flagship product, Axiad Cloud, is a comprehensive, secure and integrated authentication platform that allows customers to move to a passwordless future without the friction and risk of fragmented solutions. Axiad supports the widest range of credentials in the industry including FIDO, mobile MFA, Windows Hello for Business, YubiKeys, smart cards, TPM and biometrics, and is trusted by public sector organizations and Fortune 500 companies across aerospace & defense, financial services, insurance, healthcare, oil & energy and more.
For more information visitaxiad.comand follow us onTwitterandLinkedIn.
Emerging Technology, Cybersecurity
Prweb | June 27, 2023
Dropsuite, a leading cloud data backup and archiving platform, announced its new GovCloud solution enabling Microsoft 365 public sector users to easily backup and restore their data in the cloud. Dropsuite’s GovCloud allows US-based partners to safeguard their government and public sector clients’ data and comply with FedRAMP moderate data security requirements.
Dropsuite's M365 backup and archiving solutions can now be stored in Amazon Web Services (AWS) GovCloud (US), ensuring your data is stored in a separate cloud with heightened security. This creates critical redundancy and protects your data from accidental deletion, system crashes, cyber-attacks, and other causes of data loss. This solution bridges M365 Government plans (for organizations requiring higher security and compliance features hosted in a government-only cloud environment) and AWS GovCloud (US) (for US government and public sector customers to architect secure cloud environments that meet those strict security and compliance requirements).
Dropsuite's Chief Product Officer, Mark Kirstein says, "Our partners know Dropsuite's commitment to secure, quality backup products, and we have brought the same discipline and partner input to our GovCloud offering. We are thrilled to provide our MSP partners and their clients with this FedRAMP moderate compliant solution that boasts the same easy-to-use technology they already know and love."
Dropsuite’s GovCloud is built upon its award-winning backup and archiving technology used by over a million users. It provides essential features for most government organizations and contractors, including automated incremental backup, one-click data restore, and regulatory-compliant email archiving features. Managed Service Provider (MSP) partners can administer solutions for their clients from a single-pane-of-glass interface, allowing the implementation of custom retention rules, third-party auditor access roles, and internal user roles and permissions. Dropsuite’s easy-to-use platform has been named Gold Medalist in SoftwareReviews’ Email Backup Solutions Awards three years in a row.
Key benefits of using Dropsuite’s GovCloud solution:
Uphold FedRAMP moderate requirements and compliance.
Safeguard sensitive data in a separate and secure government-only cloud environment.
Ensure data preservation, integrity, security, traceability, searchability, scale, and cost-effectiveness.
Secure each record from being modified, overwritten, or deleted until the retention period has expired, including a click box that activates write-once-read-many (WORM) storage.
Swift setup enables users to run backups in a matter of minutes upon account creation.
Maintain peace of mind and know exactly what you are paying for with transparent, upfront pricing.
Dropsuite is an award-winning cloud software platform enabling businesses and organizations globally to easily backup, recover and protect their important business information. Dropsuite’s commitment to advanced, secure, and scalable cloud technologies keeps them at the forefront of the industry and makes them the preferred choice of leading IT Administrators and Managed Service Providers globally. https://dropsuite.com