Government Business, Cybersecurity
PR Newswire | January 04, 2024
Synack has achieved the Moderate "Authorized" designation from the U.S. Federal Risk and Authorization Management Program (FedRAMP), demonstrating Synack's premier security testing platform meets the cloud compliance framework's rigorous requirements at the Moderate level.
The milestone approval means additional U.S. agencies can deploy Synack's best-in-class penetration testing and vulnerability management solutions – even in systems that process Controlled Unclassified Information and other official or sensitive data.
"This achievement is a gamechanger for our federal clients," said Dr. Mark Kuhr, Synack CTO and co-founder. "It also sends a clear message to all our customers: You can trust Synack to keep your data secure as we deliver pentesting of the highest caliber."
The Government Accountability Office has warned that "malicious actors are becoming more willing and capable of carrying out cyberattacks" on federal targets, with the potential to seriously harm national security. FedRAMP is a cornerstone of the U.S. government's efforts to realize that vision and combat threats as agencies continue to shift critical data to the cloud. Additionally, White House requirements such as Memorandum 22-09 require agencies to adopt a zero trust architecture strategy by September 2024.
Operating dedicated application security testing programs is a critical component of a zero trust strategy, and Synack proudly empowers agencies to conduct such services in a FedRAMP Moderate Authorized environment.
"This FedRAMP designation clears the way for Synack's premier security testing platform to protect more government systems," said Synack vice president for public sector Catherine Bowen. "We are doubling down on our goal to improve the security posture of agencies and companies handling mission-critical government applications, internally and externally."
To qualify as Moderate Authorized from FedRAMP, Synack successfully enforced 325 security controls and underwent extensive third-party vetting of its security infrastructure.
Achieving full authorization reflects Synack's ongoing commitment to making the world more secure by providing on-demand access to the Synack security testing platform and the 1,500-plus vetted security researchers who make up the global Synack Red Team.
The U.S. Department of Health and Human Services (HHS) sponsored Synack's successful bid for FedRAMP authorization. Today's announcement builds on Synack's FedRAMP Moderate "In Process" designation achieved in 2022, when Synack was first listed on the FedRAMP marketplace.
Synack has worked with HHS and dozens of other federal agencies to test internal assets and elevate their security postures. The company participated in the Defense Department's inaugural "Hack the Pentagon" program in 2016, helping find and fix high-impact vulnerabilities in a range of military networks. DoD would go on to host a follow-up initiative featuring Synack, aimed at normalizing a trusted, crowdsourced approach to security testing.
Synack's premier on-demand security testing platform harnesses a talented, vetted community of security researchers and smart technology to deliver continuous penetration testing and vulnerability management, with actionable results. We are committed to making the world more secure by closing the cybersecurity skills gap, giving organizations on-demand access to the most trusted security researchers in the world. Headquartered in Silicon Valley with regional teams around the world, Synack protects federal agencies and a growing list of Global 2000 customers, uncovering over 13,000 vulnerabilities for clients in 2023 alone.
PR Newswire | January 19, 2024
Permuta, a leading HR modernization and talent management software platform for Federal organizational readiness and operational excellence, announced today the release of its first ever SaaS product for DefenseReady with AI and Machine Learning capabilities, called DefenseReady Cloud.
The release comes after a decade of on-premise DefenseReady applications and two years after the release of a DoD ATO cloud-hosted IaaS option on IL5.
"DefenseReady Cloud provides DoD and approved civilian organizations the low code/no code SaaS/AI solution that ingests existing data sources, regardless of location, to provide a single pane of glass that informs leaders to make readiness decisions which will help our forces be stronger, safer, and our country more competitive," said Sig Behrens, Permuta's CEO.
"Our mission has always been to assist in putting the right people, in the right place, at the right time," said Behrens. "And now leadership can have the highest level of confidence on the DISA's approved Microsoft DoD tenant while saving operational costs."
"Microsoft is committed to helping the DoD use innovative technologies to meet their critical mission needs and working with key partners like Permuta enables us to innovate and scale solutions for our national security leaders," says Wes Anderson, Vice President for Defense, Microsoft. "This collaboration with Permuta on the DefenseReady cloud will enable Department of Defense leaders to make fully informed operational and readiness decisions with speed."
Permuta Technologies Inc., is a privately owned software manufacturer which creates off-the-shelf software which has been tailored for military and civilian organizations. With deep experience in the government, Permuta understands the challenges agencies face to protect and meet mission-critical initiatives. As a trusted leader in delivering solutions built and designed for government, Permuta is committed to increasing effectiveness and readiness so agencies can confidently execute their mission. Their products, built on Microsoft technology are the only solutions in the market that cover all federal readiness management needs in one system, including force readiness, training, performance and asset management, medical readiness, mission planning and more.
PR Newswire | January 08, 2024
Resecurity (USA), a global cybersecurity solutions provider protecting Fortune 500 and government agencies worldwide, proudly announces the successful completion of its official registration process with the National Cybersecurity Authority (NCA) in Saudi Arabia. This achievement solidifies Resecurity's status as a registered and authorized cybersecurity service provider within the Kingdom. Resecurity has been added to the list of accredited cybersecurity service providers on the official WEB-site of the NCA under number 248. Resecurity's comprehensive portfolio of services is tailored to government and law enforcement organizations, making them a trusted partner in the field of cybersecurity fully compliant with existing regulations and legislation.
On April 25, 2022, the NCA issued a public call to entities providing cybersecurity services, solutions, or products in Saudi Arabia to register their data through the NCA's website. The initiative, which became a mandatory requirement for relevant entities starting August 1, 2022, aims to enhance the overall cybersecurity landscape in the Kingdom and foster a secure and reliable cyberspace conducive to growth. Separately, the NCA indicated that this requirement enhances the efforts made in developing and regulating the cybersecurity market and industry in the Kingdom of Saudi Arabia, and outlined the same precedes the issuance of necessary regulatory licenses to practice some activities related to the sector during the coming period.
Upholding the Best Cybersecurity Standards
Resecurity, in alignment with the NCA's vision, has successfully navigated the registration process, showcasing its commitment to upholding the highest standards of cybersecurity. As a registered service provider, Resecurity is well-poised to contribute to the development of the Kingdom's cybersecurity market.
"Completing the official registration with the National Cybersecurity Authority is a testament to Resecurity's unwavering commitment to cybersecurity excellence and compliance. Our mission has always been to empower organizations with advanced security solutions, and this milestone underscores our dedication to fortifying the digital resilience of Saudi Arabia. We are excited to collaborate with the Kingdom in building a robust and secure cyberspace for its citizens and businesses." - Gene Yoo, CEO of Resecurity shared his perspective on this achievement:
"Our journey in the Kingdom of Saudi Arabia is marked by this significant achievement. We are excited about the opportunity to contribute to the Kingdom's cybersecurity landscape and work collaboratively towards a digitally secure future in scope of Saudi Vision 2030." - said Mohammed Alghamdi, Managing Director of Resecurity in the Kingdom of Saudi Arabia:
NCA's Vision for a Secure Digital Future
The NCA's decision to enforce the registration requirement is rooted in its commitment to creating a safe and reliable Saudi cyberspace. By establishing a mandatory registration process, the NCA aims to ensure that entities providing cybersecurity services contribute to the overall security posture of the Kingdom.
By completing the official registration with the NCA, Resecurity reinforces its commitment to delivering cutting-edge cybersecurity solutions. As a registered service provider, Resecurity is now better equipped to contribute to the advancement of Saudi Arabia's cybersecurity infrastructure and assist businesses in navigating the constantly evolving threat landscape.
Moving Forward Together
Resecurity looks forward to collaborating with the National Cybersecurity Authority and fellow registered entities in creating a secure digital environment that facilitates growth, innovation, and prosperity. Last year, Resecurity announced the appointment of Mohammed Alghamdi as the Managing Director for its operations in the Kingdom of Saudi Arabia (KSA). With a distinguished professional career spanning government relations management and successful collaborations with both private and public sector organizations, Mr. Alghamdi is well-equipped to lead Resecurity's strategic initiatives and business development in the region. Mr. Alghamdi's career includes notable tenures at prestigious global consulting firms, including Booz Allen Hamilton, Oliver Wyman, and Bain & Company. He specializes in addressing clients' most critical issues: strategy, marketing, organization, operations, technology, transformation, digital, advanced analytics, corporate finance, mergers & acquisitions (M&A), and sustainability across all industries and geographies. As the Managing Director for Resecurity in KSA, Mr. Alghamdi will play a pivotal role in overseeing government affairs and mission-critical operations specifically relevant to the national security, aerospace and defense (A&D) verticals.
Resecurity, Inc. (USA) is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence. Known for providing best-of-breed data-driven intelligence solutions, Resecurity's services and platforms focus on early-warning identification of data breaches and comprehensive protection against cybersecurity risks. Founded in 2016, it has been globally recognized as one of the world's most innovative cybersecurity companies with the sole mission of enabling organizations to combat cyber threats regardless of how sophisticated they are. Most recently, Resecurity was named as one of the Top 10 fastest-growing private cybersecurity companies in Los Angeles, California by Inc. Magazine. An Official Member and a Gold Sponsor of InfraGard National Members Alliance (INMA), AFCEA, NDIA, SIA, FS-ISAC and the American Chamber of Commerce in Saudi Arabia (AmChamKSA), Singapore (AmChamSG), Korea (AmChamKorea), Mexico (AmChamMX), and UAE (AmChamDubai).