Government Business, Cybersecurity
PR Newswire | January 04, 2024
Synack has achieved the Moderate "Authorized" designation from the U.S. Federal Risk and Authorization Management Program (FedRAMP), demonstrating Synack's premier security testing platform meets the cloud compliance framework's rigorous requirements at the Moderate level.
The milestone approval means additional U.S. agencies can deploy Synack's best-in-class penetration testing and vulnerability management solutions – even in systems that process Controlled Unclassified Information and other official or sensitive data.
"This achievement is a gamechanger for our federal clients," said Dr. Mark Kuhr, Synack CTO and co-founder. "It also sends a clear message to all our customers: You can trust Synack to keep your data secure as we deliver pentesting of the highest caliber."
The Government Accountability Office has warned that "malicious actors are becoming more willing and capable of carrying out cyberattacks" on federal targets, with the potential to seriously harm national security. FedRAMP is a cornerstone of the U.S. government's efforts to realize that vision and combat threats as agencies continue to shift critical data to the cloud. Additionally, White House requirements such as Memorandum 22-09 require agencies to adopt a zero trust architecture strategy by September 2024.
Operating dedicated application security testing programs is a critical component of a zero trust strategy, and Synack proudly empowers agencies to conduct such services in a FedRAMP Moderate Authorized environment.
"This FedRAMP designation clears the way for Synack's premier security testing platform to protect more government systems," said Synack vice president for public sector Catherine Bowen. "We are doubling down on our goal to improve the security posture of agencies and companies handling mission-critical government applications, internally and externally."
To qualify as Moderate Authorized from FedRAMP, Synack successfully enforced 325 security controls and underwent extensive third-party vetting of its security infrastructure.
Achieving full authorization reflects Synack's ongoing commitment to making the world more secure by providing on-demand access to the Synack security testing platform and the 1,500-plus vetted security researchers who make up the global Synack Red Team.
The U.S. Department of Health and Human Services (HHS) sponsored Synack's successful bid for FedRAMP authorization. Today's announcement builds on Synack's FedRAMP Moderate "In Process" designation achieved in 2022, when Synack was first listed on the FedRAMP marketplace.
Synack has worked with HHS and dozens of other federal agencies to test internal assets and elevate their security postures. The company participated in the Defense Department's inaugural "Hack the Pentagon" program in 2016, helping find and fix high-impact vulnerabilities in a range of military networks. DoD would go on to host a follow-up initiative featuring Synack, aimed at normalizing a trusted, crowdsourced approach to security testing.
ABOUT SYNACK:
Synack's premier on-demand security testing platform harnesses a talented, vetted community of security researchers and smart technology to deliver continuous penetration testing and vulnerability management, with actionable results. We are committed to making the world more secure by closing the cybersecurity skills gap, giving organizations on-demand access to the most trusted security researchers in the world. Headquartered in Silicon Valley with regional teams around the world, Synack protects federal agencies and a growing list of Global 2000 customers, uncovering over 13,000 vulnerabilities for clients in 2023 alone.
Read More
Emerging Technology
PR Newswire | January 09, 2024
InfoSec Global Federal, the leader in cryptographic vulnerability management, today announced the company has been added to the Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) Program's Approved Product List (APL). InfoSec Global Federal's AgileSec Analytics product helps U.S. federal agencies defend against the exploitation of cryptographic vulnerabilities. The inclusion of AgileSec Analytics to the APL strengthens national cybersecurity by protecting government agencies' most sensitive secrets and data from sophisticated attacks and breaches.
The Cybersecurity and Infrastructure Security Agency's (CISA) CDM program provides cybersecurity tools, integration services, and dashboards to participating federal agencies to help them improve the security posture of civilian government networks and systems by strengthening real-time risk monitoring and defense.
"The implicit trust of a privileged cryptographic ecosystem has resulted in the infamous SolarWinds hack and other high-profile attacks against federal agencies," said Philip George, Executive Technical Strategist of InfoSec Global Federal. "One aspect as to why these attacks were so successful can be directly attributed to poor visibility and analysis of privileged cryptographic assets, specifically certificates and tokens. Joining the APL underscores the value that InfoSec Global Federal's technology can deliver to reduce risk to critical federal infrastructure, a priority highlighted in OMB Memo 23-02, which requires federal civilian agencies to capture an inventory of all cryptographic assets in order to uncover vulnerabilities and to take immediate steps towards achieving post-quantum safety."
InfoSec Global Federal specializes in providing cryptographic discovery, remediation, and management solutions from the silicon firmware up through endpoint applications. Its secure software enables federal agencies to facilitate cryptographic vulnerability management, assure compliance, enrich software bill of materials with a cryptographic bill of materials (CBOM), and expedite post-quantum readiness in alignment with OMB Memo 23-02.
AgileSec Analytics offers essential tools for U.S. federal agencies aiming to enhance their cybersecurity and cryptographic posture. This solution is particularly crucial for conducting comprehensive cryptographic inventories, a vital process for government entities to deliver the following key advantages:
Enhanced Cryptographic Visibility: AgileSec Analytics empowers agencies with the ability to thoroughly scan their digital environments to identify and catalog all cryptographic assets. This includes keys, certificates, and cryptographic protocols deployed across various systems and networks.
Cryptographic Vulnerability Identification and Management: AgileSec Analytics assists agencies in pinpointing vulnerabilities within the cryptographic landscape. By analyzing the inventory, agencies can identify outdated or weak cryptographic practices, non-compliant assets, and potential areas susceptible to breaches.
Compliance with Federal Regulations: Aligning with mandates like OMB Memo 23-02, AgileSec Analytics aids agencies in ensuring that cryptographic assets adhere to federal cybersecurity standards. This compliance is critical for safeguarding sensitive government data and communications.
Preparation for Quantum Computing: As the threat landscape evolves with the advent of quantum computing, AgileSec Analytics positions agencies to be proactive. It helps in assessing the readiness of current cryptographic standards and facilitates a strategic shift towards quantum-resistant algorithms.
The inclusion of InfoSec Global AgileSec Analytics in the DHS CDM APL empowers federal agencies to conduct thorough cryptographic inventories, an integral part of maintaining a robust cybersecurity defense strategy.
About Infosec Global Federal
InfoSec Global Federal is a cryptographic security company that specializes in providing next-generation cryptographic discovery, agility, and management solutions from the firmware up through endpoint applications. Their secure software enables the management and agility of all cryptographic assets across a digital ecosystem, enabling government agencies to automate and orchestrate cryptography usage, shut down cryptographic vulnerabilities, facilitate compliance, and achieve post-quantum safety.
Read More
Emerging Technology
PR Newswire | January 20, 2024
Thentia, a leading innovator in regulatory technology, is pleased to announce that it is now working with Amazon Web Services (AWS) to drive continued innovation in the public sector. Thentia is empowering regulators to seamlessly tap into the company's comprehensive regulatory assurance Software-as-a-Service (SaaS) platform, Thentia Cloud, powered by AWS, fortifying the landscape of regulatory oversight.
"We are thrilled to be working with AWS as we persist in our commitment to deliver an enhanced experience for government agencies and regulatory entities globally." says Julian Cardarelli, CEO, Thentia. "By leveraging the power of AWS, we solidify our position as a clear leader and a versatile multi-cloud provider in our category, affirming our commitment to ongoing excellence."
Cardarelli adds, "With our world-class, fully integrated regulatory assurance platform now accessible on AWS, we strengthen our commitment to empower the public sector with sophisticated tools for unparalleled efficiency in fulfilling their mandate of public protection."
Other key benefits of Thentia's relationship with AWS include working with AWS engineers and architects to optimize Thentia Cloud's performance, security, compliance, and reliability. Partnering with AWS also helps ensure that Thentia Cloud remains at the forefront of the latest advances in cloud computing.
Designed for regulators by regulators, Thentia Cloud digitizes, streamlines, and consolidates all essential regulatory functions within a single and secure cloud-based environment. The platform is designed to empower regulators with a comprehensive 360-degree view of all licensee activities, giving them a much more modern, streamlined, and efficient way to work and ultimately meet their regulatory obligation to safeguard the public.
Trusted by millions of licensed professionals, businesses, and entities globally, Thentia has been recognized by regulators worldwide for its enhanced blend of technological innovation and regulatory proficiency. In addition to AWS, Thentia Cloud is available on other cloud providers including Google Cloud, IBM Cloud, and Microsoft Azure.
About Thentia
Thoughtfully built for regulators, by regulators, Thentia is driving regulatory transformation for hundreds of regulators and regulatory agencies worldwide with a platform that handles all key department functions including licensing, investigations, enforcement, fitness to practise, quality assurance, scope of practise, continuing education, board management, data analysis, and more. Thentia Cloud empowers regulators to transcend the constraints of legacy processes, custom-built solutions, and a web of disparate applications with a single unified 360-degree platform, setting new standards in efficiency and effectiveness.
Thentia Cloud is available on all major cloud providers, including Google Cloud, Amazon Web Services (AWS), IBM Cloud, and Microsoft Azure.
Read More
Emerging Technology
GlobeNewswire | January 04, 2024
CoTec Holdings Corp. and Mkango Resources Ltd. are pleased to announce that CoTec and Maginito Limited ("Maginito") have formed a 50/50 joint venture entity which will roll out HyProMag Limited’s (“HyProMag”) Hydrogen Processing of Magnet Scrap (“HPMS”) recycling technology into the United States. The newly formed joint venture company, HyProMag USA, LLC (“HyProMag USA” or the “Joint Venture”), plans to develop a low cost, low carbon, sustainable rare earth magnet recycling and production business underpinned by HPMS. HyProMag has sublicenced the HPMS technology to HyProMag USA.
HyProMag is 100 per cent owned by Maginito, which is owned on a 79.4/20.6 per cent basis by Mkango and CoTec, and is commercialising rare earth magnet recycling in the UK, Germany and United States. Revenue from the Joint Venture is targeted for 2025/2026.
HyProMag USA will initially focus on completing a bankable feasibility study (“Feasibility Study”) through a hub and spoke model using three HPMS vessels and one magnet manufacturing hub (together the “US Project”).
The Joint Venture has recently initiated a “Request for Proposal” process from leading Engineering, Procurement and Construction Management (“EPCM”) providers and has ordered three HPMS reactors to expedite the development of the US Project. Following completion of the Feasibility Study, CoTec and Mkango will make a joint decision as to whether the Joint Venture will proceed with the construction of the US Project.
Julian Treger, CoTec CEO commented: “HyProMag is supported by the Minerals Security Partnership1 and we are looking forward to working with leading EPCM providers to design and build these facilities using HyProMag’s considerable experience from the plants being developed in the UK and in Germany. CoTec and Mkango are focused on delivery and will be exploring US Government funding and strategic partnerships for feed supply and rare earth element (“REE”) magnet offtake in the first half of 2024.
“We look forward to working and collaborating with local, state and federal stakeholders targeting the completion of the feasibility study”.
Will Dawes, Mkango CEO commented: “We see the United States as a core component of our growth strategy and look forward to progressing the US feasibility study over the course of the year, in parallel with further development of operations in the UK, Germany and other jurisdictions.
HyProMag’s recycling technology has major competitive advantages versus other recycling technologies and is a key enabler for cost effective and energy efficient separation, recycling and production of rare earth magnets with a significantly reduced carbon footprint. We are receiving strong interest for recycled magnets from potential customers and for recycling solutions from original equipment manufacturers (“OEMs”), and automotive and recycling companies.”
HPMS technology was developed at the University of Birmingham, underpinned by approximately US$100 million of research and development funding, and has major competitive advantages versus other rare earth magnet recycling technologies, which are largely focused on chemical processes but do not solve the challenges of liberating magnets from end-of-life scrap streams –HPMS provides the solution.
Maginito
Maginito is owned 79.4 per cent by Mkango and 20.6 per cent by CoTec. It is focused on developing green technology opportunities in the rare earths supply chain, encompassing neodymium (NdFeB) magnet recycling as well as innovative rare earth alloy, magnet, and separation technologies.
Maginito holds a 100 per cent interest in HyProMag and a 90 per cent direct and indirect interest (assuming conversion of Maginito’s convertible loan) in HyProMag GmbH, focused on short loop rare earth magnet recycling in the UK and Germany, and a 100 per cent interest in Mkango Rare Earths UK Ltd (“Mkango UK”), a company focused on long loop rare earth magnet recycling in the UK via a chemical route.
About Mkango Resources Ltd.
Mkango's corporate strategy is to develop new sustainable sources of neodymium, praseodymium, dysprosium and terbium to supply accelerating demand from electric vehicles, wind turbines and other clean technologies. In parallel with development of its mining assets, Mkango plans to become a market leader in the production of recycled rare earth magnets and alloys via its interest in Maginito. This integrated Mine, Refine, Recycle strategy differentiates Mkango from its peers, uniquely positioning the Company in the rare earths sector. Mkango is listed on the AIM and the TSX-V.
Mkango is developing its flagship Songwe Hill rare earths project (“Songwe”) in Malawi with a Definitive Feasibility Study completed in July 2022 and an Environmental, Social and Health Impact Assessment approved by the Government of Malawi in January 2023. Discussions regarding the Mine Development Agreement (“MDA”) for Songwe Hill are ongoing with the Government of Malawi.
In parallel, Mkango and Grupa Azoty PULAWY, Poland's leading chemical manufacturer have agreed to work together towards development of a rare earth separation plant at Pulawy in Poland (the Pulawy Separation Plant) to process the purified mixed rare earth carbonate produced at Songwe Hill.
Mkango also has an extensive exploration portfolio in Malawi, including the Mchinji rutile exploration project, the Thambani uranium-tantalum-niobium-zircon project and Chimimbe nickel-cobalt project.
About CoTec Holdings Corp.
CoTec is a publicly traded investment issuer listed on the Toronto Venture Stock Exchange (“TSX- V”) and the OTCQB and trades under the symbol CTH and CTHCF respectively. CoTec is an environment, social, and governance (“ESG”)-focused company investing in innovative technologies that have the potential to fundamentally change the way metals and minerals can be extracted and processed for the purpose of applying those technologies to undervalued operating assets and recycling opportunities, as it transitions into a mid-tier mineral resource producer.
CoTec is committed to supporting the transition to a lower carbon future for the extraction industry, a sector on the cusp of a green revolution as it embraces technology and innovation. It has made four investments to date and is actively pursuing operating opportunities where current technology investments could be deployed.
Read More