CYBERSECURITY

XOR Security Awarded $31.4 Million Task Order to Provide Cyber Operations System Support for the United States Patent and Trademark Office

XOR Security | May 25, 2022

Cyber Operations System Support
XOR Security LLC (XOR) recently announced that it won a $31.4 million single-award task order to provide Cybersecurity Operations Support Services to the United States Patent and Trademark Office (USPTO) within the Department of Commerce. The USPTO Office of the Chief Information Officer [OCIO] delivers information and technology to enable innovation, and these services are critical to USPTO's ability to achieve its mission, goals, and objectives, and its Cybersecurity Division (CD) is responsible for all aspects of USPTO Information Technology Security. These include leading and operating a state-of- the art security operations center, which manages responses to a wide range of security and system performance indicators on USPTO's information systems, network infrastructure, and software systems.

Under this task order awarded by USPTO under General Services Administration (GSA) Highly Adaptive Cybersecurity Service (HACS) as a full and open opportunity, XOR will provide services typically associated with cybersecurity operations programs, and will help USPTO to ensure program alignment with Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, Executive Order (EO) 13800. Award of this task order does not constitute an endorsement by USPTO of XOR.

XOR is committed to supporting our federal government agencies who face evolving cyber threats from a dynamic set of actors. We have over a decade of experience developing and supporting cyber operations and engineering platforms which enables us to deliver the most advanced technology and cybersecurity solutions for our customers."

Razwan Raja, XOR Founder and Principal

Wasif Shakeel, XOR Partner for Cyber Operations, added, "XOR is very excited to kick this project off. I want to thank USPTO for placing their trust in us and give special thanks to our entire team for their hard work leading up to this contract award."

About XOR Security
XOR Security is a small business leader delivering Security Operations, Security Engineering, Cyber Analytics, Cyber Intelligence, and Cyber Offense services across a portfolio of approximately 30 federal and commercial cybersecurity programs, including six Security Operations Centers which we currently lead as Prime contractor. Our highly technical cyber operations and engineering professionals are on the front lines of the cyber battlefield, helping to protect our nation's critical infrastructure. The greatest risk is the one that goes unseen. At XOR Security, we shed light on the shadows.

Spotlight

Last week, President Trump announced that tariffs on Mexican goods are "indefinitely suspended" after the U.S. and Mexico reached a deal on immigration enforcement. Before the agreement, a string of reports predicted profound economic consequences on both sides of the border if tariffs had been implemented. One analysis by The Perryman Group even forecast more than 400,000 job losses.


Other News
GOVERNMENT BUSINESS

Israel's Ministry of Defense Selects Anjuna Security Software to Lockdown Sensitive Data in Public Clouds

Anjuna | February 17, 2022

Anjuna Security Inc., the Confidential Cloud company, today announced that Israel's Ministry of Defense (MOD) has entered into the public cloud for the first time with Anjuna's software, which offers the strongest data security available. With Anjuna Confidential Cloud software, the MOD can leverage Confidential Computing features available in cloud servers that eliminate exposure of data in use to insiders, malicious software and bad actors. Sensitive data and applications remain fully encrypted with Anjuna– without the need for any software modifications–and stay isolated and in full control of the MOD. The decision from the Israeli MOD represents a critical milestone for far greater adoption of the public cloud by organizations in regulated industries or those with highly sensitive data. To date, many companies and government organizations have held back from the public cloud because of security concerns and control issues. The stringent testing and subsequent selection by the MOD signals that with the widely available Confidential Computing technology already in cloud infrastructure and software from Anjuna, the public cloud is now secure enough for organizations with the strictest level of security and regulation. "With Anjuna Confidential Cloud software, we are able to leverage Confidential Computing to achieve public cloud scale, agility and economics and maximum data security immediately, without having to recode or refactor applications," said the Infrastructure Cloud Group Leader for the IMOD. "This will allow us to quickly move important workloads across public clouds without compromising the high level of security necessary to achieve our mission." Confidential Computing is the hardware-based capability that public cloud vendors, including Amazon AWS, Microsoft Azure and Google Cloud, have added to their servers to enable customers to secure data at runtime when it would otherwise be exposed. Protecting data and applications during execution closes a gap that effectively shuts out unauthorized personnel and creates a trusted environment within the public cloud that is under the control of the customer. Israel's MOD, which oversees most of the Israeli security forces and is responsible for the overall security of the Israeli nation, including the Israeli Defense Forces (IDF), assigned a red team to conduct a thorough evaluation of the Anjuna Confidential Cloud software, using compute-intensive AI workloads as the initial application. Test considerations included the ability to secure against rogue or accidental insiders, third parties, criminal hackers and nation-states. The solution also had to be commercially available now, run across multiple cloud platforms and make both migrating applications and administration simple. In addition to fully securing workloads in public clouds without modification, the Anjuna Confidential Cloud software is attractive to the MOD because it provides a single, uniform encryption platform that protects all three states of data: storage, transit and execution. With Anjuna, organizations do not need to rely on the many different encryption schemes for each application and system, which causes undue confusion and complexity. The Confidential Cloud software provides a consistent data perimeter that also eliminates the risk of exposing encryption keys during runtime. "Israel's Ministry of Defense is among the most advanced and stringent security organizations in the world, so it is a tremendous advantage for them to now be able to turn public clouds into fully trusted environments capable of securely processing sensitive data. With Anjuna, it is both feasible and practical to make the public cloud at least as secure as private infrastructure. We are proud to add the IMOD as a customer." Ayal Yogev, co-founder, and CEO of Anjuna Anjuna Confidential Cloud software makes the use of Confidential Computing transparent to applications and operations, enabling their use without modification. It supports all applications, regardless of size or computational task. With Confidential Computing, companies can secure highly sensitive data, such as state secrets, AI code, intelligence and security details, personally identifiable information (PII), financial information and intellectual property. About Anjuna Anjuna Security makes the public cloud secure for business. Software from Anjuna Security effortlessly enables enterprises to safely run even their most sensitive workloads in the public cloud. Unlike complex perimeter security solutions easily breached by insiders and malicious code, Anjuna leverages the strongest hardware-based secure computing technologies available to make the public cloud the safest computing resource available anywhere. Anjuna is based in Palo Alto, California.

Read More

GOVERNMENT BUSINESS

Agilicus Awarded Government of Canada Contract for its Zero Trust Network Access Platform

Agilicus | February 14, 2022

Agilicus has been awarded a Government of Canada contract, through Innovative Solutions Canada, with Shared Services Canada (SSC) for its Zero Trust Network Access platform. Shared Services Canada is evaluating Agilicus to augment their security solutions to include an enterprise-grade, cloud-based, Zero Trust Network Access platform. Agilicus can enable secure access for Government of Canada and Non-Government of Canada remote users, with a consistent and frictionless experience from any device, anywhere in the world. The result is decreased cybersecurity risks, enhanced productivity, greater access, higher user satisfaction, and a unified user experience. “We are thrilled to be working with SSC, who lead the way in delivering modern, secure, innovative IT solutions that support Canada’s federal organizations and their digital programs,” said Angelo Compagnoni, co-founder, Agilicus. “We are grateful for ISC and SSC’s commitment in furthering Canadian innovation and their recognition of our Zero Trust Network Access platform.” SSC’s mandate includes designing and operating an effective, efficient, and secure IT infrastructure that protects Government of Canada data and technology assets. SSC and its federal government partners, continue to modernize their traditional perimeter defenses with a Zero Trust framework. SSC has engaged with Agilicus to test the Agilicus Zero Trust Network Access platform for its ability to provide fine-grained, secure, access to resources such as applications, shares and desktops from anywhere. Agilicus’ novel Zero Trust Network Access platform empowers any organization to provide single sign-on, with existing credentials, to any resource, using any device, without a VPN or client, simply, securely, and economically. About Agilicus Agilicus is a Canadian cyber security company shaping the future of work by transforming the way modern workforces connect to corporate resources. With a foundation in Zero Trust, Agilicus is a more secure alternative to VPNs and perimeter-based network access. Agilicus’ cloud-native solution empowers organizations of all types and sizes, to quickly and seamlessly expand the reach of company resources without compromising security. Today’s mobile users, employees, frontline workers, contractors, and partners can be equipped with the secure remote access that was previously unattainable.

Read More

CYBERSECURITY

Splunk and Crowdstrike Executive Chris Hill Joins Horizon3.ai to Lead Federal Strategy

Horizon3.ai | May 24, 2022

Horizon3.ai, a cybersecurity firm focused on autonomous penetration testing, announced the appointment of Chris Hill as the Sector Head for Public Sector, Federal. Hill will execute Horizon3.ai’s vision for creating a better, more secure and cost-effective cyber posture for US and allied Government customers and partners through the deployment of the first autonomous, on-demand, self-service software-as-a-service (SaaS) platform that is safe to run in production and requires no persistent or credentialed agents: Horizon3.ai’s award-winning NodeZero. Hill brings deep public/Federal markets experience to Horizon3.ai, having previously held executive leadership roles with top cybersecurity solutions providers such as Splunk, Databricks and CrowdStrike. With over 25 years of dedicated public sector cybersecurity and IT experience, Chris brings a tremendous amount of passion and domain expertise to assisting Horizon3.ai in executing its vision. His dedication to helping secure Federal agencies and organizations and his consistent track record of achievements in advancing that goal make Chris an invaluable asset both to Horizon3.ai and to those we serve and protect.” Snehal Antani, CEO and Co-Founder of Horizon3.ai “Government sector agencies and their industry partners are being constantly targeted by threat actors,” said Chris Hill, Sector Head for Public Sector, Federal, Horizon3.ai. “It is absolutely essential to provide them the means to determine and address those vulnerabilities and areas of exposure that must be immediately addressed, and I am deeply honored and excited to join Horizon3.ai and support its mission to do so.” Chris is a graduate of the University of New Hampshire's Paul Smith School of Business in Economics and holds a master’s in business administration from the Johns Hopkins Carey School of Business. Horizon3.ai, Carahsoft Jointly Exhibit at the AWS Summit May 23-25, Washington, D.C. Horizon3.ai also today announced its partnership with Carahsoft Technology Corp., the Trusted Government IT Solutions Provider. Carahsoft supports public sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets, and helps simplify the government procurement process through its agency-specific and government-wide federal, state and local contracts. “As I take the helm of Horizon3.ai’s Federal markets initiatives, we will be establishing and deepening Horizon3.ai’s alliances with those solutions providers whom our governmental agencies and organizations most closely rely upon to deploy and secure its essential information infrastructures,” said Hill. “Carahsoft is among the most respected IT and security distributors with a broad ecosystem of reseller and integrator partnership. This relationship is an important first step in ensuring that those agencies that protect and serve us are provided the cybersecurity insight they urgently need at this critical time.” Horizon3.ai and Carahsoft will together attend the upcoming AWS Summit, May 23-25, 2022, in Washington, D.C. The Summit will focus on how public sector organizations can use the cloud to rapidly innovate and digitally transform, to improve their stakeholders’ lives and deliver on their mission. About Carahsoft Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, we deliver solutions for Cybersecurity, MultiCloud, DevSecOps, Big Data, Artificial Intelligence, Open Source, Customer Experience and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. About Horizon3.ai The mission of Horizon3.ai is to help organizations find and fix attack vectors before attackers can exploit them. NodeZero, an autonomous penetration testing solution, is a true self-service SaaS offering that is safe to run in production and requires no persistent or credentialed agents. NodeZero can help organizations identify ineffective security controls, and ensure limited resources are spent fixing problems that can actually be exploited. Founded in 2019 by industry, US Special Operations, and US National Security Veterans, Horizon3.ai is headquartered in San Francisco, CA, and made in the USA.

Read More

EMERGING TECHNOLOGY

Hayden AI Accepted into AWS GovTechStart, Amazon Web Services (AWS) Government Technology Accelerator

Hayden AI Technologies, Inc. | April 26, 2022

Hayden AI, an emerging leader in smart enforcement technologies powered by artificial intelligence is excited to announce that it has been officially been accepted into AWS GovTechStart, the Amazon Web Services (AWS) government technology (GovTech) accelerator, focused on helping eligible U.S. businesses build the next generation of technology solutions for state and local government agencies using the power of the AWS Cloud. AWS cloud storage allows Hayden AI not only to scale more quickly, but to do it smartly, safety, and securely. Leveraging AWS' Well Architected Framework and Shared Responsibility model will help us place strong security and compliance safeguards in place to protect client data and privacy, and to continually review, assess, and refine our privacy and security posture by leveraging the best-in-class tools AWS offers us." Chris Carson, Hayden AI Founder and CEO Hayden AI Accepted into AWS GovTechStart, Amazon Web Services (AWS) Government Technology Accelerator AWS launched its AWS GovTechStart accelerator to enable startups to use tailored benefits to scale faster, including technical training and support, access to a national community of GovTech experts, AWS Promotional Credit, and more. About Hayden AI Hayden AI is bridging the innovation gap in transportation management by combining artificial intelligence with mobile sensors that have the ability to see and reason in 3D. We're enabling innovative cities to improve urban mobility and enhance the quality of life of their communities by making traffic flow more safely and reliably.

Read More

Spotlight

Last week, President Trump announced that tariffs on Mexican goods are "indefinitely suspended" after the U.S. and Mexico reached a deal on immigration enforcement. Before the agreement, a string of reports predicted profound economic consequences on both sides of the border if tariffs had been implemented. One analysis by The Perryman Group even forecast more than 400,000 job losses.

Resources