Define: Incident management?
An incident is an event that could lead to loss of, or disruption to, an organization’s operations, services or functions. Incident management (IcM) is a term describing the activities of an organization to identify, analyze, and correct hazards to prevent a future re-occurrence. These incidents within a structured organization are normally dealt with by either an incident response team (IRT), an incident management team (IMT), or Incident Command System (ICS). Without effective incident management, an incident can disrupt business operations, information security, IT systems, employees, customers, or other vital business functions.
(Source)
Top Incident Response Companies and Solutions
This article showcases Threat.Technology’s top picks for the best Incident Response solutions. We selected these companies for exceptional performance in one of these categories:
- Innovation
- Innovative ideas
- Innovative route to market
- Innovative product
- Growth
- Exceptional growth
- Exceptional growth strategy
- Management
- Societal impact
Data sourced from Crunchbase and SemRush.
CrowdStrike
Crunchbase | Website | Twitter | Facebook | Linkedin
CrowdStrike is a cybersecurity technology firm pioneering next-generation endpoint protection, delivered as a single integrated cloud-based solution. CrowdStrike’s Falcon platform stops breaches by detecting all attack types, even malware-free intrusions, providing five-second visibility across all current and past endpoint activity while reducing cost and complexity for customers.
CrowdStrike’s Falcon platform is delivered via the security industry’s only 100% native cloud architecture, integrated with 24/7 managed hunting capabilities and in-house threat intelligence and incident response teams. CrowdStrike’s unique Threat Graph harnesses the cloud to instantly analyze data from billions of endpoint events across a global crowdsourcing community, allowing detection and prevention of attacks based on patented behavioral pattern recognition technology..
BlueVoyant
Crunchbase | Website | Twitter | Facebook | Linkedin
BlueVoyant is a cybersecurity company that enables cybersecurity defense and protection through technology and tailored services. The company provides advanced cyber threat intelligence managed security services and proactive professional services with forensic capabilities for incident response and remediation.
They help large enterprises with impactful intelligence and offer small and medium enterprises the same kind of software and level of services that large enterprises enjoy all from a world-class team of experts that would be challenging to amass directly. BlueVoyant offers increased visibility, professional insights, and targeted responsiveness.
The company was founded in 2017 and is headquartered in New York, NY, USA.. .
Onapsis
Crunchbase | Website | Twitter | Facebook | Linkedin
Onapsis provides cybersecurity and compliance solutions for cloud and on-premise ERP and business-critical applications. Its solutions include the Onapsis Security Platform, a widely-used SAP-certified cyber-security solution in the market.
Unlike generic security products, Onapsis’ context-aware solutions deliver both preventative vulnerability and compliance controls, as well as real-time detection and incident response capabilities to reduce risks affecting critical business processes and data. The company was founded in 2019 and is headquartered in Boston, Massachusetts.
Onapsis has offices in Heidelberg, Germany, and Buenos Aires, Argentina.. .
ForeScout Technologies
Crunchbase | Website | Twitter | Facebook | Linkedin
ForeScout is transforming security through visibility. We help make the invisible visible by providing Global 2000 enterprises and government agencies with agentless visibility and control of traditional and IoT devices the instant they connect to the network.
Our technology integrates with disparate security tools to help organizations accelerate incident response, break down silos, automate workflows and optimize existing investments.. .
Attivo Networks
Crunchbase | Website | Twitter | Facebook | Linkedin
Attivo Networks provides required visibility and actionable, substantiated alerts to detect, isolate, and defend against cyber attacks. Attivo Networks, the leader in deception technology, provides accurate in-network threat detection, analysis, and accelerated response to advanced, credential, insider, and ransomware attacks.
The Attivo Deception and Response Platform provide continuous visibility and efficient threat management for user networks, data centers, cloud, branch, IoT, ICS-SCADA, and POS environments. Camouflage dynamic deception sets high-interaction traps to misdirect and lure attackers into revealing themselves.
The solution’s advanced attack analysis and lateral movement tracking automate investigation, deliver evidence-based alerts, and in-depth forensic reports. Incident response is simplified with ThreatOps™ playbooks and 3rd party integrations for automated attack blocking, quarantine, and threat hunting..
Code42
Crunchbase | Website | Twitter | Facebook | Linkedin
Code42 provides data loss protection, visibility, and recovery solutions. Its data loss protection solution rapidly detects insider threats, satisfies regulatory compliance requirements and speeds incident response, all without lengthy deployments, complex policy management or blocks on user collaboration.
Its security, IT and compliance professionals can protect endpoint and cloud data from loss, leak and theft while maintaining an open and collaborative culture for employees. Founded in 2001, more than 50,000 organizations worldwide, including the most recognized brands in business and education, rely on Code42 to safeguard their ideas.
The company is headquartered in Minneapolis, Minnesota, and backed by Accel Partners, JMI Equity, NEA, and Split Rock Partners.. .
Critical Start
Crunchbase | Website | Twitter | Facebook | Linkedin
Critical Start is a network security consulting company focused on helping customers improve security capability. It is a fastest-growing cybersecurity integrator in North America with a mission to protect customer’s brand and reduce business risk.
They help organizations of all sizes determine their security readiness condition using its framework, the Defendable Network. Critical Start delivers managed security services, incident response, professional services, and product fulfillment..
GreatHorn
Crunchbase | Website | Twitter | Facebook | Linkedin
GreatHorn is a computer software company that provides protection for cloud email systems, via advanced threat detection, automated defense, and integrated incident response. The company specializes in the fields of machine learning, information security, predictive security, and cybersecurity.
GreatHorn was founded in 2015 and headquartered in Waltham, Massachusetts.. .
Cofense
Crunchbase | Website | Twitter | Facebook | Linkedin
Cofense, formerly PhishMe, provides phishing threat management for organizations concerned about human susceptibility. Cofense’s intelligence-driven platform turns employees into an active line of defense by enabling them to identify, report, and mitigate spear phishing, malware, and drive-by threats.
Cofense’s customers include the defense industrial base, energy, financial services, healthcare, and manufacturing industries, as well as other Global 1000 entities that understand changing user security behavior, will improve security, aid incident response, and reduce the risk of compromise.. .
Cybersixgill
Crunchbase | Website | Twitter | Facebook | Linkedin
Cybersixgill is the leader in cyber threat intelligence enablement and enrichment. Their fully automated threat intelligence solutions help organizations fight cyber crime, detect phishing, data leaks, fraud and vulnerabilities as well as amplify incident response – in real-time.
The Cybersixgill Investigative Portal empowers security teams with contextual and actionable insights as well as the ability to conduct real-time investigations. Rich data feeds such as Darkfeed™ and DVE Score™ harness Cybersixgill’s unmatched intelligence collection capabilities and deliver real-time intel into organizations’ existing security systems.
Most recently, Cybersixgill introduced agility to threat intel with their CI/CP methodology (Continuous Investigation/Continuous Protection). Current customers include enterprises, financial services, MSSPs, governments and law enforcement entities..
Semperis
Crunchbase | Website | Twitter | Facebook | Linkedin
Semperis is the pioneer of identity-driven cyber resilience for cross-cloud and hybrid environments. The company provides cyber preparedness, incident response, and disaster recovery solutions for enterprise directory services—the keys to the kingdom.
Semperis’ patented technology for Microsoft Active Directory protects over 40 million identities from cyberattacks, data breaches, and operational errors. Semperis is headquartered in New York City and operates internationally, with its research and development team distributed between San Francisco and Tel Aviv.
Semperis hosts the award-winning Hybrid Identity Protection conference (https://www.hipconf.com). The company has received the highest level of industry accolades; most recently being named “Best Business Continuity / Disaster Recovery Solution” by SC Magazine’s 2020 Trust Awards.
Semperis is accredited by Microsoft and recognized by Gartner.. .
Endgame
Crunchbase | Website | Twitter | Facebook | Linkedin
Endgame is a leading endpoint security platform that transforms security operations teams and incident responders from crime scene investigators into hunters that prevent damage and loss, and dramatically reduces the time and cost associated with incident response and compromise assessment. Endgame’s platform uses machine learning and data science to prevent and detect unique attacks at the earliest and every stage of the attack lifecycle.
Endgame’s integrated response stops attacks without disrupting normal business operations. It was founded in 2008 and has been operating in Arlington, Virginia..
InteliSecure
Crunchbase | Website | Twitter | Facebook | Linkedin
InteliSecure is a Managed Security Service Provider (MSSP) to challenge the status quo in cybersecurity by delivering a hybrid application of expert human intelligence with a proven Critical Asset Protection Program methodology. These innovative Managed services are supported by Consulting, Technical, Incident Response, and Security Assessment services that prevent data loss, protect the privacy, and safeguard critical assets.
InteliSecure focuses on business outcomes by providing data and reports that make sense to business and security executives alike. They make data security and compliance easy by providing effective data protection at a lower cost, eliminating the strain on IT organizations, and reducing the risk of confidential information getting into the wrong hands.
The company was founded in 2002 and is headquartered in Greenwood Village, Colorado, United States.. .
Mission Secure
Crunchbase | Website | Twitter | Facebook | Linkedin
Mission Secure®, an OT cybersecurity leader, is setting a new standard in OT cyber-protection stopping OT cyber threats head-on. The Mission Secure Platform backed by 24/7 Managed Services is the first to seamlessly integrate OT visibility, segmentation, protection, threat hunting, and incident response, delivering military strength, industrial grade OT protection.
With Mission Secure, customers keep critical operations up and running and safe from harm. Learn more at https://www.missionsecure.com..
Intezer
Crunchbase | Website | Twitter | Facebook | Linkedin
Intezer introduces a Genetic Malware Analysis technology, revolutionizing cyber threat detection and response. By identifying the origins of software, Intezer equips enterprises with an advanced way to detect modern cyber threats, while providing deep context on how to effectively respond to incidents.
Intezer offers solutions for incident response automation, cloud workload protection, threat intelligence, and more. For more information, visit www.intezer.com..
Wallarm
Crunchbase | Website | Twitter | Facebook | Linkedin
Built by security practitioners for practitioners, Wallarm products provide robust protection for APIs, apps, and serverless workloads running in cloud-native environments. Hundreds of Security and DevOps teams chose Wallarm to get unique visibility into malicious traffic, robust protection across the whole application portfolio, and automated incident response for appsec programs.
The company is committed to supporting modern tech stacks, offering dozens of deployment options in cloud and Kubernetes-based environments, and also provides a full cloud solution. Founded in 2014, Wallarm is headquartered in San Francisco, California, and is backed by Toba Capital, Y Сombinator, Partech, Runa Capital, and other investors..
TruSTAR
Crunchbase | Website | Twitter | Facebook | Linkedin
TruSTAR is an API-first cloud native Intelligence Management platform that operationalizes internal and external data sources through an ecosystem of partner integrations and custom API solutions to help security teams accelerate detection, incident response, investigations, and collaboration. Our Mission is to build and deliver technology so teams of security professionals canDefend Better Together.
We believe that when security professionals can integrate intelligence data into every stage of their workflow, they can make better decisions faster. Founded in 2014 by a mix of seasoned entrepreneurs, former security and intelligence specialists, and killer product developers, TruSTAR is building a platform that operationalizes internal and external data sources through an ecosystem of integrations to help you gain control of your data..
VMRay
Crunchbase | Website | Twitter | Facebook | Linkedin
The VMRay Platform is a breakthrough solution for dynamic analysis of advanced threats, including zero day and targeted attacks. By surmounting inherent flaws that plague other products, VMRay Analyzer has become the gold standard for malware sandboxing among leading DFIR teams worldwide.
The core of the VMRay Platform is an agentless, hypervisor-based sandbox, which is unique in combining near-total evasion resistance with full visibility into malware behavior: a trait we call X-Ray Vision. Because nothing touches or modifies the analysis environment, monitoring is invisible, and even the most evasive malware strains fully execute in the sandbox.
By monitoring every interaction between malware and the target system, VMRay captures a complete and accurate record of threat behavior – data that enriches detection, incident response, digital forensics, and threat intelligence. VMRay Intelligent Monitoring excels over other solutions in distinguishing between malicious behavior and legitimate activity.
As a result, VMRay Analyzer delivers precise, noise-free output that reduces false positive rates to near zero. This shortens investigations, enhances efficiency and prevents legitimate traffic from being blocked.
ProtectWise
Crunchbase | Website | Twitter | Facebook | Linkedin
ProtectWise™ provides Cloud-Powered Network Detection and Response (NDR). Organizations can achieve defense-in-depth via advanced analytics on cloud, hybrid and enterprise traffic with real time and retrospective detections.
Full-fidelity packet captures, indexed and retained indefinitely, create a perfect, rapidly searchable network memory. Analytics and forensics unified in an intuitive and immersive visualizer enable rapid and more effective incident response and threat hunting.
Founded in April 2013, ProtectWise is based in Denver and led by a team of security and SaaS industry veterans from McAfee, Palo Alto Networks, and Symantec. The company launched the Immersive Security movement in 2017 to build a new path forward for the security industry.
ProtectWise has raised more than $70 million in funding.. .
AccessData
Crunchbase | Website | Twitter | Facebook | Linkedin
AccessData Group has pioneered computer forensics and litigation support for more than twenty years. Over that time, they have grown to provide a broad spectrum of stand-alone and enterprise-class solutions that enable digital investigations of any kind, including computer forensics, incident response, eDiscovery, legal review, IP theft, compliance auditing and information assurance.
More than 100,000 customers in law enforcement, government agencies, corporations, consultancies, and law firms around the world rely on AccessData software solutions, as well as their premier hosted review and digital investigations services. AccessData Group is also a leading provider of digital forensics training and certification, with their much sought after AccessData Certified Examiner program..
Perception Point
Crunchbase | Website | Twitter | Facebook | Linkedin
Perception Point is a Prevention-as-a-Service company, offering fast interception of any content-based attack across all collaboration channels including email, cloud storage, CRM apps, and messaging platforms. We prevent phishing, BEC, spam, malware, Zero-days, N-days well before it reaches the enterprise’s end-users.
Deployed in minutes with no change to the enterprise’s infrastructure, our solution confirms with any policy and requires zero fuss from IT teams. On top of that, we offer a significant added value service through our Incident Response team that serves as a force multiplier to the enterprise’s SOC team.
Our unique technology, which folds 7 different detection layers to provide a single verdict, has been recognized by Gartner and has proven time and time again to deliver the most effective ROI when compared to leading cyber solutions. As a result, the company now serves many global enterprises from all sizes and across all verticals, including Telecom, Food & Beverage, Tech, Healthcare, and more.
MixMode
Crunchbase | Website | Twitter | Facebook | Linkedin
MixMode is a developer of a predictive cybersecurity platform designed to reduce the number of alerts.
Aujas Networks
Crunchbase | Website | Twitter | Facebook | Linkedin
Aujas Networks Pvt. Ltd.
offers information technology digital security solutions and services for enabling digital defense to clients. The company offers services in the areas of security vulnerability, security content management, and identity and access management.
Its consulting services include preventive consulting, such as strategy consulting, enterprise risk, management, technology, consulting, and DR/BCP consulting; reactive consulting, including security postures, security audit, and recovery strategy; and detective consulting, such as incident response solutions. The company’s preventive implementation solutions comprise SCM/SAMIIAM, secure products, and compliance solutions.
Its detective implementation solutions include application code review solutions. The company’s management solutions comprise preventive management, including enterprise risk, ODC security, and security operations; recovery services; and forensics services.
It also offers education services, such as process, implementation, management, standards, technology, and application security services. The company provides specialized security services to technologies, including core wireless networks, VOIP, RFID, cyber forensics, and the risk management.
It serves telecom, banking, financial services, insurance, enterprise, and government sectors. The company was founded in 2008 and is based in Bangalore, India..
Group-IB
Crunchbase | Website | Twitter | Facebook | Linkedin
The company’s presence spans across the globe, including France, Italy, Vietnam, Malaysia, the Netherlands, Russia, South Africa, Spain, the United Kingdom, in addition to Singapore, where its global headquarters is located. Group-IB is ranked among the best threat intelligence vendors in the world by Gartner, IDC, Forrester, Cyber Defense Magazine, and SC Media.
Group-IB’s technological leadership is built on the company’s 17 years of hands-on experience in threat research, analysis, cybercrime investigations around the world and 65 000 hours of cyber security incident response. Group-IB is a partner of INTERPOL and Europol and has been recommended by the OSCE as a cybersecurity solutions provider..
enSilo
Crunchbase | Website | Twitter | Facebook | Linkedin
enSilo protects businesses around the world from data breaches and disruption caused by cyber attacks.
Binalyze
Crunchbase | Website | Twitter | Facebook | Linkedin
Binalyze is an innovation driven company focusing on Enterprise Digital Forensics and Incident Response.
Niara
Crunchbase | Website | Twitter | Facebook | Linkedin
No Compromise Behavioral Analytics Niara’s security analytics platform automates the detection of attacks that have bypassed an organization’s perimeter defenses and dramatically reduces the time and skill needed to investigate and respond to security events. The solution applies machine learning algorithms to data from the network and security infrastructure to detect compromised users, entities, and malicious insiders, reduce the time for incident investigation and response, and speed threat hunting efforts by focusing security teams on the threats that matter.
Headquartered in Sunnyvale, Calif., the company is backed by NEA, Index Ventures, and Venrock. For more information, visit www.niara.com..
CounterCraft
Crunchbase | Website | Twitter | Facebook | Linkedin
Advanced adversaries and targeted attacks threaten large organisations on a daily basis. CounterCraft is a pioneering provider of full-spectrum cyber deception, ground-breaking threat hunting and cyber counterintelligence to detect, investigate and control targeted attacks.
The award-winning solution combines powerful campaign automation with controlled synthetic environments to allow attackers to penetrate organizations without doing real damage. CounterCraft’s Threat Deception platform builds and deploys buffer zones that fool threat actors into engaging with false information and fake digital assets instead of real operational systems and data.
The solution uses groundbreaking security engineering for Threat Detection, Threat Intelligence and Threat Response. Key stakeholders get more time to respond to advanced and rapidly evolving threats.
The platform continuously generates highly relevant threat intelligence elicited from threat actors. Defenders benefit as CounterCraft integrates with incident response workflows and proactively reconfigures defensive systems in real time to mitigate risks from ongoing attacks.
CounterCraft operates in Fortune500 companies globally, including major financial institutions, critical infrastructures, governments and Law Enforcement Agencies. Founded in 2015, the company is present in London, Madrid and Washington DC, with R&D in San Sebastian..
Blueliv
Crunchbase | Website | Twitter | Facebook | Linkedin
Blueliv is a leading cyber threat intelligence provider with a world-class in-house Labs team. We scour the web, the deep web and the dark internet to deliver fresh, automated and actionable threat intelligence to organizations to protect their networks from the outside in.
Our scalable cloud-based platform turns global threat data into sophisticated and relevant intelligence, enabling organizations to save time and resource by improving their incident response performance and empowering their Security Operations team with real-time intelligence. Configure a solution bespoke to your needs with a choice of modules.
Quantify and qualify malicious attack vectors with our plug and play MRTI feed; delivered in STIX/TAXII standard, integration is easy. The Blueliv Threat Exchange Network is a strong, collaborative community of security researchers and malware analysts.
We want you to be a part of it – join community.blueliv.com. Start detecting external threats and join the fight against cybercrime today.
Blueliv is a Gartner Cool Vendor 2015 and Go-Ignite winner 2016.. .
Cymmetria
Crunchbase | Website | Twitter | Facebook | Linkedin
Cymmetria is a cybersecurity company at the forefront of deception technology. Cymmetria’s deception products, MazeRunner and ActiveSOC, give organizations the ability to hunt attackers, detect lateral movement inside the perimeter, automate incident response, and mitigate attacks.
The company also offers deception as a service, enabling organizations to customize deception technologies for their business environment. Founded in 2014 by security expert Gadi Evron, Cymmetria is changing the asymmetry of cybersecurity, giving defenders the upper hand..
SECDO
Crunchbase | Website | Twitter | Facebook | Linkedin
SECDO transforms the way global enterprises handle incident response, allowing security teams to investigate and remediate complex threats in minutes. The SECDO Next Generation IR platform automates endpoint forensic analysis and cyber investigations to lower the skills barrier and make security teams more effective.
With SECDO, enterprises and MSSPs can instantly get the full story behind every alert and respond immediately with the most powerful set of remediation tools available.. .
Mandiant
Crunchbase | Website | Twitter | Facebook | Linkedin
Mandiant is the information security industry’s leading provider of incident response and computer forensics solutions and services. Headquartered in Alexandria, Va., with offices in New York, Los Angeles and San Francisco, Mandiant provides products, professional services and education to Fortune 500 companies, financial institutions, government agencies, domestic and foreign police departments and leading U.S.
law firms. Mandiant comprises one of the industry’s largest incident response and forensics forces.
The authors of nine books, Mandiant security consultants and engineers hold top government security clearances and certifications and advanced degrees from some of the most prestigious computer science universities.. .
Shift5
Crunchbase | Website | Twitter | Facebook | Linkedin
Intrusion detection, intrusion prevention, alerting and incident response for operational technology (OT) platforms
Infocyte
Crunchbase | Website | Twitter | Facebook | Linkedin
Infocyte is a cybersecurity company providing the leading platform for Incident Response and delivering cost-effective MDR services.
Soteria
Crunchbase | Website | Twitter | Facebook | Linkedin
Soteria is a security consulting company focused on the incident response sector. They offers 24/7 incident response services, malware analysis, and security audits.
Soteria was founded in August 2014 and is based in Charleston, South Carolina.. .
CyberSponse
Crunchbase | Website | Twitter | Facebook | Linkedin
CyberSponse provides a Virtual Appliance Based Security Orchestration and Automation platform that automates SecOps and incident response. The platform allows enterprises to gain full visibility and control over multiple cybersecurity data sources and provides a highly configurable incident response management system.
The company was founded in 2011 and headquartered in Arlington, Virginia.. .
RADAR
Crunchbase | Website | Twitter | Facebook | Linkedin
RADAR®, a patented SaaS-based incident response management platform that simplifies and streamlines compliance with data breach laws. The RADAR Breach Guidance Engine™ leads users through an intuitive workflow that profiles and scores data privacy and security incidents and generates incident-specific notification guidelines to help ensure compliance with data breach laws as well as contractual notice obligations.
Fortune 100 companies and other organizations from heavily regulated industries in finance, healthcare, insurance, and beyond rely on RADAR for an efficient and consistent process for incident response.. .
Hexadite
Crunchbase | Website | Twitter | Facebook | Linkedin
Hexadite solves the cybersecurity capacity problem with the first agentless intelligent security automation and orchestration platform.
Sekure Inc.
Crunchbase | Website | Twitter | Facebook | Linkedin
Sekure is the first data driven, people powered data governance solution built for the modern cloud-collaboration platforms such as G Suite, Office 365. Native to the cloud, Sekure automatically classifies data in the cloud, provides visibility on data compliance and rapidly detects data loss, leaks, insider threats, as well as speeds up overall incident response – all without lengthy deployments, complex policy management or blocking employee productivity.
With Sekure, your team can protect sensitive data from accidental or unintentional leaks while fostering an open and collaborative culture for employees.. .
Tetra Defense
Crunchbase | Website | Twitter | Facebook | Linkedin
Tetra Defense is a cyber incident response and proactive cybersecurity consulting company.
Encode
Crunchbase | Website | Twitter | Facebook | Linkedin
Encode specializes on Targeted Cyber Threats and stands out with its proprietary technology, expertise on cyber security and multiyear experience across vertical industries, coupled with on-going, innovative security research and its highly qualified and talented people. * Cutting-edge Security Analytics & Response Orchestration platform Built by experts in data analytics, cyber offensive techniques and cyber security operations, Enorasys platform effectively automates and streamlines the “proactive threat hunting” and incident handling processes, providing Security Operations Center (SOC) and Incident Response teams with the means to hunt, track down and surgically respond to hard-to-spot malicious activity as never before.
* Unprecedented Insight on Advanced Cyber Threats Gained through hundreds of active APT simulation tests and more than 10 years of experience in responding to and assisting our clients in mitigating advanced cyber threats, our team of experts has accumulated an insight on such threats, second to none. Moreover, Encode Threat Labs enable us to stay ahead of the threat landscape, through ongoing research and development on new attack and control evasion techniques.
* Unique combination of Offensive and Defensive Expertise A key factor of our solutions is that they all encapsulate our extensive offensive and defensive expertise; knowledge build through thousands of successful engagements, ranging Extrusion Testing™ (APT Simulation Testing) and digital forensic engagements to end-to-end Cyber Defense architectures and SOC implementations for major organizations around the world. * Next Generation Managed Security Services Our 24×7 Cyber Operations & Intelligence services “even up the score” and by fusing together cutting-edge technology with best of breed cyber security operations and talent ensures that our clients will never get caught unprepared while minimizing their security management investment..
Syncurity
Crunchbase | Website | Twitter | Facebook | Linkedin
Syncurity unifies security teams with solutions that optimize and integrate people, processes, and technology to realize better cybersecurity outcomes. Their solution IR-Flow, a rapidly deployable cybersecurity incident response (IR) workspace, helps security professionals streamline their operations, embed smart compliance, and transition to a collaborative IR process to produce better outcomes.
This virtual SOC is scalable from small business to full enterprise deployments. It was acquired by Swinlane..
Palerra
Crunchbase | Website | Twitter | Facebook | Linkedin
Founded in 2013, Palerra believes in automating the entire security lifecycle, from threat detection to remediation, in order to effectively combat cyber crime and keep enterprises secure. Palerra is a privately held company backed by Norwest Venture Partners and Wing Venture Partners.
The funding represented the first joint Series A investment made by Palerra’s board members from Wing and NVP since investing in FireEye (FEYE) in 2005. The LORIC™ platform provides threat visibility and ensures compliance of your cloud footprint by combining threat detection, predictive analytics, security configuration management, and automated incident response into a single solution.
LORIC does not require hardware, software or agents and is not deployed inline with cloud services.. .
Tall Poppy
Crunchbase | Website | Twitter | Facebook | Linkedin
Tall Poppy builds tools and services to help companies protect their employees against online harassment and abuse. It combines proactive security training, threat monitoring, and detection with incident response when an individual comes under attack.
In addition to its standard service, it also offers additional capabilities for high-profile or executive staff who face increased risk.. .
Confer Technologies
Crunchbase | Website | Twitter | Facebook | Linkedin
Confer is fundamentally changing endpoint security through the Converged Endpoint – providing advanced threat prevention and incident response for endpoints, servers. and cloud workloads.
Confer’s patented technology uses enterprise-wide telemetry and data science to analyze, adapt and eliminate manual processes, and facilitates an intelligent and efficient approach to securing the enterprise.. .
Seculert
Crunchbase | Website | Twitter | Facebook | Linkedin
The Seculert cloud-based security platform fills the gap left by legacy perimeter defense and Breach Detection Systems. Seculert protects distributed enterprises from advanced threats by focusing on the malicious outbound network traffic that goes undetected by legacy prevention solutions.
By combining Big Data analytics, machine learning technology and behavioral analysis, Seculert provides unique visibility on the final two stages of the malware kill chain. As a cloud-based solution, Seculert requires no hardware or software and provides full coverage for all sites and employees, including those working remotely and on personal mobile devices.
The Seculert Platform dramatically improves the productivity of scarce SOC and Incident Response resources by providing faster and more accurate malware detection. Founded in 2010 by security industry veterans, Seculert has R&D in Israel and sales offices in the US and EMEA.
Customers include leading organizations from the financial, education, healthcare, energy and aerospace industries around the world. For more information, visit www.seculert.com..
Giant Gray
Crunchbase | Website | Twitter | Facebook | Linkedin
Giant Gray builds multi-sensor, artificial cognitive neurolinguistics software that provides enhanced safety, security, and operational efficiency to businesses and government agencies across complex physical environments – from sprawling corporate campuses and remote oil and gas operations to ports and public transportation systems, and global enterprise networks of data. The patented, adaptive, and self-learning algorithms of Giant Gray technology “see” anomalies often hidden in oceans of data, bringing to light actionable insights with an intelligence that is anything but artificial.
In short, Giant Gray helps dramatically improve business operational awareness and incident response for its customers – as well as prevent costly interruptions and breakdowns – through its Graydient technology platform with applications in industrial (SCADA/ICS), physical security and surveillance, and cybersecurity environments. Most data analytics technology is challenging to deploy, expensive to use and maintain, confusing to understand, and limited to identifying known problems in a particular domain.
Giant Gray’s patented technology reduces costs and simplifies usage and maintenance by teaching itself from observing data – and it excels at detecting the unexpected and providing improved context by correlating various, disconnected data sources. These real-time insights allow customers to make operational adjustments before early-warning signals grow into true incidents that impact safety, security, and business operations.
Graydient stands apart from traditional analytics with its artificial cognitive neurolinguistics approach to machine learning, meaning it creates a custom language to describe the data from scratch and is not limited to primitive, baseline behavior models from the start. This is the Giant Gray difference.
We see it.. .
Delta Risk
Crunchbase | Website | Twitter | Facebook | Linkedin
To successfully adopt cloud and enable your teams to move at competitive speed, you need a partner who can help you develop a security plan or supplement your existing security solution. Delta Risk has you covered with ActiveEye Cloud Infrastructure Security, ActiveInsight cloud security assessments, and ActiveResponse services.
We are also an Amazon Web Services (AWS) Advanced Technical Partner. Delta Risk provides cloud security, managed security services, and professional security consulting services to government and commercial clients.
Formed in 2007, Delta Risk brings together leaders from the cyber policy, infrastructure protection, and technical security expert communities to help clients secure their networks and data. Our core areas of expertise include managed security services, cloud monitoring of SaaS and cloud infrastructure environments, managed detection and response (MDR), Security Orchestration Automation and Response (SOAR), SOC-as-a-Service, endpoint and network security, penetration testing, exercises and training, vulnerability assessments, threat hunting, and incident response..
FactorChain
Crunchbase | Website | Twitter | Facebook | Linkedin
FactorChain provides an incident response acceleration system to delivers the speed demanded for the continuous defense at scale. The company engages in breaking the narrow sections in security operations.
It was founded in 2014 and is based in California, USA.. .
Incident Response Technologies
Crunchbase | Website | Twitter | Facebook | Linkedin
Incident Response Technologies (IRT) formed in 2005 with the vision of providing public safety organizations with intuitive, cloud-based solutions to assist with incident response. Founded and staffed by incident response professionals with dozens of years of front line experience, IRT developed its flagship product, the Rhodium™ Incident Management Suite.
This solution is now deployed by hundreds of public safety organizations including police, fire, EMS, emergency management, and campus security.. .
Redscan
Crunchbase | Website | Twitter | Facebook | Linkedin
Redscan is a provider of managed security services, specializing in threat detection and integrated incident response. Possessing a deep knowledge of offensive security, Redscan’s experts are among the most qualified in the industry, working as an extension of clients’ in-house resources to expose and address vulnerabilities plus swiftly identify and shut down breaches.
Services offered include CREST accredited Penetration Testing, Red Teaming, and Managed Detection and Response. By understanding how attackers operate, leveraging cutting-edge threat intelligence, and offering clear and actionable advice, Redscan’s cyber security professionals can be trusted to provide the high-quality insight needed to successfully mitigate information security risk and achieve compliance standards..
RedSocks Security
Crunchbase | Website | Twitter | Facebook | Linkedin
RedSocks Security is specialised in detecting suspicious network behaviour and combatting cybercrime. By combining Machine Learning, Artificial Intelligence and Cyber Threat Intelligence, RedSocks Security provides non-intrusive, real-time breach detection solutions and incident response services.
Our solutions are implementable within organisations of all sizes, and also serve as a tool of compliance to (information and data) privacy legislation.. .
Cydarm
Crunchbase | Website | Twitter | Facebook | Linkedin
Cydarm is secure by design. They know that cybersecurity is a team sport, and success requires collaboration at different levels of trust.
Cydarm’s attribute-based access control model provides flexible collaboration. The value of a collaborative incident response platform increases with the number of users.
They believe in providing fair and predictable licensing that won’t surprise you with a cost overrun, so they charge per user. Contact an expert to learn how Cydarm can provide value in your SOC.
Cydarm is interoperable with other vendor products. Every organization has a different cybersecurity technology stack and they know you will want to customize your workflows.
Cydarm has an open API, and is easy to integrate with your existing technology stack. Cydarm can be deployed anywhere.
Whether you prefer to maintain your security stack on-premises or in the cloud, Cydarm will meet your requirement. Cydarm is deployed using Docker containers, so all you need is a Docker host environment..
Interact Public Safety
Crunchbase | Website | Twitter | Facebook | Linkedin
InterAct is a leading provider of public safety incident response and management software. We help first responders coordinate, communicate and react to unplanned events quickly, safely and accurately so these heroes can save lives.
Founded in 1975, InterAct provides integrated multi-agency, multi-jurisdictional public safety, corporate security, and homeland security systems technology. InterAct’s mission is to enable public safety professionals to perform critical functions at their highest level.
Our solutions allow these personnel to make the right decisions, at the right time, and make it possible for the right people to affect the best outcomes and save lives. As the definition of public safety expands beyond 911, InterAct is leading the way through continuous product development, product improvement and innovation to provide a seamless transition to our customers.
Public and private safety agencies today are under relentless pressure to improve response times amidst tight budgets and a rapidly evolving communication infrastructure. The growing ubiquity of mobile and voice over IP (VoIP) communications requires a commitment to continuous technological improvement.
Increased security requirements at borders, ports, airports, corporate/industrial sites and even our schools, and has brought the need for interoperable communications between government agencies and the private sector to the forefront. Our efforts to enable Public safety agencies to meet these challenges and demands motivates our mission and our continued dedication to innovation.
InterAct’s client base includes more than 1,450 clients in 44 states and across three continents. Its feature-rich, easy to use software is popular among city, county, state, and federal agencies as well as international agencies looking to improve the safety of officers and the public at large.
Cyberlytic
Crunchbase | Website | Twitter | Facebook | Linkedin
The Profiler uses AI to detect and prevent web attacks, such as SQL injection (SQLia) and cross-site scripting (XSS). It uses machine learning to detect anomalies and classify attack data.
By analysing web server traffic in real-time, the software detects and immediately determines the sophistication, capability and effectiveness of each attack. This information is translated into a risk score to prioritise incident response.
Cyberlytic’s patented classification approach is far more effective at assessing attacks than traditional signature-based security solutions and adapts to new or evolving threats without requiring manual intervention. • Advanced threat detection: Unsupervised machine learning detects anomalies in web traffic, whilst supervised machine learning classifies attacks based on threat characteristics.
• Threat analysis, visibility and prioritisation: The Profiler only alerts when a pre-defined risk threshold is exceeded and provides details of malicious web activity. • Simple deployment and zero maintenance: No rules or signatures means no additional demand on analysts to detect even the most sophisticated attacks.
The Profiler is easily deployed by installing a web server agent or by connecting to mirrored network traffic. Data is sent to the Profiler, which is hosted in Cyberlytic’s secure cloud.
Accessed via an intuitive web portal or integrated with any Security Information and Event Management (SIEM) system, the Profiler works autonomously, requiring no human intervention.. .
Cobalt Intelligence
Crunchbase | Website | Twitter | Facebook | Linkedin
Collaborative App That Keep Businesses and Communities Safe
BISEC
Crunchbase | Website | Twitter | Facebook | Linkedin
BISEC is a next generation cyber incident response platform for SOC and MSSPs.
Protocol 46
Crunchbase | Website | Twitter | Facebook | Linkedin
Protocol 46 is an information technology company cyber risk assessment, penetration testing, and incident response. It helps companies, businesses, and organizations on their websites and network security by providing cybersecurity services.
The company was founded in 2015 and headquartered in Minnesota, United States.. .
NCC Group
Crunchbase | Website | Twitter | Facebook | Linkedin
NCC Group provides information assurance solutions to organizations worldwide. The company operates through three segments: group escrow, assurance testing, and domain services.
It offers software escrow and verification services such as software escrow, registry data escrow, software-as-a-service assured, and software verification as well as single and multi licensee escrow agreements; and security testing, audit, and compliance services comprising technical security assessment and penetration testing, information security software, forensic and cyber incident response, and managed security services as well as audit, compliance, and governance services. NCC Group also provides software testing services; website performance optimization and monitoring, and website load testing services; and trust domain and domain abuse monitoring services.
NCC Group was founded in 1999 and is headquartered in Manchester, United Kingdom.. .
BrightPoint Security
Crunchbase | Website | Twitter | Facebook | Linkedin
The BrightPoint Sentinel can help solve one of the biggest challenges facing security and fraud prevention teams today, that challenge is the overwhelming amount of information that they need to analyze and digest on a daily basis to understand if they are currently a victim of a specific cyber threat or if they will be a victim of a specific cyber threat. BrightPoint Security provides an automation and collaboration platform that automates the process of collecting, analyzing, correlating and sharing information on current and emerging cyber-threats and fraud intelligence.
BrightPoint Security’s platform increases operational efficiency by automating the tasks of discovering if you have been breached by correlating external and internal threat information against your network infrastructure data, and allowing you to quickly move into incident response. The time to resolution and prevention of a security incident is dramatically reduced through secure and anonymous collaboration ensuring control, privacy and protection of your shared information.
BrightPoint Security understands that the security of your data is critical and your data should not leave your controlled environment. All of the proprietary information that you need to analyse to understand if you are or will be vulnerable to a security threat, stays within your network.
You have control of all the data that you wish to share and only a STIX/TAXII message is used to transfer information in the collaboration environment. With BrightPoint Security you can reduce discovery time, reduce remediation time and reduce your overall risk to cyber-threats by receiving early warning of emerging cyber threats and fraud intelligence within an automated and collaborative environment..
Fortify 24×7
Crunchbase | Website | Twitter | Facebook | Linkedin
Fortify 24×7 is a leading managed security services provider offering comprehensive services that cover all aspects of Prevention, Detection and Response. The company provides ‘Security as a Service’ across multiple categories including Endpoint Protection, Firewall/IDS, DLP, PAM, IAM and more via a collaborative cloud-based platform, which enables customers to tackle evolving cyber threats on a real-time basis.
Fortify 24×7 has successfully filled a gap in the industry with its dedicated 24x7x365 Security Operations Center (SOC), keeping a steady finger on the pulse of cyber threats across North America and trends across the world. Furthermore, a proactive approach has pushed the company to rapidly develop technologies in-house given the need of its customers.
Fortify 24×7 is a fully equipped and dedicated team who identifies cyber threats relevant to customer organizations, conducts analysis on impact and actively connects the dots across multiple incidents. This core incident response service is strengthened by preventive vulnerability management systems that span an organization’s cyber and domain footprint and enables our customers to be cyber resilient.
Fortify 24×7 current customer base includes SMB’s, Fortune 500 companies, healthcare (payor/provider), education, entertainment & media, and state/local government.. .
National Cyber Security Centre
Crunchbase | Website | Twitter | Facebook | Linkedin
The National Cyber Security Centre (NCSC) is the UK’s authority on cyber security. It is a part of GCHQ.
The NCSC brings together and replaces CESG (the information security arm of GCHQ), the Centre for Cyber Assessment (CCA), Computer Emergency Response Team UK (CERT UK), and the cyber-related responsibilities of the Centre for the Protection of National Infrastructure (CPNI). The NCSC has access to some of the most sophisticated capabilities available to government.
It acknowledges the sensitivity of these resources, whilst working to make the benefits of its expertise as widely available as possible. The NCSC is open and accessible.
It works collaboratively with other government agencies and departments, law enforcement, defense, the UK’s intelligence and security agencies, and its international partners. The NCSC recognizes the value of diversity and different perspectives and bring together a unique range of talents, skills, and experience to tackle the hardest cyber security challenges.
The NCSC’s main purpose is to reduce the cyber security risk to the UK by improving its cyber security and cyber resilience. It works together with UK organisations, businesses, and individuals to provide authoritative and coherent cyber security advice and cyber incident management.
This is underpinned by world class research and innovation. It recognizes that, despite all its efforts to reduce risks and enhance security, incidents will happen.
WebTotem
Crunchbase | Website | Twitter | Facebook | Linkedin
WebTotem is a website security platform with Automated Incident Response as a service for startups, e-commerce and even entire countries. Based on world statistics approx.
90 percent of organizations are vulnerable through their web sites. Every second 3-4 websites are getting hacked, losing their clients and, thus, their money.
WebTotem is a service which helps prevent most website cyber attacks, increases the defence barrier without requesting any special knowledge from the user, allowing him to monitor all activities on his website and most importantly it works without any human interaction. We are currently monitoring nearly 140 000 websites for one of our clients and use data from this as a learning model for cyber attack prevention in the entire country..
PentesterSpace
Crunchbase | Website | Twitter | Facebook | Linkedin
We work together to provide a hack-proof security to our clients that will keep them safe from malicious hackers. We provide advanced techniques to manage cyber security risks, access control, network and system infrastructure and other components of technology.
Sustaining efficiency of monitoring system and security operations in an organisation, cyber security solutions play the role in automated mode that provides the advantages to cyber security professionals and for this reason incident response process pushed forward and faster to recover the affected systems.. .
Retrospect Labs
Crunchbase | Website | Twitter | Facebook | Linkedin
We help organisations improve their operational defensiveness and organisational readiness, through cyber security exercises. Our SaaS platform provides access to a range of difference exercise types and scenarios that organisations can use to conduct exercises in a repeatable and meaningful way.
Through exercises, organisations improve and uplift their incident response capability. When an incident does inevitably happen, organisations will be ready, be able to response effectively and efficiently, and minimise the impacts of an incident..
Evogen
Crunchbase | Website | Twitter | Facebook | Linkedin
Evogen, Inc. provides air sampling solutions.
Its air samplers, detectors, and detection validation technology is used for military, homeland security, commercial, government, and civilian environments in United States. It offers OMNI 3000, an aerosol sampler for indoor/outdoor applications; integrated detection system, a solution for biological threat detection; and SpinCon, an aerosol collection technology for biological and certain chemical systems.
The company also offers specially manufactured consumables and accessories. Its solutions are used for various applications, such as postal security, homeland security, facility security, incident response, operations security, disaster recovery, disease detection, and warfighter protection.
The company was founded as Sceptor Industries, Inc. in 2001 and changed its name to Evogen, Inc.
in August 2008. The company is based in Kansas City, Missouri..
THETA432™
Crunchbase | Website | Twitter | Facebook | Linkedin
THETA432 is an information security, network management, and consulting firm specializing in cyber defense systems with an emphasis on the attack lifecycle with managed detection, deception and response services. THETA432™ builds out your cyber defense capability ranging from incident response to cyber threat hunting.
THETA432™ goes Beyond Visibility!™ in-house, remote, hybrid or on-demand.. .
Volexity
Crunchbase | Website | Twitter | Facebook | Linkedin
Volexity is a security firm that assists organizations with incident response, digital forensics, trusted advisory, and threat intelligence. Its team helps organizations ranging from large global enterprises to single location small businesses, dealing with a myriad of information security challenges.
Volexity is based in Reston, V.A.. .
The Crypsis Group
Crunchbase | Website | Twitter | Facebook | Linkedin
The Crypsis Group is a security advisory firm focused on data breach response and risk management company. The company is built based on a shared vision of creating a more secure digital world by providing the highest quality incident response, risk management, and digital forensic services.
It aims to fight cybercrime and they help and protect their clients by defending against and responding to severe cybersecurity threats. Staying ahead of the rapidly evolving threat landscape requires elite cybersecurity expertise, global response capability, and constant innovation.
These competencies comprise their core values. Out of this vision, Crypsis has grown into a national force with offices across the U.S.
in Washington D.C., New York, Chicago, Austin, and Los Angeles, and from which their expanding corps of elite cybersecurity experts help and protect organizations worldwide. The Mclean, Virginia-headquartered company was established in 2015..
Ensign InfoSecurity
Crunchbase | Website | Twitter | Facebook | Linkedin
Ensign InfoSecurity is the largest pure-play end-to-end cybersecurity services provider in Asia. Headquartered in Singapore, Ensign offers bespoke solutions and services to address their clients’ cybersecurity needs.
Their core competencies are in the provision of cybersecurity advisory and assurance services, architecture design and systems integration services, and managed security services for advanced threat detection, threat hunting, and incident response. Underpinning these competencies is in-house research and development in cybersecurity.
Ensign has two decades of proven track record as a trusted and relevant service provider, serving clients from the public and private sectors in the Asia Pacific region.. .
Stroz Friedberg
Crunchbase | Website | Twitter | Facebook | Linkedin
Stroz Friedberg, LLC, a technical consulting and services company, specializes in digital forensics, mobile device and cell phone forensics, electronic discovery, data breach response, online fraud and abuse incident response, and commercial investigations. The company identifies, preserves, culls, and analyzes data to turn information into intelligence for its clients to manage digital risks.
Its digital forensics services include data breach assessments and response; detection of mass and targeted deletions, and wiping of computerized data; e-forgeries; assessment and remediation; neutral forensic examinations; child pornography in the workplace; and anti-money laundering. The company’s electronic discovery services include advice on electronic discovery; collections; foreign language processing and hosting; online review; auto coding and indexing of scanned documents; processing; and strategic management of electronic discovery projects.
Its data breach response services include data breach assessments and response; detection of computer-enabled theft of intellectual property; payment card industry assessment review; malicious code analysis; privacy audits; infrastructure protection plans; and cyber crime response plans. The company serves corporations, counsels, individuals, government agencies, and law firms.
Stroz Friedberg, LLC has strategic relationships with AIG WorldSource; IAIPSIG; and Shaw Stroz & Co., LLC. The company was founded in 2000 and is headquartered in New York, New York with additional offices in Washington, District of Columbia; Los Angeles, California; Minneapolis, Minnesota; Boston, Massachusetts; Dallas, Texas; and Leeds and London, the United Kingdom..
Plixer
Crunchbase | Website | Twitter | Facebook | Linkedin
Plixer provides a security and network intelligence platform that supports fast and efficient incident response. The solution allows you to gain visibility into cloud applications, security events, and network traffic.
It delivers actionable data to guide you from the detection of security and network events all the way to root-cause analysis and mitigation. Network and security incidents are inevitable.
When they occur, Plixer is there to help you quickly return to normal and minimize business disruption. Thousands of organizations rely on Plixer solutions to keep their IT infrastructure running efficiently.
Learn more at plixer.com, stay connected with the Plixer blog, and follow us @Plixer.. .
Fuss Development
Crunchbase | Website | Twitter | Facebook | Linkedin
Fuss Development is provides cybersecurity analysis and audit services.
D3 Security
Crunchbase | Website | Twitter | Facebook | Linkedin
D3 Security provides the world’s leading platform for incident response, investigation/case management, and security operations.
Arbor Networks
Crunchbase | Website | Twitter | Facebook | Linkedin
Company Description Arbor Networks secures the world’s most demanding and complex networks from DDoS attacks and advanced threats. Solutions Overview Arbor Networks customers gain a micro view of their own network, through their suite of products, combined with a macro view of global Internet traffic and emerging threats, through their ATLAS threat intelligence infrastructure.
See, understand and solve more security threats with Arbor Networks. ATLAS provides a comprehensive, aggregated view of global traffic and threats.
330+ service provider customers contribute 120 Tbps of global traffic intelligence, enabling Arbor’s Security Engineering & Response Team (ASERT) to develop threat protections that are delivered directly into customer products to stop DDoS attacks and malware campaigns. Arbor DDoS Solutions are proven on the world’s most demanding networks.
their portfolio offers complete deployment flexibility to meet the needs of any organization, from virtual solutions, network-embedded solutions within Cisco’s ASR 9000 routers, to appliances for enterprises and carrier-class scrubbing centers. In Arbor Cloud, they offer a best-practice DDoS defense service that tightly integrates on-premises and cloud-based mitigation in a single solution.
Ensure the availability of your critical infrastructure with the world’s most broadly deployed DDoS mitigation technology. Arbor Advanced Threat Solutions leverage integrated Netflow and Packet Capture technology for network-wide situational awareness, broad and deep traffic visibility and security intelligence that transforms threat detection and incident response through real-time and historical insights, stunning visualization and forensics.
Protect your most critical assets from advanced threats that are within your network right now.. .
IntelliGO Networks
Crunchbase | Website | Twitter | Facebook | Linkedin
IntelliGO Networks is an award-winning Canadian cybersecurity services firm that specializes in Managed Detection and Response. Their service is oriented towards small to medium-sized enterprises with business-critical IT operations, sensitive data, or regulatory compliance requirements.
The service is powered by their proprietary technology stack, developed in Toronto, Ontario. Servicing clients around the world, IntelliGO Networks maintains a state-of-the-art operation strategically located in Toronto, Ontario, and Sunnyvale, California.
www.intelligonetworks.com.. .
CRFT
Crunchbase | Website | Twitter | Facebook | Linkedin
CRFT enables teams of all sizes to ease the burden of repetitive and time-consuming tasks without custom code development or lengthy consulting engagements. As a result, CRFT helps focus on strategic and proactive efforts rather than playing “catch up” while streamlining operations and reducing analyst burn-out.
CRFT supports a wide variety of advanced automation use cases in key areas of cybersecurity management, including Threat Remediation, Incident Response, Provisioning, Governance.. .
BlackBag Technologies
Crunchbase | Website | Twitter | Facebook | Linkedin
Develops digital forensic and incident response software for analyzing traditional device data and memory (Malware).
Risk Based Security
Crunchbase | Website | Twitter | Facebook | Linkedin
Risk Based Security identifies the true risks to an organization’s most valuable assets. We combine security intelligence with big data analytics to direct spending where it’s needed most, resulting in the right security.
We provide Data Breach Analytics, Security Intelligence Reports, Vulnerability Intelligence, Risk Management, Incident Response, ISO/IEC 27001:2005 Consulting and and On-Demand Security Expertise via YourCISO.. .
Nettitude
Crunchbase | Website | Twitter | Facebook | Linkedin
Nettitude is a global leader in the delivery of cyber security testing, risk management, compliance and incident response services.
Tracepoint
Crunchbase | Website | Twitter | Facebook | Linkedin
Tracepoint specializes in digital forensics and incident response with a comprehensive portfolio of pre-and post-breach services. Tracepoint’s team of experts has decades of experience helping organizations address cyber incidents, including ransomware, phishing, business email compromise, payment card incidents, and sophisticated trojan and malware attacks.
Having investigated some of the most complex and disruptive security incidents, Tracepoint’s deep understanding of emerging threats proactively helps its clients improve their security posture and reduce the risk of falling victim to a costly cyber-attack.. .
Ekran System
Crunchbase | Website | Twitter | Facebook | Linkedin
Ekran System is a universal insider threat protection solution to help with the employee monitoring, third-party service provider control and regulation compliance. Monitoring user activity on both servers and desktops, Ekran System provides comprehensive screen video log for each user session together with synchronized multilayered metadata such as started application names, keystrokes, visited URLs, connected devices, entered commands, started scripts and more.
Advanced search options, real-time alerts on suspicious events, and interconnected reports make activity analysis and incident investigations efficient and effective. Besides investigation tools, Ekran System provides in-built access management and incident response functionality including manual and automated user blocking, device management and more.
Ekran System is an efficient user-based risk detection solution granting you true visibility into who-when-what context of any incident within your corporate infrastructure.. .
GreyCastle Security
Crunchbase | Website | Twitter | Facebook | Linkedin
GreyCastle Security is a leading service provider dedicated exclusively to cybersecurity and the practical management of cybersecurity risks. Our company was established to counter rapidly evolving cyber threats and to deliver cybersecurity solutions effectively, practically and continuously.
GreyCastle Security provides Risk Assessment, Awareness, Vulnerability Assessment, Penetration Testing, ISO and Incident Response services to businesses throughout North America. Our team is comprised solely of certified professionals and former security officers who bring a client perspective to everything that they do..
Gridware
Crunchbase | Website | Twitter | Facebook | Linkedin
Gridware is a cybersecurity firm offering comprehensive information security solutions to minimize cyber attacks and threats. Our award-winning team hosts some of APAC’s most talented ethical hackers that provide penetration testing, audits, incident response and IT forensic investigations.
We are disrupting the traditional model of cybersecurity consulting by offering exceptional quality advice coupled with a fantastic customer experience. Get secure today, team up with Gridware..
NetWitness
Crunchbase | Website | Twitter | Facebook | Linkedin
NetWitness Corporation provides network security monitoring software products for commercial and government organizations in the United Kingdom and internationally. It offers network content analysis methods, risk verification and determination methods, incident response, data leakage and content monitoring, and compliance services.
The company’s products include NetWitness NextGen, a network security monitoring solution to solve various network and security problems, including insider threat management, data leakage protections, compliance verifications, malware activity detections, zero-day detections, network performance management, and network-based e-discovery, as well as data governance, risk, and compliance management verifications; and a NextGen enterprise network forensics and advanced threat intelligence platform for security experts in various enterprises. It also provides infrastructure products, such as Investigator, an interactive software application that provides contextual analysis of captured network data; Informer, an automated reporting engine of the NetWitness NextGen product suite; Decoder, a component of an enterprise-wide network data recording solution; Concentrator, which is used to aggregate clusters of decoders in real-time for enterprise-wide analysis of network; and API/SDK, an open programming interface that leverages the NetWitness NextGen record once/re-use many times network capture infrastructure.
In addition, the company offers SIEMLink, a solution for translating security event data between Web-based consoles, such as security event and information management systems, and network and system management programs. It primarily serves defense organizations, financial services companies, national law enforcement and intelligence agencies, and banks.
NetWitness Corporation has a strategic partnership with Phoenix Datacom, Ltd. The company was incorporated in 2006 and is based in Herndon, Virginia..
Sacumen
Crunchbase | Website | Twitter | Facebook | Linkedin
Sacumen specializes in working with Security Product Companies. We are working with 50+ Security Product Companies such as Symantec, Palo Alto Networks, Varonis, AlienVault, IBM, CA Technologies, ThreatConnect, SecurityScorecard, ForgeRock, Code42, BigID, Flashpoint etc in the areas of Connector Development, Connector Support, and Product Engineering.
We have built 700+ Connectors in the areas of SIEM, IAM, Ticketing Systems, Incident Response, Cloud Applications, Cloud Monitoring, Threat Intelligence Feed, Endpoint Security, Cloud Storage, GRC, Vulnerability Management, Authentication, etc.. .
Knight Point Systems
Crunchbase | Website | Twitter | Facebook | Linkedin
Knight Point Systems provides IT services and solutions to federal and commercial clients that include program management, cyber security, cloud computing, application development, infrastructure services, and service desk management. It offers cloud and data center services, cyber security services that include a range of information assurance, vulnerability and threat analysis, security operations center, communications security, and incident response; program management services, help desk and service center services, application and database development, management, migration, integration, and deployment services, and IT strategic planning services.
Knight Point Systems’ services also include cloud enablement, Compute-as-a Service, Storage-as-a-Service, Network Capacity-as-a-Service, and Security-as-a Service, Software-as-a-service applications and customizable solutions, off premises cloud computing services, and enterprise architecture or IT strategic planning services. It offers its services to clients in homeland security, defense, environment and energy, intelligence, health care, labor, transportation, finance, and education sectors.
Robert Eisiminger founded Knight Point Systems in 2005. Its headquarters is in Reston in Virginia with additional in Chicago, Tucson, Orlando, Atlanta, Ogden, and Philadelphia and data centers in America, EMEA, and the Asia Pacific..
Arete Advisors
Crunchbase | Website | Twitter | Facebook | Linkedin
Arete Advisors is a cybersecurity company providing an accelerated incident response for detecting and responding to cyber-attacks. The company advisor services provide legally defensible, compliant cyber strategies that assist the C-Suite and Boards of Directors to continuously improve the organizations’ cyber posture.
Arete Advisors support multiple missions in the areas of Education, Healthcare, Critical Human Needs, and the Environment. Their mission is to protect and defend organizations against the financial and reputational damages caused by data breaches.
The company core skills include triage, digital forensics, malware reverse engineering, remediation, managed detection response, hunt, and testifying expertise.. .
ThreatInformer
Crunchbase | Website | Twitter | Facebook | Linkedin
ThreatInformer provide cyber risk intelligence to the insurance industry. Combining threat data, security assessments and environmental factors, ThreatInformer’s cloud SaaS platform delivers the complete cyber risk picture.
ThreatInformer brings together a team with cyber insurance, incident response, threat intelligence and platform development experience. With a relentless focus on the cyber insurance industry they are providing insights to transform the way risks are placed and written..
IBM Resilient
Crunchbase | Website | Twitter | Facebook | Linkedin
IBM Resilient provides incident management software empowering organizations to thrive in the face of cyberattacks and business crises.
TrustPath
Crunchbase | Website | Twitter | Facebook | Linkedin
TrustPath develops artificial intelligence-based algorithms.
Cyber Defense Group
Crunchbase | Website | Twitter | Facebook | Linkedin
CDG offers Cloud Security, Virtual CISO (vCISO) and Incident Response services
Context Information Security
Crunchbase | Website | Twitter | Facebook | Linkedin
Context is independently operated with FTSE250 backing. An exceptional level of technical expertise informs all our work and our strong track record is based above all on the technical skills, professionalism, independence and integrity of our consultants.
Many of the world’s most successful organisations turn to us for advice, technical assurance, incident response and investigation services, because they believe Context sets the standards that others within the industry strive to follow. Context helped to establish CREST, we helped to shape the development of the Bank of England’s CBEST scheme and was one of the first companies to be certified as an approved supplier of the UK Government’s Cyber Incident Response (CIR) Scheme..
CISOSHARE
Crunchbase | Website | Twitter | Facebook | Linkedin
CISOSHARE is driven to improve our world as the leading provider of cyber security services for rapidly growing organizations. Located in Southern California and recently ranked in 2018 as the 6th fastest-growing private organization in Orange County, our team establishes a culture of continuous learning and teaching in ourselves, our clients, and our community.
Our employees are veterans, students, and leading experts in the cyber security discipline. Our clients require the best in cyber security advice and service, and we work with passion every day to deliver it.
CISOSHARE’s primary service pillars offer best practice program assessments, technical vulnerability and penetration testing services, incident response and remediation retainers, as well as large-scale professional services in security program and security architecture development. Our team also offers managed services such as security program process or role performance for clients.
CISOSHARE also has a security program development application that focuses on program measurement and improvement that integrates into our managed service offering and offers advice and services.. .
Cyfir
Crunchbase | Website | Twitter | Facebook | Linkedin
CyFIR is the ideal network investigation and Incident Response tool for performing live computer investigations across any size enterprise.
Vehere
Crunchbase | Website | Twitter | Facebook | Linkedin
Established in 2006 by brothers – Naveen and Praveen Jaiswal, Vehere has emerged as a leading Cyber Situational Awareness solution provider owing to the success of its new AI Powered PacketWorker and IntelliWorker platforms targeting Enterprise and National Security markets. The solutions have delivered compelling return on investment to customers boosting cyber resilience and accelerating incident response capabilities.
Vehere has a multinational footprint across the United States, India, South East Asia, Middle East, Africa and, Armenia. Our mission is to enable Cyber Situational Awareness by “securing” networks for empowering Enterprises, Telecoms and National Security Organizations to protect themselves..
Foreground Security
Crunchbase | Website | Twitter | Facebook | Linkedin
Raytheon Foreground Security is a dedicated cyber security company providing security engineering, assessment, customized security training, and advanced incident response and forensics services. Our Virtual SOC (V-SOC) service allows clients to outsource the monitoring and management of their current security products while keeping all data inside their boundaries.
Our patent-pending Automated Threat Intelligence Platform (ATIP) automates threat identification in real time so we can focus our efforts on diagnosis and remediation. At one client, our innovations resulted in a 300% increase in incident detection rates.
Raytheon Foreground helps organizations align information security with key business objectives. Our experienced professionals hold CISSP, CCSP, CISM, CEH, CHFI, and many other certifications and our penetration testers have identified over 100 zero day vulnerabilities within the last 12 months.
We provide our more than 100 government and commercial clients with the proven expertise and real-world implementation experience required to protect against today’s leading threats.. .
Sublime Black
Crunchbase | Website | Twitter | Facebook | Linkedin
Sublime Black is an automating cybersecurity platform that develops artificial intelligence-based security technology. The company’s technology is primarily focused on automating cybersecurity incident response.
It is based in Rockville, Maryland, USA.. .
Cycura Inc.
Crunchbase | Website | Twitter | Facebook | Linkedin
Cycura is a Toronto-based cyber security company that specializes in Offensive Cyber Security. We have a team of some of the best security professionals in the industry.
At Cycura, we take an offensive approach to security, both creating and implementing break-through technologies. We provide advanced, customized, and confidential cyber security services, cyber investigation services, and digital forensic services to governments, companies, and organizations.
We focus on these types of services: Security Audits; Forensics and Incident Response; Malware Analysis and Reverse Engineering; Continuous Monitoring; and Security Training Services. What makes us different? Cycura’s approach to security begins in our R&D labs.
Our security researchers understand computer code from the inside out. Our experts don’t use garden variety, “off-the-shelf” security tools.
Cycura continuously and relentlessly identifies new vulnerabilities, develops new exploits and creates proprietary scanning and monitoring tools and software. The firm serves organizations with particularly high intellectual property (IP) value, as well as critical data protection needs, including: software and technology companies; startups; airports; defense & homeland security; financial institutions; power generation and transmission; oil & gas facilities; refineries & the petrochemical industry; seaports; telecommunications; and water utilities..
I-Tracing
Crunchbase | Website | Twitter | Facebook | Linkedin
Founded in 2005 and headquartered in Paris, I-TRACING is an innovator and market leader addressing customer needs for IT security and data tracking, Internet security, e-discovery solutions, deep-packet inspection, log management and intelligence (LMI), security forensic analysis, SOC solutions (build & run). SInce 2013 I-TRACING Ltd is the UK and international business subsidiary.
I-TRACING, a pure-service oriented company, encompass the information (data) traceability , IT legal compliance (PCI, SOX, Basel, ISO2700x, data privacy,…), lawful inspection, IT security operations such as SOC and Incident Response, fraud management, vulnerability assesments, threat control, etc.. .
Sword & Shield Enterprise Security
Crunchbase | Website | Twitter | Facebook | Linkedin
Securing business for more than 20 years, Sword & Shield Enterprise Security, Inc. partners with our customers to meet the needs of their dynamic cybersecurity and compliance landscape.
We work closely with companies to become tightly integrated with their enterprise operations in the areas of managed security, risk and compliance, enterprise security consulting, security incident response and forensics, and security training. Recognized nationally and headquartered in Knoxville, Tennessee, Sword & Shield has offices throughout the US.
Sword & Shield services a broad spectrum of industries, including healthcare, retail, media, banking and finance, legal and manufacturing.. .
This article was written by Benjamin Skute from Threat.Technology. The editor for this article was Tess Page. If your company is featured in this article and you want to have amendments made please contact us on: [email protected].
Alternatively you may write to us at: Threat.Technology/Fupping Ltd, First Floor, 61-63 Rochester Pl, London NW1 9JU.