In a radical move, Praetorian also announced plans to open source all Chariot capability modules. This approach reflects their belief that software is a commodity, and the real value lies in support, solutions, and services that accompany it, along with the continuous threat exposure management platform.

“Our goal is to provide all foundational capabilities for free, while simultaneously betting that the true differentiation lies in our team of offensive security experts standing side by side with our customers’ defensive teams every day, at a price point that makes sense” said Nathan Sportsman, CEO and founder of Praetorian. “While working at Sun Microsystems, RedHat taught us the hard way that software is a commodity. I want to apply those lessons to cybersecurity and rid this industry of overpriced and non-functional security products.

Chariot’s Attack Surface Management (ASM) module will be the first module to roll out into a freemium tier.

Key Features within Chariot’s ASM Module:

• Comprehensive Asset Visibility: Monitor dynamic cloud environments, discover shadow IT and reduce technology sprawl
• Proactive Risk Assessment: Understand business impact and risk of interconnected assets
• Prioritization of Critical Risks: Eliminate the noise, remove false positives and ensure resources are directed at the issues that truly matters
• Continuous Monitoring: Immediately scan for 0-days and attack techniques reported by cyber threat intelligence
• Public and Private Repository Monitoring: Detect exposed secrets, public repositories, and CI/CD misconfigurations

These features empower organizations to maintain strong security postures without the financial burden typically associated with asset discovery. But Praetorian isn’t stopping there. As a fast follow to Chariot’s Free ASM release, Praetorian will release a Breach and Attack Simulation module in the coming weeks. To top this, Praetorian will also release free modules for Vulnerability Management, Cyber Threat Intelligence, and Continuous Penetration Testing, further enhancing Chariot’s free tier capabilities.

Praetorian’s core value proposition is industry-leading offensive security experts supercharged by world-class software and proprietary data. “We believe software is just enablement technology,” said Sportsman. “Enterprises are seeking solutions, support, and services. CISOs don’t have enough budget, they don’t have enough people, and the business does not listen to them enough. We solve all three of those problems by consolidating tech spend, eliminating noise, standing side-by-side with their teams, leveraging our 3^rd party assessor status to provide customers the ammo they need to get things fixed. – all at a price point less than a fully burdened senior FTE hire.”

Modern security teams are drowning in noisy alerts and spread thinly across too many security products. Chariot enables organizations to cut through the noise and consolidate five core security solutions into a single unified platform. Its combination of software plus experts empowers customers to focus on exploitable risks instead of superficial alerts. For more information about Praetorian’s free ASM offering and the Chariot platform, visit praetorian.com  or contact info@praetorian.com. 

Related News:

IT and Security Professionals Think Non‑IT Leaders Don’t Grasp Vulnerability Management

Top Ways to Enhance Your Cybersecurity Defenses

The post Praetorian Offering a Free Version of the Attack Surface Management Platform appeared first on Digital IT News.

“Managing security and compliance can be a tedious and complex task, which has been further complicated by a flood of single, point products,” said Bryon Miller, CISO and Hosted Portal Lead, ASCENT. “With the ASCENT Security Compliance Portal, organizations can automate their security processes while gaining a single source of compliance truth for visibility into achievements and gaps across leading security frameworks. In a single cloud-based platform, security and compliance teams now have everything they need to manage compliance readiness.”

The new ASCENT Security Compliance Portal automates security program processes, including assessments, policies, plans, and incident response, end-to-end. The new portal also features capabilities for complete vendor management and artifact storage so that companies can simplify their adherence to leading compliance frameworks while retaining regulatory proof to simplify auditing response. Key features of the portal include:

• Security Assessments. Providing the real-time status for any control framework, or multiple control frameworks, ASCENT security assessments provide complete, continuous monitoring of controls to ensure assessments are always current.
• Security and Compliance Calendar. Featuring automated email reminders to control owners, the security and compliance calendar proactively manages and monitors control tasks so last-minute data collection is avoided.
• Risk Assessments. ASCENT provides annual risk assessments for natural, man-made, business, and IT risks, to ensure appropriate mitigation steps can be performed. Once completed, it’s easy to maintain changes and report on real-time status to ensure the risk assessments are current.
• Complete Vendor Management. ASCENT simplifies vendor management processes, automating vendor due diligence assessments where vendors are notified of the need to complete their risk assessment directly within the portal. Vendor contract management features also monitor, manage and alert on renewals and expirations.
• Automated and On-Demand Reporting. ASCENT provides automated weekly reporting and offers customizable on-demand reporting across critical compliance areas including security assessments, security awareness training, outstanding compliance tasks and more.

ASCENT Security Compliance Portal is a multi-tenant solution that offers out-of-the-box compliance framework processes for CIS Top 20, Cybersecurity Assessment Tool (CAT), Cybersecurity Maturity Model Certification (CMMC), FedRAMP, FFIEC, GDPR, HIPAA/HITECH/HITRUST CSF, ISO 27001/27002, NIST (FISMA), PCI-DSS and over 30 additional industry-standard frameworks. The solution is ideal for regulated industries, including financial services, DoD contractors and suppliers, healthcare organizations, law firms and auditing firms as well as the managed services providers (MSPs) that support them to ensure security and compliance practices for their customers.

“GiaSpace has been performing network audits as one-offs for many years, but we were missing a portal that we could use to deliver our Compliance as a Service,” said Robert Giannini, Strategic Technology Consultant, GiaSpace, a managed IT and security services provider. “When the DoD ramped up the intro of CMMC, we put forth a lot of searching for a system that we could use to manage NIST, CMMC, and HIPAA audits. After our initial trial and error, we found the ASCENT Portal. Today we use the ASCENT Portal to manage several multi-tenant audits and the required supporting documentation. I strongly feel this is a system that is going to streamline our efforts in getting DoD contractors CMMC certified and manage those findings in a secure system.”

Available now, the SaaS-based ASCENT Security Compliance Portal pricing starts at $4,800 annually. For more information, visit: www.ascent-portal.com.

Image licensed by: unslpash.com

Related News:

Deloitte Introduces ReadyAI Artificial Intelligence-as-a-Service Solution

BMC Enables Organizations to Develop and Deliver Code Faster

The post ASCENT Launches ASCENT Security Compliance Portal appeared first on Digital IT News.