Vulnerability Management

Bugcrowd

IMG_0125.jpeg
                   

Bugcrowd has redefined crowdsourced security. We combine actionable, contextual intelligence with the skill and experience of the world’s most advanced hackers to help leading organizations solve security challenges, protect customers, and make the digitally connected world a safer place.

Bugcrowd. Outhack Them All.™


 

The Academy Column is Made Possible by the Generosity of Bugcrowd.

We are ever so grateful for your support!

 


  Live and On-Demand Webinars With Bugcrowd


  Their Stories With Bugcrowd


  Where Can You Find Bugcrowd?


  Conversations on ITSPmagazine


  Latest News From Bugcrowd


  Bugcrowd Expert Contributions to ITSPmagazine

 

Edgescan

 
               
 

Fullstack Vulnerability Management to detect weaknesses across web applications and supporting hosts. Continuous Vulnerability Assessment coupled with expert human intelligence - Virtually False Positive Free.

Full Stack Security: Websites, apps (mobile/web/cloud), software, servers and networks with over 57,000 assets under vulnerability management, edgescan is a listed "notable vendor" in the Gartner’s Magic Quadrant for Managed Security Services and a “sample vendor” in the Gartner Application Security Hype cycle.


Listen to Eoin and Rahim Talk About The 2019 Report Findings


Eoin Keary, Edgescan CEO, Tells Their Story

"Security is everybody’s problem now," says Eoin. "It is getting attention at the board level; you need to get yourself into these meetings, and you need to be prepared to present metrics."

Prefer to listen? Here’s the podcast version.


More Videos and Webcasts With Edgescan


  Their Story Articles and Podcasts

  Recent Contributions to ITSPmagazine


RunSafe

RunSafe.jpg
                   

RunSafe Security is the pioneer of a patented cyberhardening transformation process designed to disrupt attackers and protect vulnerable embedded systems and devices. With the ability to make each device functionally identical but logically unique, RunSafe Security renders threats inert by eliminating attack vectors, significantly reducing vulnerabilities and denying malware the uniformity required to propagate. Headquartered in McLean, Virginia, with an office in Huntsville, Alabama, RunSafe Security’s customers span the critical infrastructure, IIoT, automotive, medical, and national security industries.

 

Tripwire

                   

Tripwire delivers advanced threat, security and compliance solutions used by over 9,000 organizations, including over 50% of the Fortune 500. Tripwire enables enterprises, service providers and government agencies around the world to detect, prevent and respond to cyber security threats.


  Podcasts on ITSP Radio

Travis Smith, Principle Security Researcher at Tripwire, continues his work on My Bro the Elk

Travis Smith, Principle Security Researcher at Tripwire, continues his work on My Bro the Elk - working on it in the context of the small and medium sized businesses. Sean Martin, ITSPmagazine's editor-in-chief, originally covered this topic with Travis presenting a session during Black Hat 2015. This article ended up being ITSPmagazine’s first on-publication article.

Travis is now focusing on the SMB market as they are a targeted entity and are often underfunded and understaffed. Travis' work with the new My Bro the Elk combines technologies to create insights, and combines them as part of what he calls the "Sweet Security" offering which monitors network traffic while providing protection as well.

During our conversation, Smith also offers some core best practices, including network segmentation, which is handles virtually with the Sweet Security device. Goodness all around from Travis, for sure.

Interested parties can find the application stack is absolutely free at:
https://github.com/travisfsmith/sweetsecurity


Craig Young from TripWire talks with Debra Farber about Android TV device security and privacy

A lot of the security and privacy settings we’ve come to know and expect on our Android phones doesn’t seem to be carrying over to Android TV devices available to buy today. In most cases, the device you buy online may never see an official update from its vendor. This doesn’t mean it won’t get updated - the team at TripWire found that these devices are vulnerable to compromise such that they could be maliciously updated with new firmware, turning on the camera and the microphone - essentially for surveillance purposes.

That cause you to pause a bit? It should. Listen to this conversation between The Privacy Pact's Debra Farber as Craig Yound from TripWire's Vulnerability Research Team looks at these IoT security privacy challenges we face as a society.


  Recent Contributions to ITSPmagazine


 

Onapsis

                       

Onapsis is the pioneer in cybersecurity and compliance solutions for cloud and on-premise ERP and business-critical applications.

As the proven market leader, global enterprises trust Onapsis to protect the essential information and processes that run their businesses.


  Podcasts on ITSP Radio


  Webinars and Videos on ITSP TV

  Recent Contributions to ITSPmagazine

  Latest News

  Where Can You Find Onapsis?

 

Independent Security Evaluators

                   

ISE is an independent security firm in Baltimore, Maryland dedicated to aggressive defense strategies through advanced science. Our elite team of analysts and developers use scientific approaches to improve our clients’ overall security posture, protect digital assets, harden existing technologies, secure infrastructures, and work with development teams to ensure product security before deployment.


  Webinars and Videos on ITSP TV

  Latest News

  Upcoming Events

 

IOActive

                   

IOActive is the industry’s only research-driven, high-end information security services firm with a proven history of better securing our customers through real-world scenarios created by our security experts. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment to chip reverse engineering across multiple industries. IOActive is the only security services firm that has a dedicated practice focusing on Smart Cities and the transportation and technology that connects them. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in 1998, IOActive is headquartered in Seattle, US, with global operations through the Americas, EMEA, and Asia Pac regions. 

 

CBI

                   

CBI manages IT security risk and helps ensure your data is secure, compliant and available. No matter your industry our Subject Matter Experts, tailored assessments and custom solutions help safeguard your organization’s information. Our proven process allows you to prepare, manage and navigate issues that can damage your business and reputation.

 

Aptive

                   

Aptive provide Cybersecurity consultancy services specialising in penetration testing services, web application penetration testing, external penetration testing and mobile app penetration testing. Additionally, Aptive provide vulnerability assessment services (automated and manual), security hardening and security build reviews.