Thoughts on Cisco acquisition 
of Kenna Security

Cisco has announced intent to buy Kenna Security, another play in the risk-based vulnerability management space. Press Release and Blog Post. Cisco and Kenna pinpoint the huge challenge that facing CISOs today and the best practice in that risk-based vulnerability management delivers:
  1. The ability to capture your environment in a unified view 
  2. Enabling a triage prioritizing of the most likely vulnerability scenario based on quantified metrics
  3. The power of automation to continuously adapt to a changing landscape driven by the increased threat but also by business demand for faster pace of change 
Share on facebook
Facebook
Share on twitter
Twitter
Anders Malmström

Anders Malmström

Chief Executive Officer

 

I applaud this as a first step in the right direction.  However, we have discovered that  in order to assess and understand the true threat, all aspects, not just software vulnerabilities need to be considered. Additional input aspects must also be included, such as threats, software and infrastructure vulnerabilities, network architecture, data flows, IAM implementations,  human behavior , (such as risk of phishing), etc and in both combination and contextualization.

To tackle true risk-based multifaceted vulnerability management in  an every increasing complex and fast changing landscape  we will need more powerful tools.  Adding AI through Attack Simulations to mimic how an attacker uses hacks and lateral movement has the ability to address the multidimensional problem that is beyond the human mind to grasp.

While Cisco’s vision, to “radically simplify security and help customers improve their security posture”, is a huge task it should be the absolute need for every CISO and security organization to demand from future cyber security tool providers.  If you are curious about how AI through attack simulations can take your risk-based multifaceted vulnerability management to the next level, I will be happy to speak with you.

About Foreseeti

Foreseeti is a leading provider of Automated Cyber Threat Modeling and Attack Simulation Solutions.
Our flagship products, the securiCAD solutions, empower IT decision makers with insight to the cyber risk exposure and resilience of their IT architectures, uncovering critical paths to high value assets and weak spots in the architecture so that proactive actions can be taken where they really matter.
Our solutions are used around the globe by a broad audience, including national and multi-national companies and organizations, critical infrastructure operators, leading consulting firms, and other companies for whom cyber security is truly important. We have certified partners around the globe and are proud to be an AWS Select Partner.

Let Foreseeti show you how the Security Organization can lead transformation, schedule a demo.

Capability PROFESSIONAL VANGUARD ENTERPRISE
Automated model generation

SDK/APIs

Manual model creation & editing

Attack Simulations

Risk levels, Attack Paths & Chokepoints

Threat Summary & Suggested Mitigations

Multiple attack scenarios & comparisons

Advanced Analysis, Reporting & Progress tracking

Multiple projects and models

Multiple Environments (On-prem, cloud, custom)

Multi-user collaboration

Capability VANGUARD ENTERPRISE
Automated model generation

SDK/APIs

Manual model creation & editing

Attack Simulations

Risk levels, Attack Paths & Chokepoints

Threat Summary & Suggested Mitigations

Multiple attack scenarios & comparisons

Advanced Analysis, Reporting & Progress tracking

Multiple projects and models

Multiple Environments (On-prem, cloud, custom)

Multi-user collaboration

WEBINAR NOVEMBER 19TH 17:00-18:30 CET

Automate Cyber Security in Cloud and DevOps Environments

We warmly welcome You to this webinar where our experts present leading security trends in using open-source software, hacker-powered knowledge, and attack simulations – automated in your pipelines!

detectify_outlined_logo_RBG
cropped-Debricked_LogoTransparentwhite (1)