The Next Manhattan Project

Just participated in The White House Summit on Cybersecurity at Stanford.  The President and all the participants focused on the fact that cyber is the threat of the 21st century, that government alone can’t protect us, and that no company has the resources to completely protect themselves.  Recent history confirms this.  Thus to collaborate, to share, and to work together is our real only solution.  There was plenty of head nods to the Constitution and privacy.  Tony Earley, CEO of PG&E, said that we need to work together like we did on the Manhattan Project.  Now that is big thinking, and a big call to action.  I couldn’t agree more.

RedSeal CEO Ray Rothrock Joins White House Summit on Cybersecurity and Consumer Protection at Stanford University

SUNNYVALE, Calif. — February 12, 2015 — RedSeal (redseal.co), the end-to-end provider of network visibility and intelligence to evaluate and strengthen network defenses, today announced that Chairman and CEO Ray Rothrock will attend the White House Summit on Cybersecurity and Consumer Protection at Stanford University on February 13, 2015. The event brings together a wide range of industry visionaries and advocates to explore ideas and partnerships that can enhance cybersecurity.

“Cybersecurity is an issue of the utmost importance for governments and businesses around the world, and I am privileged to contribute to this vital dialog,” Mr. Rothrock noted. “We also applaud the President for hosting this event at Stanford University in the heart of Silicon Valley—this is home base for much security innovation, and it’s where many solutions are likely to come from. Our mission at RedSeal has always been to stay ahead of cyber criminals by calculating every possible internal and external attack path to the most valuable network assets, and that’s the approach we advocate on every front.”

About the White House Summit on Cybersecurity and Consumer Protection

The Summit will bring together leaders from across the country who have a stake in this issue—industry, tech companies, law enforcement, consumer and privacy advocates, law professors who specialize in this field, and students—to collaborate and explore partnerships that will help develop the best ways to bolster our cybersecurity. From increasing cybersecurity information sharing to improving adoption of more secure payment technologies, here’s a look at the topics that panels at the Summit will address:

  • Public-Private Collaboration on Cybersecurity
  • Improving Cybersecurity Practices at Consumer-Oriented Businesses and Organizations
  • Promoting More Secure Payment Technologies
  • Cybersecurity Information Sharing
  • International Law Enforcement Cooperation on Cybersecurity
  • Improving Authentication: Moving Beyond the Password
  • Chief Security Officers’ Perspectives: New Ideas on Technical Security

About RedSeal (redseal.net)
RedSeal provides a cybersecurity analytics platform to Global 2000 organizations that helps maximize digital resilience against cyber events. RedSeal’s advanced analytics engine creates functioning network modelstests networks to identify security risks, prioritizes needed actions, and provides critical information to quickly remediate issues. The result: measurable reduced cybersecurity risk and lower incident response and maintenance costs. With operations in North America, Europe, and Asia, RedSeal customers include leaders in finance, retail, technology, utilities, service providers, and government, all served by RedSeal’s channel partner network.

Visit redseal.co or call 1-888.845.8169 for more information.

– end –

RedSeal and the RedSeal logo are trademarks of RedSeal, Inc. All other names and trademarks are the property of their respective owners.

Press Inquiries:
Michelle Sieling
Finn Partners/Horn Group
+1 (415) 905-4013
michelle.sieling@finnpartners.com

White House creates new cybersecurity agency

USA Today | Feb 10, 2015

“The idea of a cyber-intelligence hub is a good and timely one,” said Mike Lloyd, chief technology officer at RedSeal security analytics company. “Modern cyber-security still has a lot to learn from traditional military strategists, including the central role of a ‘war room’ — a single location where complex flows of data about the fight can be centralized, filtered, compared, mapped out, and acted upon.”

Is your doctor’s office the most dangerous place for data?

AP News | Feb 9, 2015

Encryption programs can be tuned so that even authorized users can view only one person’s account, or a portion of an account record, at a time, said Martin Walter, senior director at cybersecurity firm RedSeal Networks. That makes it harder for an outsider to view or copy a whole stockpile of records.

Anthem Hack: Personal Data Stolen Sells for 10X Price of Stolen Credit Card Numbers

CIO Magazine | Feb 6, 2015

“Compared to credit card information, personally identifiable information and Social Security numbers are worth more than 10x in price on the black market,” says Martin Walter, senior director at RedSeal.

Experts weigh in on Anthem breach, speculate on how attackers broke in

SC Magazine | Feb 5, 2015

Part of the problem Anthem might have been facing is that “large organizations cannot visualize and understand their whole attack surface, and inevitably end up leaving some side door unlocked and overlooked,” Mike Lloyd, CTO of RedSeal, told SCMagazine.com in a Thursday email correspondence.

Changing how we think about cybersecurity

Almost since the birth of computer networking, engineers who build and manage computer systems have needed to figure out how to protect them from both intentional attack and unintentional damage. The deeply technical realities of securing computers and networks created a need for security specialists. Recently, the costs and other implications of attacks have created a seismic shift in how businesses must think about cybersecurity. Responsibility for cybersecurity has expanded from the IT engineer to the boardroom, and it’s not going back.

This past week, Cisco published its Annual Security Report. One of the key areas Cisco calls out is “Changing the View Toward Cybersecurity—From Users to the Corporate Boardroom.” The report highlights the increasing importance of security not only within the technical ranks, but also as part of an organization’s strategic oversight. In fact, according to Cisco, “Strategies include considering new approaches to help align people, processes, and technology, making security a topic at the corporate boardroom level, and adopting more sophisticated security controls…”

As I speak with executives and board members of major enterprises, I’m increasingly hearing the same thing: they agree that it’s time for them to understand how their assets are protected, how their security investments are used, and how their networks are being protected before, during and after attacks. Given the complexity of today’s networks, providing them with answers requires automation. Networks aren’t static because businesses are not static. Useful answers need continual assessment and at least daily reports –describing the changes in the enterprise’s risk profile, access paths, and threats.  When changes occur, the CEO must ask the question, “Is my network more protected today than yesterday?”

As Cisco’s report states, “The future of cybersecurity hinges on boardroom engagement today.” That engagement requires goals and standards, clear communication, succinct information, and continuous improvement in the face of ever-changing business requirements. Furthermore, the report makes clear the questions that the organization must be able to answer: “Boards also need to start asking tough questions about security controls: What controls do we have in place? How well have they been tested? Do we have a reporting process? How quickly can we detect and remediate the inevitable compromise? And perhaps, the most important question: What else should we know? CIOs need to be prepared to answer those questions from the board, in terms that are meaningful and understandable to board members, and also outline implications for the business of any proposed changes..

With RedSeal, you are able to answer those questions, and not merely in terms of the intended design, but in terms of the reality of your network today. Is your network RedSealed?

What the Centcom Twitter Hack Means to You

Government Technology Magazine | Jan 23, 2015

Robert Capps, senior director of customer success at security analytics company RedSeal, said that attacks on social media accounts don’t generally indicate a significant security issue within the attacked organization.

New framework helps companies quantify risk

CSO Magazine | Jan 23, 2015

The World Economic Forum has released a new framework this week that helps companies calculate the risk of cyberattacks. In the framework, created with collaboration of Deloitte, the World Economic Forum admits that there are some challenges involved. For example, there’s a lack of the historical data necessary to estimate the probability of attacks from particular types of attackers for particular industry segments. The lack of good data is also holding back the evolution of a strong cyber insurance market, said Mike Lloyd, CTO at Sunnyvale, Cal.-based RedSeal, Inc.

CEOs Talk 2014 Successes

NBC Chicago | Jan 16, 2015

NBC Chicago talks with Ray Rothrock about RedSeal successes in 2014.