2014 Digital Yearbook of Homeland Security Awards

More documents

Recommendations

Info

MEET THE SPONSORS GSN INTERVIEW Joe Fantuzzi, President and CEO, Agiliance, Inc. – 2014 Winner, Best Compliance / Vulnerability Assessment Solution – 2014 Finalist, Best Big Data Analytics Solution – 2014 Finalist, Best Continuous Monitoring Solution Joe Fantuzzi has been president and CEO of Agiliance since January 2010. He drives the company’s business direction, strategy, and execution. His team successfully pioneered and delivered the first massively scaled, real-time Cyber Security Operational Risk solution in the market. Bringing 25 years of software experience to Agiliance, Joe is an expert in creating high-growth, venture-backed businesses in emerging technology markets, and has helped building over $3 billion in market valuation as an executive for industry leading companies throughout his career. GSN: Tell us a little bit more about Agiliance. JF: Agiliance is known as the Big Data Risk Management Company. We deliver integrated Cyber Security and Operational Risk Intelligence via cloud-managed services and software. Agiliance solutions automate how Global 2000 companies and government agencies achieve continuous monitoring of big data across financial, operations, and IT domains to orchestrate incident, threat, and vulnerability actions. RiskVision customers demonstrate automation use cases within 30 days on-demand, and within 60 days onpremise, made possible by a configurable, purpose-built platform and applications, leveraging over 70 data integrations to off-the-shelf software, and mapping content from over 300 domains and regulations. RiskVision scales with organizations, effectively managing assets, data, people, and processes to achieve 100 percent risk and compliance coverage. Its real-time risk analysis leads executives 8 to optimized business performance and better investment decisions. What key issues does RiskVision resolve for organizations? JF: RiskVision delivers real-time ‘data-to-command’ risk intelligence. Customer use cases are Incident Risk Response (IRR), Threat and Vulnerability Mitigation (TVM), Third-Party Risk (TPR), and Operational Risk Management (ORM). Previous approaches cost $10s of millions to piece together data from the mission, security, and IT operations, only to learn the data was obsolete once presented, and cyber-attackers had been inside the infrastructure for months. RiskVision’s integrated data model and massively scalable architecture change the game on cyber-attackers by speeding up the process to make cyber risks visible, measureable, and actionable. Inaccuracies are reduced
and legacy systems are retired, saving both time and money. Some production clients manage over 1 million assets and have over 10,000 daily users. Benefits are incident reduction, 5 – 10x faster time-to-remediation, less audit failures, and 2 – 3x operational efficiency gains. Please describe a major federal agency using the Agiliance RiskVision approach. JF: The U.S. Department of Veterans Affairs (VA) is one such example. They were experiencing major operational efficiency issues stemming from their Assessment and Authorization (A&A) procedures. Per FISMA law, every online system must maintain an Authority to Operate (ATO) certification, and FISMA subjects must renew their ATOs for every major system change. For the agency, this meant manual gathering and assessing millions of check results generated by third-party security monitoring tools. The problem with this approach was the vast amounts of data it produced and great difficulty understanding the real meaning of the collected data and correlating it to the agency’s compliance posture. And by time the data was processed and analyzed, it was no longer actionable. All the time and money spent collecting it, was wasted. As a result, completing each ATO was a labor- and time-intense process, inhibiting the agency’s ability to meet their audit deadlines. The agency implemented RiskVision to collect data from their IT and security tools and perform real-time diagnostics and mitigation using NIST SP 800-137 and the NIST IR 7756 (CEASARS) risk frameworks. The VA project is the largest cyber security risk project in the world, conducting daily control checks for 1+ million systems for more than 130 technical controls at the VA centers in DC and Austin, Texas; providing access to 4,000 workflow and reporting users, as well as 400,000 policy attestation users. 9 Now the VA can cross-verify controls between federal regulatory risk management frameworks such as FISMA, NIST SP 800-53, and CyberScope. After deploying RiskVision, the agency achieved significant cost and time saving. Rather than collecting each bit of data generated by more than 1 million data collection points, the IT personnel now gathers and stores highly relevant information and attends to high-risk issues in a timely manner. How does Agiliance see the future of Cyber Security Operational Risk? JF: Notwithstanding better analytics and decision-making from use of big data technologies, cloud-managed services is the new way to informed risk management. In 2014 alone, our clouddelivered clients grew over 600 percent versus 2013, led by customers in the Financial Services and Healthcare industries. One of our Financial Services customers is already managing 200,000 critical assets with an end-to-end threat, vulnerability, and ticketing solution delivered on the RiskVision platform and several connected technologies, all in the cloud. We’ve developed RiskVision’s managed services to be cloud security hardened and ready for cloud risk programs that are deploying in the DoD, IC, and civilian agencies. With pioneering efforts of CSA, FedRAMP, NIST, and others on cloud security, and the need to stand up solutions with operational efficiency, over 70% of cyber security operation risk management will be centered in the cloud by 2018. I can be reached by Twitter: @joe_fantuzzi and by email: jfantuzzi@agiliance.com On behalf of Agiliance and our customers, thank you for an opportunity to share our perspectives with your readers.
Page 1 and 2: The GSN 2014 Digital Yearbook of Ho
Page 3 and 4: TABLE OF CONTENTS 4 6 8 10 12 16-37
Page 5 and 6: automated testing of a network’s
Page 7: • Was named one of the city’s b
Page 11 and 12: Winners in the 2014 Homeland Securi
Page 13 and 14: fully so, countering biological thr
Page 15 and 16: a recognized leader in “digitizat
Page 17 and 18: Link to Web Page of Nominated Organ
Page 19 and 20: and then aggregates, normalizes, an
Page 21 and 22: Cyber Defense Magazine Names RiskVi
Page 23 and 24: uilding rich user profiles based on
Page 25 and 26: Offering the lowest TCO on the mark
Page 27 and 28: 3. Provisioning 2.0 - RSA IMG is en
Page 29 and 30: Peer platform. This innovative appr
Page 31 and 32: Suspect Search takes into account t
Page 33 and 34: ing closely with and listening to i
Page 35 and 36: Department of Defense, with the abi
Page 37 and 38: capacity to analyze what activity h
Page 39 and 40: ably. Code Dx ® makes it easy for
Page 41 and 42: GSN 2014 Digital Yearbook of Homela
Page 43 and 44: OTHER PRODUCTS Best Perimeter Prote
Page 45 and 46: such as HVAC, access control, utili
Page 47 and 48: Tell us about some of the recent ad
Page 49 and 50: party vendor access to restricted z
Page 51 and 52: afford to wait in line. This result
Page 53 and 54: onboarding process, AlertEnterprise
Page 55 and 56: esponse capability substantially an
Page 57 and 58: most top tier 1st agency responders
Page 59 and 60:
WHAT SETS SUSPECT SEARCH APART Ther
Page 61 and 62:
Link to Web Page of Nominated Organ
Page 63 and 64:
the terrain causes each of the boll
Page 65 and 66:
look up schedules and other informa
Page 67 and 68:
gym, and each of the digital PTZs a
Page 69 and 70:
source. With the pivCLASS portfolio
Page 71 and 72:
Winners in the 2014 Homeland Securi
Page 73 and 74:
da. A similar accident could occur
Page 75 and 76:
GSN Announces the 2015 Airport/Seap
Page 77 and 78:
engage in interactive dialogue via
Page 79 and 80:
the perimeter,” said Cezary Jozwi
Page 81 and 82:
Page 83 and 84:
phone or TETRA radio as the inciden
Page 85 and 86:
more buses with the innovative mobi
Page 87 and 88:
Page 89 and 90:
The implementation of the Desktop A
Page 91 and 92:
Page 93 and 94:
Page 95 and 96:
• Live vehicle streaming of CCTV
Page 97 and 98:
these communities are down by 12%,
Page 99 and 100:
elationships across jurisdictional
Page 101 and 102:
impeding the flow of legal traffic,
show all

2014 Digital Yearbook of Homeland Security Awards

Create successful ePaper yourself

Delete template?

Save as template?