RiskSense

RiskSense - a company in the field of prioritization and risk-based vulnerability management.

History

2021: Acquisition by Ivanti

On August 6, 2021, it became known that Ivanti, a supplier of an automation platform that discovers, controls, protects and maintains IT assets from cloud systems to peripherals, announced the acquisition of RiskSense. This merger opens the next stage of development in the management of updates. Combining the two solutions will allow organizations to significantly reduce the number of attacks, prioritize vulnerabilities more effectively, reduce cyber risks and exposure to ransomware attacks through a proactive approach to managing risk-based updates. Some key risk-based vulnerability prioritization and remediation capabilities are already available to Ivanti Neurons for Patch Intelligence users. The terms of this transaction were not disclosed.

Over the past two years, ransomware from a small nuisance has become a serious problem that undermines public development, "said Srinivas Mukkamala, CEO of RiskSense. - Uncorrected vulnerabilities remain one of the most common ways of infiltrating an attacker into an organization's ecosystem. I am actively involved in the global fight against ransomware, and I sincerely believe that combining solutions to prioritize vulnerabilities based on risk analysis and automation of update analytics will help organizations reduce cyber risks and make a great contribution to global cybersecurity. RiskSense and Ivanti are teaming up so that their customers can improve their protection against the generation of complex viruses, including ransomware.

The shared solution is expected to reduce the average time it takes to detect, troubleshoot, and respond to threats. This is especially true for critical vulnerabilities associated with cryptographers. Together, Ivanti and RiskSense will provide IB- and IT teams with context and adaptive analytics about the vulnerabilities that are actively exploited, and which of them the organization is exposed to. Information will also be given on whether these vulnerabilities are associated with ransomware viruses. This data will quickly eliminate such security threats. As a result, IB- and IT teams will be able to more effectively and efficiently combat the vulnerabilities that attackers often use. Ivanti Neurons for Patch Intelligence has already integrated a RiskSense rating on vulnerability analytics and risk assessment, which is calculated on the basis of cyber intelligence data, trends in the implementation of exploits and inspections of IB analysts. This rating is already available to Ivanti Neurons for Patch Intelligence users who have a RiskSense license. The merger of companies is as easy as possible: on June 2, 202, the White House issued a memorandum urging organizations to use a risk-based vulnerability assessment strategy to better manage updates and strengthen protection against encryption viruses. Moreover, Gartner called vulnerability management based on risk analysis one of the cybersecurity projects on which IB specialists need to focus primarily in 2021 - this will increase business value and reduce risks.

Ivanti has been a leader in update management for many years, and with the acquisition of RiskSense, our solution will reach a higher level - CEO and Chairman of Ivanti Jim Schaper said - this merger will provide our customers with a comprehensive overview of vulnerabilities and cyber risks that can be quickly eliminated with Ivanti Neurons for Patch Intelligence. Customers will be able to significantly reduce the attack surface and reduce the risk of IT systems hacking with vulnerability analytics, which can prioritize actions to eliminate them based on exploits and ransomware that are actively used by intruders.

Prioritizing risk-based vulnerabilities along with automating update analytics is a completely unique solution in the market, "added Srinivas Mukkamala. - Ivanti and RiskSense combine two valid datasets. Thus, the RiskSense offers reliable data on vulnerabilities and their exploitation, including their connection with groups of ransomware, which are increasingly provided as a service, or with the states behind APT groupings. Ivanti in turn provides reliable update data. By combining Ivanti and RiskSense, our customers can take the right action at the right time to effectively protect against ransomware.

Installing updates without context about threats is ineffective, "commented Michael Montoya, CISO of Fortune 500.- So far, many IB- and IT teams are trying to fix every vulnerability found. Ivanti and RiskSense 's security solution will be of great benefit to organizations by enabling them to identify and quickly address weaknesses that require priority attention.