"Protecting against cyber attack calls for a significant commitment of time and resource but one UK supplier has developed a new tool to free up manpower... A dramatic time-saving innovation for device security validation. "
MOD Defence Contracts Bulletin
Many have predicted the rise in automated cyber-attacks. This threat has generated a wave of new industry tools and corporate mergers in an attempt to create (and own) the ultimate “silver bullet”. One UK company has a different solution…
Providing an alternative but complementary viewpoint to the many technology providers focussed on ‘live attacks’ – Titania proposes a solution whereby cyber experts only need to focus on Zero Day threats, as all the other vulnerabilities, the ‘easy options’ (which in the end often amount to poor cyber hygiene) are completely eliminated.
For anyone working in security who knows this approach requires autonomous mitigation, it may seem like “mission impossible” akin to Kennedy’s dream of reaching the moon. Whilst eminently doable, in order to achieve fully self-healing and defending systems we need to provide AI’s with an accurate baseline of essential information to make autonomous mitigation decisions.
What currently stands in its way is the plethora of inaccurate information that current systems are plagued with. Independent research on some of these systems, show tools that are providing less than 20% accuracy. This is generating enough false-positives to make finding a vulnerability like listening for a whisper in a rock concert.
So what’s the solution?
Titania believes it is in automating the same “line by line” configuration analysis and process of interpretation, which expert penetration testers perform manually. Titania’s technology does this at scale, at speed - and with unprecedented accuracy. Through them, industry partners have already begun to unlock the potential for fully autonomous and self-mitigating / defending systems.
Titania will be demonstrating these world-leading systems at AFCEA Defensive Cyber Operations Symposium (May 15-17, Baltimore), and explaining how they support Military and Government clients around the world to develop adaptive, resilient and effective networks. Users include the U.S. Department of Defense, DoE, DoA, VA & US Treasury as well as the UK government, FBI, PayPal, and Deloitte.
At the Symposium, Ian Whiting, CEO & Founder of Titania and former accredited Penetration Tester, will be sharing how, it is possible to quickly gain detailed knowledge of systems defences, the monitoring capabilities that have been deployed, and any exploitable vulnerabilities/non-compliance with regulations such as STIG, CIS SANS, NSA, and NERC.
The tools are widely regarded as 100% accurate, a fact independently verified by CIS and military experts. They can audit online and in the cloud but can also audit networks that are secret or air-gapped - with equal efficiency. According to Gartner, Nipper Studio is: “the only offline configuration tool”, this combined with their continual monitoring capabilities makes them perfectly positioned to be a linchpin in solving the pressing problem of autonomous mitigation and defense.
Nicola Whiting CSO of Titania says: “As more regulation and best practice is introduced to address the growing number of major breaches, compliance is increasingly being pushed to the top of the risk register. Our automated configuration and build reviews validate compliance and provide remediation advice – in detail, at speed and with unprecedented accuracy.”
“I’m looking forward to speaking to cyber leaders and warriors about security ecosystems that de-risk and prepare the organisation for fully autonomous mitigation and self-healing systems. It’s what’s needed to free up our cyber experts, so they can focus on attack capability. ”.
For more information about Titania’s world-leading configuration analysis tools and a free copy of The Future of Autonomous Mitigation – visit Booth #326 opposite the Collaboration Theater.
- Ends -
About Titania: Titania are the world leaders in configuration analysis tools, helping to protect over 27 million end users in 95 countries. Our pioneering virtual modelling technology ensures that our configuration analysis tools deliver a level of detail and accuracy that previously only manual penetration testing achieved – delivered at enterprise scale and with unprecedented speed.
Nipper Studio performs analysis of firewalls, routers, switches and other network devices. Paws Studio performs analysis of servers, workstations, laptops, databases, enterprise applications and systems running Windows, Linux or Mac OS. Both tools are certified as 100% accurate and can be used onsite, online, offline, in the cloud, virtually or integrated into an enterprise system. (www.titania.com/freetrial