RSA Day 2: Trellix, Cisco, CrowdStrike, Sumo Logic, More
The cybersecurity industry continues to be dominated by straight, white males.
![Bryan Palma Bryan Palma](https://eu-images.contentstack.com/v3/assets/blt10e444bce2d36aa8/blt426f52ed4a447e31/65242808322ab612a8c56431/RSAC1.jpg?width=700&auto=webp&quality=80&disable=upscale)
The cybersecurity industry needs to do more to attract women, people of color, LGBTQ and non-binary people, said Trellix’s Bryan Palma.
“Because we’re behind on talent, we struggle to defend ourselves,” he said. “I will stop at nothing to ensure we create a diverse talent pipeline to address this shortage.”
The industry needs to start making inroads into other communities, Palma said. In addition, it needs to encourage people with diverse backgrounds to enter cybersecurity.
“At the end of the day, success in cybersecurity doesn’t depend on a degree,” he said.
Trellix has partnered with the Hispanic Alliance for Career Enhancement (HACE) a national nonprofit dedicated to the employment, development and advancement of current and aspiring Latino professionals.
In the 1970s, dairy consumption dropped due to the growing popularity of soft drinks and other beverages, Palma said. As a result, dairy sales dropped to historic lows.
In response, the California Milk Processor Board and the industry came together in the early 1990s to launch the “Got Milk” campaign. In response, milk sales rebounded.
“We need our own campaign, where we put aside our own interest for the greater good,” he said. “I see companies across our industry working hand in hand, inspiring others to heed the call.”
During RSA, Cisco unveiled its new strategic vision of a unified platform for end-to-end security across hybrid multicloud environments. It’s designing the Cisco Security Cloud to be the most open security platform with no public cloud lock-in.
Cisco Security Cloud will provide an integrated experience for securely connecting people and devices everywhere to applications and data anywhere. With unified management, the open platform will provide threat prevention, detection, response and remediation capabilities.
Shawn Yuskaitis is security partner go-to-market leader in the Cisco Global Partner Organization.
“Partners play a critical role in the ecosystem of our Security Cloud strategy,” he said. “Our partners help provide customers with the guidance and security expertise to invest in solutions that will enable customers to be more resilient. Partners have a variety of options to go to market with Cisco security products that will leverage the capabilities of the Security Cloud.”
While the Security Cloud is a long-term vision, “we of course see great benefit for our partners,” Yuskaitis said.
“The Security Cloud will provide opportunities for value-added services creation,” he said. “Additionally, with the Security Cloud’s open APIs, partners can cross-sell and upsell across Cisco and third-party solutions to deliver the targeted outcomes their customers are seeking.”
Security is a concern that everyone needs to work collectively together to solve, Yuskaitis said.
“It is no longer about who has the competitive advantage against each other, but who has the competitive advantage over threats and attackers,” he said. “Together, with our partners, we believe that the Security Cloud will help solve this with our unified management and policies, and open APIs to enable third-party solutions and a security marketplace.”
During RSA, CrowdStrike announced it has expanded the CrowdXDR Alliance to include key strategic partners across web and email security (Menlo Security), identity and access management (Ping Identity) and network detection and response (Vectra AI).
CrowdStrike also introduced new capabilities for the Falcon Extended Detection and Response (XDR) module to speed up detections for security teams. That includes an integration with ServiceNow, an existing CrowdXDR Alliance partner, to simplify security operations workflows with automated ticket creation.
Michael Rogers, CrowdStrike’s global channel chief, was on hand to discuss the announcements. CrowdStrike went big at RSA, renting an entire hotel and storefront.
“It’s very exciting for our partner ecosystem,” he said. “We’re very excited for our new partners in our XDR alliance. And we continue to look at both open and native opportunities for our partners to integrate with the Falcon platform. It will create opportunities for our partners and CrowdStrike together to streamline and be more efficient, and more effective at looking at the threat landscape and ultimately protecting our mutual customers. We look at cybersecurity as a team sport, so we look at a lot of the partners that we brought into the XDR alliance and the zero trust alliance, and those opportunities together provide for us together to come up with new, innovative ways to protect customers.”
CrowdStrike continues to stick to its core mission, which is to protect customers of all sizes, stopping breaches and protecting critical infrastructure across all verticals, segments and customers, Rogers said.
Also during RSA, Sumo Logic unveiled Sumo Logic Threat Labs, a threat research and security detection unit. The Threat Labs unit is among the expanded services and tools from Sumo Logic to help customers modernize security operations and achieve greater cyber-resilience.
The unit’s team is staffed with domain experts with backgrounds in forensics, incident response and red/blue teaming, as well as offensive and defensive cyber operations in the U.S. military and intelligence services. The unit will also play a larger role in contributing advanced detection logic and best practices to the security community to help collectivize the defense.
Lynne Doherty is Sumo Logic’s president of worldwide field operations.
“Sumo Logic is the only cloud-native observability and security solution on the market, so this is an important event with us as we meet with customers and partners to talk to them about how we can help solve their problems,” she said. “Our customers are facing a real challenge … data is growing faster than their budgets as they move to cloud and cloud-native, and they modernize their applications. And so with our solution, it allows customers … to manage both the growth of the data, but keep their budgets in line.”
Sumo Logic is attracting new partners, Doherty said.
“And I just hired a new channel leader, Timm Hoyt, and so for partners, that’s absolutely going to be something we’re doubling down on,” she said. “We’ve made significant investments in our channel and our partner resources. So for us that offers our partners an opportunity as we expand our partner programs and we make Sumo Logic easier to work with … as well as the most profitable company to work with for partners through programs that we have …
“As all customers are modernizing their applications, it becomes that much more important to have a partner that can bring it all together for them, look at where threats are, their data, their metrics and their logs, and how all of that is going to come together in a unified solution — because that’s what you need to have a secure environment,” she added.
At RSA, Acronis debuted a new advanced data loss prevention (DLP) pack for Acronis Cyber Protect Cloud. The solution shields MSPs and businesses of all sizes from data leakage.
In addition, the solution does not require months for deployment or skilled teams to maintain it.
The integration of behavioral-based DLP capabilities into the Acronis Cyber Protect Cloud platform is what extends its ability to deliver unified data protection, cybersecurity and management across systems, data and workloads regardless of their location. It offers a range of cyber protection capabilities that span the NIST cybersecurity framework, from identification to recovery, to ensure business continuity amid cybercriminals, insider risk threats or technology failure.
Candid Wuest is Acronis‘ vice president of cyber protection research.
“DLP is something that’s been around for awhile, but we’ve seen that many companies, definitely larger ones but also smaller, are struggling with it because it’s not so easy,” he said. “You need data classification. And it’s a process of what you want to do with it if you detect something. But on the other hand, we’ve seen insider threats taking off; more and more people are stealing data, be it ransomware groups, which are exfiltrating data, and also some system admins who might want to get cash on the side or steal data for their own benefit. So the problem is real, but the solution is not really good.”
Two years ago, Acronis acquired DeviceLock, which provided DLP software for enterprises and governments globally.
“We’ve shaped that feature,” Wuest said. “It’s an enterprise solution, but we changed it to what we call behavioral DLP because service providers don’t have a big security operations center (SOC) or security, orchestration, automation and response (SOAR) team of people to actually do all those manual checks. They want a solution that can automatically classify data and react to it with a base template for all those well-known and understood regulations.”
Also at RSA, Bugcrowd announced an expansion of its Penetration Testing as a Service (PTaaS) product line to include new offerings — Basic Pen Test and Standard Pen Test.
These additions expand the use cases covered by Bugcrowd’s PTaaS suite to cover the gamut of customer needs, from basic assurance for simple web apps and networks to continuous testing of complex apps, cloud services, mobile apps, APIs and IoT devices for increased risk reduction.
Ashish Gupta is Bugcrowd’s CEO.
“When we look at pen testing in the market, today customers have a wide array of applications they want tested or devices they want tested,” he said. “Some of those pen tests are more to get assurance that there’s a security posture, and some are to even get a deeper impact in terms of vulnerabilities. So we’ve expanded to provide the whole suite of pen tests.”
The intellectual capacity that Bugcrowd provides is going to help customers conduct pen tests faster, find bugs faster and fix them faster, Gupta said.
“Today, people are writing technology on an ongoing basis, so it’s not that you write code, and then wait for six months and revisit it,” he said. “It’s continuous improvement and continuous development. So you need to do pen tests that are continuous in nature. But then there’s this whole idea of providing assurance. So if you’re a survey company that does survey tools, and Home Depot is going to offer up your service to their end customers, they want to make sure that your survey tool is secure. So they just want to have a standard pen test, which is all the web applications, the specific protocols that need to be checked, and that’s what we do in our pen test package as well.”
Bugcrowd‘s partners stressed the need for the PTaaS expansion, Gupta said.
“Their end-customers were looking for quick, compliance-based pen tests and wanted to have a single platform where you could have the full complement,” he said. “And in addition to pen tests, they want to have bug bounty as well, which is an assurance methodology using gamification to find bugs. So they said expand your platform to address the needs of not only midmarket, but even large enterprises that need to do quick assurance pen tests, and make them available so we can resell them, and we don’t need to become experts and we can provide these standardized pen tests.”
There’s a $5.2 billion market for standardized pen tests so Bugcrowd entered that market to help partners address that, Gupta said.
Also at RSA, Bugcrowd announced an expansion of its Penetration Testing as a Service (PTaaS) product line to include new offerings — Basic Pen Test and Standard Pen Test.
These additions expand the use cases covered by Bugcrowd’s PTaaS suite to cover the gamut of customer needs, from basic assurance for simple web apps and networks to continuous testing of complex apps, cloud services, mobile apps, APIs and IoT devices for increased risk reduction.
Ashish Gupta is Bugcrowd’s CEO.
“When we look at pen testing in the market, today customers have a wide array of applications they want tested or devices they want tested,” he said. “Some of those pen tests are more to get assurance that there’s a security posture, and some are to even get a deeper impact in terms of vulnerabilities. So we’ve expanded to provide the whole suite of pen tests.”
The intellectual capacity that Bugcrowd provides is going to help customers conduct pen tests faster, find bugs faster and fix them faster, Gupta said.
“Today, people are writing technology on an ongoing basis, so it’s not that you write code, and then wait for six months and revisit it,” he said. “It’s continuous improvement and continuous development. So you need to do pen tests that are continuous in nature. But then there’s this whole idea of providing assurance. So if you’re a survey company that does survey tools, and Home Depot is going to offer up your service to their end customers, they want to make sure that your survey tool is secure. So they just want to have a standard pen test, which is all the web applications, the specific protocols that need to be checked, and that’s what we do in our pen test package as well.”
Bugcrowd‘s partners stressed the need for the PTaaS expansion, Gupta said.
“Their end-customers were looking for quick, compliance-based pen tests and wanted to have a single platform where you could have the full complement,” he said. “And in addition to pen tests, they want to have bug bounty as well, which is an assurance methodology using gamification to find bugs. So they said expand your platform to address the needs of not only midmarket, but even large enterprises that need to do quick assurance pen tests, and make them available so we can resell them, and we don’t need to become experts and we can provide these standardized pen tests.”
There’s a $5.2 billion market for standardized pen tests so Bugcrowd entered that market to help partners address that, Gupta said.
RSA CONFERENCE — This week’s RSA Conference 2022 featured a call from Trellix CEO Bryan Palma for the cybersecurity industry to do more to fill the massive and growing cybersecurity talent shortage.
The RSA 2022 event, the first since the start of the pandemic, brought more than 30,000 cybersecurity professionals from across the globe to San Francisco.
The cybersecurity talent shortage is continuously getting worse. There are about 400,000 open cybersecurity jobs in the United States, according to an (ISC)² report.
Palma said the cybersecurity industry continues to be dominated by straight, white males. And it’s not doing much to change that.
He chastised social media giants like Facebook, Twitter and Instagram, saying their leaders are aware of the societal damage they cause, but are taking little action. They have revealed themselves as amoral, and many of their employees are sick of it.
Employees Fleeing Social Media Giants
Many employees joined these companies in the belief that they would unite people, Palma said. Instead, these companies have “lost their way.”
Employees are leaving social media companies “in droves” in search of more “soulful work, work they can be proud of and that’s of a higher purpose,” he said. Stopping cybercriminals from taking down insulin machines in hospitals and limiting access to water in the Ukraine is the very definition of soulful work.
“The move from soulless to soulful presents an incredible opportunity for our industry,” Palma said. “Imagine if we turn it into a watershed moment in cybersecurity. Imagine attracting those seeking a fulfilling future. There’s no limit to the number of heart and minds we could inspire … maybe a million.”
Day two of RSA brought a lot more news and interviews. Among the latest newsmakers are Cisco, CrowdStrike Flashpoint, Sumo Logic and more.
See our slideshow above for more from RSA Conference USA.
Want to contact the author directly about this story? Have ideas for a follow-up article? Email Edward Gately or connect with him on LinkedIn. |
About the Author(s)
You May Also Like