Security News

Kudelski Security, the cybersecurity division within the Kudelski Group, announced the launch of its dedicated Microsoft Security services, enabling clients to effectively consume and configure Microsoft security capabilities and add additional monitoring to their Microsoft 365 and Azure environments. In addition to providing a dedicated Microsoft focus, Kudelski Security offers clients a combination of proprietary, native cloud security monitoring capabilities as well as teams of experienced engineers to help deploy, operate, and maintain comprehensive cybersecurity programs.

The longstanding challenges associated with compliance with the Sarbanes-Oxley Act, such as the cost of compliance and reliance on time-consuming manual tasks, are being exacerbated by the COVID-19 pandemic, as finance and audit teams are required to perform audit tasks remotely. "The tasks associated with SOX compliance continue to be significant and time-consuming," said Brian Christensen, executive vice president and global leader of Protiviti's internal audit and financial advisory practice.

Information archiving firm Smarsh has acquired cybersecurity and compliance firm Entreda. The acquisition adds Entreda's 300 clients from the enterprise wealth management market to Smarsh's 6,000 financial services clients, while bringing new cybersecurity expertise to the secure collection, storage and management of enterprise data.

Verint Systems, The Customer Engagement Company, announced the availability of its new Microsoft Teams recording integration which helps businesses across industries centrally capture, retain, analyze, and retrieve all communications from Microsoft Teams calling and meeting scenarios - including voice calling, chat, online meetings, screen sharing and more. Verint has engaged with hundreds of Microsoft customer organizations worldwide for the last decade - to provide sophisticated compliance capabilities for the entire range of Microsoft unified communications while supporting the leading UC, trading turret, mobile, and IP telephony platforms in the market.

99% of commercial codebases contain at least one open source component, with open source comprising 70% of the code overall, according to Synopsys. The most concerning trend in this year's analysis is the mounting security risk posed by unmanaged open source, with 75% of audited codebases containing open source components with known security vulnerabilities, up from 60% the previous year.

Cybersecurity and, to a lesser but growing extent, compliance are the most pressing priorities for MSPs and their customers this year, according to a Kaseya survey of 1,300 owners and technicians of MSP firms in more than 50 countries. "As more small and midsize businesses look to maintain vital security operations and decrease IT costs internally ahead of an economic downturn, they will lean on the expertise and services provided by MSPs to keep their companies operating."

SecureTrust, a division of Trustwave, announced SecureTrust PCI Manager, a cloud-based platform delivering Payment Card Industry compliance validation and enhanced risk mitigation for acquiring banks and merchant service providers. "SecureTrust PCI Manager helps our merchants achieve PCI compliance through a process that drives accuracy and is less time consuming, giving our merchants more time to focus on growing their business and enhancing the customer experience," stated Robyn Mitchell, chief compliance officer at North American Bancard.

NIKE Group's data-driven approach and compliance platform help clients monitor new regulatory requirements and assist with compliance. The acquisition enhances Accenture's RegTech and compliance capabilities for clients in Italy and across Europe.

Specifically, as businesses spend tens of millions on compliance, over 90 percent have fundamental IT weaknesses that leave them vulnerable and potentially non-compliant. Most businesses have hired new talent, invested in workforce training and introduced new software or services to ensure continued compliance.

A-LIGN, a technology-enabled security and compliance partner trusted by more than 2,400 companies, announced the launch of A-SCEND 2.0, its propriety compliance management platform that enables an anytime, anywhere approach to compliance-for anyone. A-SCEND 2.0 centralizes evidence collection and standardizes compliance requests, making it possible to consolidate multiple audits at once.