Managed Security Services Provider (MSSP) News: 17 November 2020

Each business day, MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the managed security services provider ecosystem.

A. Today’s MSSP Alerts

1. Cloud Security Posture Management (CSPM): The Armor Anywhere security platform now supports cloud security posture management.

2. Attack Surface Management: QOMPLX has released Q:SCAN, an Internet attack-surface scanning and scoring solution aimed at helping organizations identify and fix external cyber exposures, the company says.

3. Momentum - Identity Risk Management: SecZetta announced record sales in Q3 2020 driven by significant customer wins, successful system integrator and reseller partnerships, and new product features, the company says. Actual revenue and profit figures were not disclosed.

4. Apple Privacy Concerns: Apple has responded to privacy concerns over the Mac software security process, The Verge reports.

5. Talent - Twitter Security: Twitter has hired Peiter Zatko, widely known by his hacker handle Mudge, to the new position of head of security, giving him a broad mandate to recommend changes in structure and practices. Zatko answers to CEO Jack Dorsey and is expected to take over management of key security functions after a 45- to 60-day review, Reuters reports.

B. MSSP Partnerships and Cybersecurity Alliances

1. Partnership - MSSP and Microsoft: BlueVoyant, a Microsoft Gold Partner and MSSP Alert Top 250 MSSP, has joined the Microsoft Intelligent Security Association (MISA), an ecosystem of independent software vendors and managed security service providers (MSSPs) that have integrated their solutions to help customers mitigate security threats. BlueVoyant offers expert consulting and customized deployment services for Azure Sentinel and the BlueVoyant Modern SOC.  The BlueVoyant Modern SOC combines 24/7 managed detection and response with Azure Sentinel, Microsoft 365 Defender and Azure Defender to detect and remediate threats across endpoints, users, email, and cloud workloads, the company says.

2. Integration - SOAR (Security Orchestration, Automation and Response): Farsight DNSDB now integrates with Palo Alto Networks Cortex XSOAR. Through this integration, Farsight DNSDB and Cortex XSOAR enable security analysts to "uncover and gain context for all connected DNS-related digital artifacts, from domain names and IP addresses to nameservers and MX records, in seconds," the two companies assert.

3. Partnership - Endpoint Security: Tanium and IBM have partnered to create a security and compliance monitoring solution for hybrid cloud, creating an "easy path to verify and validate compliance for highly regulated industries such as healthcare, financial services and government," the companies say.

4. Partnership - Cyber Insurance and Endpoint Protection: Coalition and Malwarebytes are partnering to offer endpoint security and cyber insurance to protect organizations from cyberthreats, the companies say.

5. Partnership - Container Security: Qualys has worked with Google Cloud to provide out-of-the-box support for Google Cloud Artifact Registry for its Container Security solution, the companies say.

6. Partnerships - Managed SD-WAN Services: Masergy is expanding its SD-WAN Secure solution to offer Secure Access Service Edge (SASE) capabilities. The SASE capabilities leverage technology from Bitglass and Fortinet.

7. Partnership - Secure Payments: PCI Pal is working with Oracle to offer its contact center customers additional security and compliance options for Cardholder Not Present (CNP) payments. Bringing together Oracle’s market-leading Enterprise Session Border Controller (E-SBC) with PCI Pal’s proven PCI compliance solutions, Oracle customers can "ensure that their voice interactions and sensitive cardholder data are secure," the companies say.

C. MSSP and Cybersecurity Virtual Events and Conferences