Sevco Security, a cloud-native cyber asset attack surface management (CAASM) platform provider, has expanded its capabilities to include proactive hunting for vulnerabilities.
The company’s asset intelligence platform automatically creates a map of an organization’s attack surface vulnerabilities to prioritize and address issues as they appear, company officials said. Sevco targets enterprises that require an accurate IT inventory for cyber protection.
Sevco Security on the Hunt
Here are some key features of Sevco's platform:
- Organizations can use the platform to continuously hunt, assess and track security risks to IT systems.
- The asset intelligence platform augments current point-in-time practices, such as penetration testing by giving broader and continuous visibility of the entire organization's security landscape.
- Sevco’s 4D asset intelligence correlation engine gives organizations a comprehensive understanding of their IT asset inventory across length, breadth, depth and time.
- Security teams gain the full context of managed and unmanaged assets (devices, users, applications) across IT, public/private cloud, IoT devices, operational technology (OT), supply chain, contractors, and remote users.
- The CAASM platform enables security teams to identify devices that don’t have patch management software installed or aren’t connected to handle a response effort when a zero-day threat emerges.
Further Thoughts from Sevco
Here’s Sevco's thinking behind the technology:
- Current vulnerability management activities are limited in scope, infrequent and siloed.
- When security programs assess an organization’s vulnerabilities, it can be treated as a one-off or periodic examination that can quickly become stale.
- Legacy assessment tools only provide narrow views of security risk and don’t enable security analysts to search across asset classes.
In explaining the best approach to manage vulnerabilities, J.J. Guy, Sevco co-founder and chief executive, said:
“An organization-wide vulnerability management program is far more than just a security assessment, periodic penetration test, or patch management program. The best approach for managing vulnerabilities — those security risks across your environment — is to use an ongoing and proactive process that regularly hunts for, prioritizes, and addresses security risks in your information system, system security procedures, and internal controls.”
The Austin, Texas-based Sevco is backed by $21.7 million in Series A funding, according to Crunchbase. The three-year-old firm is funded by SYN Ventures, 406 Ventures, Accomplice and Bill Wood Ventures.