Alliance for Cyber Risk Governance to Hold Inaugural Conference November 2

Leading cybersecurity companies, CISOs, CIOs, and risk management executives to spearhead development of a new, more pragmatic framework for reporting and measuring risk


NEW YORK, Oct. 11, 2017 (GLOBE NEWSWIRE) -- The Alliance for Cyber Risk Governance (ACRG), a newly formed, not-for-profit industry association committed to bringing standardization to risk measurement, reporting and governance, will hold its inaugural conference at the Millennium Hilton Hotel in New York City on November 2.

The Alliance’s founding members, TechDemocracy, RiskIQ, Rackspace, LogRhythm, Rapid7, BeyondTrust, Fidelis Cybersecurity, and SAFE-BioPharma, will collaborate with executive attendees to address the barriers preventing companies from accurately tracking their IT risk posture. Conference participants will help lay the groundwork to create a more pragmatic framework to measure, utilize, and convey risk metrics.

Companies continue to be challenged in their ability to understand and make informed decisions regarding their IT risk. They are forced to apply a patchwork of data points from systems across their organization, and unable to bring consistency to how that data is measured as no modern framework is available to be applied. In addition, business digital transformation has increased the risk profile of enterprises as they advance their cloud, web, mobile and social initiatives and ecosystems. The foundational project of the ACRG will be to establish a practical framework for risk measurement and reporting that can be easily adopted by any company regardless of size or industry.

The one-day conference will feature keynotes and panel sessions examining issues ranging from intelligent risk assurance, controls and metrics, and information security risk scoring to cybersecurity budget prioritization and security automation. The conference will finalize the organization’s charter and will also establish working groups to aggregate consensus-based recommendations to create the new framework.   

A few seats in the planned panel discussions are still available to interested participants. To learn more and view the conference’s complete schedule, click here.

Confirmed speakers include:

  • Gautam Dev, global managing principal, founding leader, CRSG, TechDemocracy, LLC
  • Ken Pfeil, chief architect and evangelist, TechDemocracy, LLC
  • Jon Klein, chief information security officer, Broadridge Financial
  • Scott Lyons, co-founder and chief executive officer, Red Lion
  • Carole Fennelly, founder, CFennelly Consulting
  • Ken Bigelow, managing partner, Sionic Advisors, LP
  • Peter Alterman, chief operating officer, SAFE-BioPharma
  • Scott Gordon, chief marketing officer, RiskIQ
  • Alex DaCosta, product manager, vulnerability management solutions, BeyondTrust
  • Daniel Clayton, director, customer security operations, Rackspace

The ACRG founding members play a critical role in the IT security and risk management marketplace:

  • TechDemocracy, LLC: TechDemocracy is a global cyber risk assurance, identity management and credential services provider. Its technology and specialists around the world help senior business decision makers qualify the effectiveness of existing systems and tools and measure them against a consistent set of standards.
     
  • RiskIQ: RiskIQ is the leader in digital threat management, providing the most comprehensive discovery, intelligence, and mitigation of threats associated with an organization’s digital presence. With more than 75 percent of attacks originating outside the firewall, RiskIQ allows enterprises to gain unified insight and protection over web, social, and mobile exposures.
     
  • Rackspace: Rackspace, the #1 managed cloud company, helps businesses tap the power of cloud computing without the complexity and cost of managing it all on their own. Rackspace engineers deliver specialized expertise, easy-to-use tools, and Fanatical Support® for leading technologies including AWS, Google, Microsoft, OpenStack and VMware.
     
  • LogRhythm: LogRhythm is the pioneer in Threat Lifecycle Management (TLM) technology, empowering organizations on six continents to rapidly detect, respond to and neutralize damaging cyber threats. LogRhythm’s TLM platform unifies data lake technology, machine learning, security analytics, and security automation and orchestration in a single end-to-end solution.
     
  • Rapid7: Rapid7 is trusted by IT and security professionals around the world to manage risk, simplify modern IT complexity, and drive innovation. Rapid7 analytics transform today’s vast amounts of security and IT data into the answers needed to securely develop and operate sophisticated IT networks and applications.
     
  • BeyondTrust: BeyondTrust is a global information security software company that helps organizations prevent cyber attacks and unauthorized data access due to privilege abuse. Our Privileged Access Management and Vulnerability Management solutions give you the visibility to confidently reduce risks and the control to take proactive, informed action against data breach threats.
     
  • Fidelis Cybersecurity: Fidelis is the industry’s only completely integrated, automated network and endpoint detection and response platform. Fidelis improves the efficiency and effectiveness of security operations teams by 10-20X by condensing alert data into validated and actionable threat summaries then automating response.
     
  • SAFE-BioPharma: The SAFE-BioPharma® standards for digital identity and digital signatures are used in life science and health care. The SAFE-BioPharma Association manages the global SAFE-BioPharma® identity management and digital signature standards, a fundamental form of cybersecurity designed specifically to protect intellectual property and patient data and to meet regulatory requirements.

For more information and to register for the inaugural conference, click here.

About the Alliance for Cyber Risk Governance
The Alliance for Cyber Risk Governance is a not-for-profit industry association dedicated to bringing standardization to measuring, reporting and governing risk. The Alliance is a proponent of holistic cyber risk management enabling companies to establish risk management frameworks that can align to global regulatory and industry standards. Alliance members include TechDemocracy, LLC; RiskIQ; Rackspace; LogRhythm; Rapid7; BeyondTrust; Fidelis Cybersecurity; and SAFE-BioPharma.

Partner Quotes

  • TechDemocracy: We all know the clock is ticking on information security risk and we’ve reached a critical juncture that requires bringing standardization to its measurement and reporting that is easy for companies and practitioners to implement. The Alliance will help expedite the creation of a new framework informed by the best cybersecurity and risk management professionals across the country.  --- Gautam Dev, global managing principal, founding leader, CRSG, TechDemocracy, LLC
     
  • RiskIQ: With 75% of threats occurring outside the firewall, focusing solely inward on risk management is no longer sufficient. As organizations continue to expand their online presence across web, social and mobile channels, it is imperative to automate attack surface reduction, response to targeted threats, and digital risk assessment. We’re excited to contribute to this framework, which will be an invaluable resource to companies for years to come. --- Lou Manousos, chief executive officer and founder, RiskIQ
     
  • Rapid7: Increasingly complex and dynamic IT environments are preventing meaningful gains in the battle against attackers -- they’re also putting an unsustainable amount of pressure on security and IT professionals. By defining and establishing a framework that helps organizations measure risk effectively, monitor the environment for threats, and automate the increasing volume of IT management processes, we’re moving the industry closer to building solutions and methodologies that work together, fighting a common enemy, rather than promoting siloed efforts. --- Corey Thomas, president and chief executive officer, Rapid7
     
  • BeyondTrust: As businesses continue to suffer the impact of privilege misuse and unauthorized access, the standardization of measurement and reporting will help ease the burden placed on overworked security practitioners, and speed time to resolution.  BeyondTrust is proud to be a founding member of The Alliance (ACRG) to help companies in their ability to better understand and measure their IT risk. --- Brad Hibbert, chief technology officer, BeyondTrust
     
  • Fidelis Cybersecurity: Fidelis is excited to participate in the inaugural Alliance for Cyber Risk Governance conference, “As cyber threats continue to evolve, organizations must automate detection and response in order to quickly and effectively combat modern attacks. We look forward to discussing at the ACRG how organizations of all sizes can start building the framework to defend against these future attacks. --- Billy Cripe, vice president, global marketing, Fidelis Cybersecurity

About the Partners

About TechDemocracy, LLC
TechDemocracy is a global cyber risk assurance, identity management and credential services provider, and the creator of Intellicta—the first platform that provides enterprises with a continuous, holistic assessment of an organization’s cybersecurity risk, compliance and governance condition. TechDemocracy’s technology and specialists around the world help senior business decision makers qualify the effectiveness of existing systems and tools and measure them against a consistent set of standards. Based on discovered risks, Intellicta quantifies an overall risk score and monetary exposure for the business. Visit www.techdemocracy.com

About RiskIQ
RiskIQ is the leader in digital threat management, providing the most comprehensive discovery, intelligence, and mitigation of threats associated with an organization’s digital presence. With more than 75 percent of attacks originating outside the firewall, RiskIQ allows enterprises to gain unified insight and control over web, social, and mobile exposures. Trusted by thousands of security analysts, RiskIQ’s platform combines advanced internet data reconnaissance and analytics to expedite investigations, understand digital attack surfaces, assess risk, and take action to protect business, brand, and customers. Based in San Francisco, the company is backed by Summit Partners, Battery Ventures, Georgian Partners, and MassMutual Ventures. Visit RiskIQ.com or follow us on Twitter.

Try RiskIQ Community Edition for free by visiting https://www.riskiq.com/community/. To learn more about RiskIQ, visit www.riskiq.com.

About Rackspace
Rackspace, the #1 managed cloud company, helps businesses tap the power of cloud computing without the complexity and cost of managing it all on their own. Rackspace engineers deliver specialized expertise, easy-to-use tools, and Fanatical Support® for leading technologies including AWS, Google, Microsoft, OpenStack and VMware. The company serves customers in 150 countries, including more than half of the FORTUNE 100. Rackspace was named a leader in the 2017 Gartner Magic Quadrant for Public Cloud Infrastructure Managed Service Providers, Worldwide, and has been honored by Fortune, Forbes, and others as one of the best companies to work for. Learn more at www.rackspace.com.

About LogRhythm
LogRhythm is the pioneer in Threat Lifecycle Management (TLM) technology, empowering organizations on six continents to rapidly detect, respond to and neutralize damaging cyber threats. LogRhythm’s TLM platform unifies data lake technology, machine learning, security analytics, and security automation and orchestration in a single end-to-end solution. LogRhythm serves as the foundation for the AI-enabled security operations center, helping customers secure their cloud, physical and virtual infrastructures for both IT and OT environments. Among other accolades, LogRhythm is positioned as a Leader in Gartner’s SIEM Magic Quadrant. Visit www.logrhythm.com.      

About Rapid7
Rapid7 (NASDAQ:RPD) is trusted by IT and security professionals around the world to manage risk, simplify modern IT complexity, and drive innovation. Rapid7 analytics transform today’s vast amounts of security and IT data into the answers needed to securely develop and operate sophisticated IT networks and applications. Rapid7 research, technology, and services drive vulnerability management, penetration testing, application security, incident detection and response, and log management for more than 6,500 organizations across more than 120 countries, including 39% of the Fortune 1000. To learn more about Rapid7 or join our threat research, visit www.rapid7.com.

About BeyondTrust
BeyondTrust is a global information security software company that helps organizations prevent cyber attacks and unauthorized data access due to privilege abuse. Our solutions give you the visibility to confidently reduce risks and the control to take proactive, informed action against data breach threats. And because threats can come from anywhere, we built a platform that unifies the most effective technologies for addressing both internal and external risk: Privileged Access Management and Vulnerability Management. Our solutions grow with your needs, making sure you maintain control no matter where your company goes. BeyondTrust’s security solutions are trusted by over 4,000 customers worldwide, including half of the Fortune 100. To learn more about BeyondTrust, please visit www.beyondtrust.com.

About Fidelis Cybersecurity
Fidelis is the industry’s only completely integrated, automated network and endpoint detection and response platform. Fidelis improves the efficiency and effectiveness of security operations teams by 10-20X by condensing alert data into actionable threat summaries and then automating response and investigation actions instead of piling more alert data on already fatigued security staff. With automatic validation, investigation and prevention of attacks, Fidelis is engineered for visibility, designed for response and trusted by the most important brands in the world. See what you’ve been missing. Visit www.fidelissecurity.com.  

About SAFE-BioPharma
The SAFE-BioPharma® standards for digital identity and digital signatures are used in life science and health care. The SAFE-BioPharma Association manages the global SAFE-BioPharma® identity management and digital signature standards, a fundamental form of cybersecurity designed specifically to protect intellectual property and patient data and to meet regulatory requirements. The standards are supported by many of the world's largest biopharmaceutical companies.

Deb Montner
Montner Tech PR 
203.226.9290 
dmontner@montner.com