Red Herring European Top 100 & edgescan v3.0

By -
Our edgescan managed penetration testing service, today announced it has been selected as a Finalist for Red Herring's Top 100 Europe award, a prestigious list honoring the year’s most promising private technology ventures from the European business region.

Hurray!!



The Red Herring editorial team selected the most innovative companies from a pool of hundreds from across Europe. The nominees are evaluated on 20 main quantitative and qualitative criterion: they include disruptive impact, market footprint, proof of concept, financial performance, technology innovation, social value, quality of management, execution of strategy, and integration into their respective industries.

This unique assessment of potential is complemented by a review of the actual track record and standing of a company, which allows Red Herring to see past the “buzz” and make the list a valuable instrument for discovering and advocating the greatest business opportunities in the industry.

Being a Red Herring Europe Top 100 finalist has verified to us that our solution is being viewed as a strong contender in the vulnerability management marketplace and solves a very common issue in a unique and robust way

"This year was rewarding, beyond all expectations" said Alex Vieux, publisher and CEO of Red Herring. "There are many great companies producing really innovative and amazing products in Europe. We had a very difficult time narrowing the pool and selecting the finalists. BCC Risk Advisory shows great promise and therefore deserves to be among the finalists. Now we’re faced with the difficult task of selecting the Top 100 winners of Red Herring Europe. We know that the 2015 crop will grow into some amazing companies that are sure to make an impact."

edgescan v3.0 - soon to GoLive:


Major improvements of edgescan 3.0 include:
  • Better integration of third-party tools and products – an API (application program interface) extension allows users to integrate with JSON, XML, AVDL and CSV. 
  • An API which now allows for integration with third-party GRC, bug tracking, and is supported by a rich query language and customisable metrics.
  • Configurable vulnerability alerting – users can set up and receive alerts via email and SMS to keep up-to-date with vulnerability scans. In addition, so-called asset delta alerts inform customers whether servers are down, newly introduced, if a port or system has been enabled without knowledge or if a vulnerable system/service is exposed to the Internet. 
  • Improvements in scheduling – users benefit from an improved visibility into defined vulnerability testing schedules and a calendar control that displays schedules.
  • Multifactor Auth (MFA) is available for all users
  • Better user experience – a new dashboard user interface facilitates dynamic graphing and visualization as well as “one-click” image capture for reporting

v3.0 Administration Dashboard: to be deployed as "edgescan Lite" in 2015





More about edgescan on 



Comments

Post a Comment

Popular posts from this blog

Edgescan, why we do what we do.....

By -
Image
  The cyber security industry is full of solutions to make you more secure. Some are unproven and other approaches work if deployed properly. Our industry is very fragmented. for example a recent "Cyber Defense" award I noticed has 195 categories!  I suppose we need to ask ourselves as companies from time to time why we do what we do?  So, the following post is, I guess, the reason we developed Edgescan and why we believe its a decent solution to help organizations improve and be more resilient in relation to cyber security and system protection.... Vulnerability scanning alone did not work. The idea of software testing software for vulnerabilities is a good one but both sides of the equation may have bugs. Bugs in one side (The target) may result in vulnerabilities, whilst bugs on the other side (Scanner) may result in false negatives and false positives.  Accuracy : To that end we built edgescan as a combination of automation to discover vulnerabilities at scale but  when c
Read more

20 years of Vulnerability Managment - Why we've failed and continue to do so.

By -
Image
Cyber Security: Keeping Pace with Change. Getting breached can really ruin your day. Actually it normally happens on a friday evening as you are about chill for the weekend. The cause of must breaches is not rocket science, its more to do with the poor approach we have accepted because we underestimate the threat actor.  - An attacker does not scan your website/network once a quarter with a commercial or open source scanner or perform an annual penetration test against your systems to see if there is any low hanging fruit, so how do we expect to defend against such an advisory using that approach? Systems change now more frequently than ever due to the ease of cloud deployments and the speed of software deployments due to iterative development techniques. The rate of change increase results in exposures quickly manifesting and the organisation not even being aware of the exposure in the first place. Many organisations dont know what they have exposed on the public Internet. We need t
Read more
By -
Image
The HSE Data Breach and the State of Irish Cyber Security Many years ago, shortly after I founded the Irish chapter of OWASP ( http://www.owasp.org ) (in 2007??) we were delivering free application and software development classes to anyone who wanted them. It was a local low key affair but every class we delivered was "sold out". We have 60-80 folks mostly developers willing to spend 4-5 hours on learning the fundamentals of secure application development and testing. I suppose we felt cyber security was an important issue because that's what we did. At the time many folks in business felt cyber security was an overhead or a "tax" and did not give it much time. A few years later (late 2010) when the the foundation of the NCSC (National Cyber Security Centre) was announced, a few of us (local OWASP Ireland leaders) wrote a number of emails to the Irish government offering free cyber security training. As we were working for a non profit (501.3c) charity (OWA
Read more