Operations //

Identity & Access Management

1/3/2017
11:30 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

KPMG to Buy Cyberinc's Global Identity and Access Management Business

KPMG LLP has agreed to acquire the Identity and Access Management business of Silicon Valley-based Cyberinc, which provides cyber security solutions globally. Cyberinc, the largest independent identity and access management (IAM) technology provider in the world, will enhance KPMG’s existing capabilities as a leader in information security consulting services* and expand the firm’s ability to provide clients with emerging and more agile IAM solutions. The transaction also bolsters KPMG’s talent and resources in the rapidly growing area of digital consumer identity and privileged user management, which are evolving security-focused capabilities to enhance important elements of customer-engagement.

“Cyber security remains a top risk to organizations as threats grow in scale and cyber criminals develop new ways to access protected information,” said Lynne Doughtie, U.S. Chairman and CEO of KPMG LLP. “KPMG’s identity and access management solutions team can assist clients, across all industries, protect their information and enable their digital strategies and growth plans.”

Cyberinc’s IAM business is a 190-person global team with significant presence in the U.S., India, Australia and the U.K., with extensive experience providing advisory, strategy, implementation services, and managed services for organizations that need to transform their enterprise or consumer identity capabilities.
*according to The Forrester WaveTM, Information Security Consulting Services, Q3 2017

“Over the last decade, Cyberinc’s IAM business has risen to industry leadership position on the strength of some of the largest IAM deployments globally, investments in IP and an array of premium partnerships. I am very pleased that Cyberinc’s truly world class team will continue this journey with KPMG,” said Samir Shah, CEO, Cyberinc. “Cyber threats continue to accelerate and remain a top business risk. This transaction will allow us to sharply focus on Isla - our industry leading Malware Isolation Platform. ”

KPMG’s strong position with existing information security alliance partners Oracle and Sailpoint, along with KPMG’s recently announced alliance with Ping, will be further enhanced by the transaction with Cyberinc to better enable information protection for large enterprises while pursuing new digital interactions and business transformations.

“As organizations innovate and transform their back, middle and front offices, identity and access management solutions that effectively bridge the gap between risk mitigation and customer experience are key to driving sustainable growth,” said Tony Buffomante, U.S. Leader of KPMG’s Cyber Security Services practice. “The addition of the Cyberinc team and capabilities is yet another example of how KPMG is investing in cyber security and helping clients succeed on their digital journey.”

Cyberinc is a subsidiary of Aurionpro Solutions Limited - a global technology product and solution provider, headquartered in Mumbai, India and San Ramon, California. The Cyberinc transaction is KPMG’s second acquisition in this area, following the October 2014 acquisition of certain assets of Qubera Solutions, a privately-held Redwood City, C.A. - based cyber security firm that provides IAM services.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
12 Free, Ready-to-Use Security Tools
Steve Zurier, Freelance Writer,  10/12/2018
Most IT Security Pros Want to Change Jobs
Dark Reading Staff 10/12/2018
Most Malware Arrives Via Email
Dark Reading Staff 10/11/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-17534
PUBLISHED: 2018-10-15
Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary commands with root privileges.
CVE-2018-17980
PUBLISHED: 2018-10-15
NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current working directory, and the Trojan horse code is execute...
CVE-2018-18259
PUBLISHED: 2018-10-15
Stored XSS has been discovered in version 1.0.12 of the LUYA CMS software via /admin/api-cms-nav/create-page.
CVE-2018-18260
PUBLISHED: 2018-10-15
In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false.
CVE-2018-17532
PUBLISHED: 2018-10-15
Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input sanitization. This allows remote attackers to execute arbitrary commands with root privileges.