Operations
2/22/2016
06:20 PM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

New Cybersecurity Venture Firm Launched

Former US-CERT director joins 'accelerator' Strategic Cyber Ventures LLC.

Former executives from US-CERT, Trend Micro, and Booz-Allen Hamilton have teamed up to form a new venture to back cybersecurity startups.

Washington, DC-based Strategic Cyber Ventures (SCV) LLC, is looking to invest in companies that have built next-generation security technology that better defends against advanced attackers than existing products and technologies, according to its founders.

“We’re not an incubator or a VC. We’re more of an accelerator,” says Tom Kellermann, co-founder and CEO of SCV. Kellermann, the former chief cybersecurity officer at Trend Micro, says SCV has a major benefactor behind it, Hudson Bay Capital. 

Aside from funding, SCV will offer strategic advisory services in business development, product roadmap, partnerships, government relations, marketing, and public relations.

“We trying to identify what we consider significant gaps” in security and backing companies who fill those gaps, he says. The three-member SCV team's cybersecurity experience and knowledge is something many venture capital firms lack, he says.

“Our differentiator is that we are actually in this space and know what we don’t know,” Kellermann says of the SCV team.

SCV’s chief technology officer is Ann Barron-DiCamillo, who recently left her post as director of the US-CERT.

Hank Thomas, former principal director at Booz Allen Hamilton, has worked in incident response investigations and says he’s seen plenty of companies with multiple security products that fail to solve their security problems. “They have bells and whistles going off, and they can occasionally connect the dots, but more often, it’s just chaos,” says Thomas, who is chief operating officer of SCV.

The goal is to find companies that solve problems rather than create new ones with their latest technology, he says. Thomas says he’s looking for companies that provide “actionable intelligence” that allows an organization to be proactive rather than reactive to attacks and threats

Among the technologies Kellermann says he’s interested in are intrusion deception, mobile app security, and next-generation authentication.

The company plans to make its first investments by this summer. 

Interop 2016 Las VegasFind out more about security threats at Interop 2016, May 2-6, at the Mandalay Bay Convention Center, Las Vegas. Register today and receive an early bird discount of $200.

Kelly Jackson Higgins is Executive Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.