Risk

1/26/2017
04:30 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

IBM acquires Agile 3

Expansion of Capabilities for IBM Guardium and Data Security Services

CAMBRIDGE, MA - 23 Jan 2017: IBM (NYSE: IBM) Security today announced plans to acquire Agile 3 Solutions, a developer of software used by the C-Suite and senior executives to better visualize, understand and manage risks associated with the protection of sensitive data. The addition of Agile 3 Solutions’ capabilities to IBM Security’s portfolio adds an intuitive tool to improve C-Suite decision making as businesses prepare to defend themselves against cybercrime.

As cybersecurity has become a board-level issue, there is a growing need for the C-suite and the Board to understand their security posture through the lens of business risk, not just the technical security data and metrics. Business leaders must be equipped to make risk-based decisions and prioritize investments toward the cybersecurity readiness and resilience. In fact, Gartner predicted that “by 2017, 80% of IT risk and security organizations will report metrics to non-IT executive decision makers; however, only 20% will be considered useful by the target audience.”[i]

Agile 3 Solutions, a San Francisco-based, privately held company, provides business leaders with a comprehensive, business-friendly dashboard and intuitive data risk control center to help uncover, analyze, and visualize data-related business risks, so they can take action to proactively protect their business. Financial terms were not disclosed and the transaction is expected to close within several weeks. Upon completion of the acquisition, IBM will offer Agile 3 Solutions’ technology through IBM Data Security Services and also plans to integrate Agile 3 Solutions’ capabilities into its industry-leading data protection software IBM Guardium.

"After thousands of client engagements, we've seen security move from the back office to the front office and now to the board room," said Marc van Zadelhoff, General Manager, IBM Security. "Adding Agile 3 Solutions to the IBM Security immune system of capabilities gives our team the ability to not only protect critical data, but demonstrate why it is at risk, and how to remediate that risk. Knowing what your crown jewel data is, and understanding its susceptibility to exploitation via external or insider threats, is an imperative for any organization."

“Having worked closely with IBM Security as a business partner, our team is excited by the opportunity to join the leader in enterprise security,” said Raghu Varadan, Founder and CEO of Agile 3 Solutions. “Our mission has been to bring the C-Suite into the security decision making process on their terms. Now with IBM Security, we’re bringing together the ability to not only influence decisions but to take action to protect business critical data.”

Agile 3 Solutions will augment the IBM Data Security Services portfolio of offerings, adding industry-leading technology and deep industry expertise to help clients around the world build, implement, and manage their critical data protection programs. The acquisition also builds on the growth of IBM's end-to-end Guardium data security and protection platform, which helps analyze the risk associated with sensitive data, monitor and protect sensitive data at rest and in motion, and easily adapt to changes in the IT environment – including adding new users, new technologies, and accommodating new volumes and types of data. IBM also announced its intent to acquire Ravy Technologies, a subcontractor of Agile 3 Solutions.

Agile 3 Solutions marks the 20th security-related company IBM has acquired as part of a series of investments to deepen its expertise as the world's largest enterprise security company. IBM Security has hired approximately 1,900 security experts since 2015, and has invested in innovative new programs to help the industry collaborate to battle cybercrime, including IBM's X-Force Exchange and the IBM Security App Exchange.

For more information about Agile 3 Solutions, go to http://www.ibm.com/security/announce/agile3/  

About IBM Security
IBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The portfolio, supported by world-renowned IBM X-Force® research, enables organizations to effectively manage risk and defend against emerging threats. IBM operates one of the world’s broadest security research, development and delivery organizations, monitors 20 billion security events per day in more than 130 countries, and holds more than 3,000 security patents. For more information, please visit www.ibm.com/security, follow @IBMSecurity on Twitter or visit the IBM Security Intelligence blog.

About Agile 3 Solutions

Agile 3 Solutions provides a comprehensive, business-friendly dashboard and intuitive data risk control center to help uncover, analyze, and visualize data-related business risks, so business leaders can take action to proactively protect their business. Learn more at http://www.agile3solutions.com/

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
More Than Half of Users Reuse Passwords
Curtis Franklin Jr., Senior Editor at Dark Reading,  5/24/2018
Is Threat Intelligence Garbage?
Chris McDaniels, Chief Information Security Officer of Mosaic451,  5/23/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Flash Poll
[Strategic Security Report] Navigating the Threat Intelligence Maze
[Strategic Security Report] Navigating the Threat Intelligence Maze
Most enterprises are using threat intel services, but many are still figuring out how to use the data they're collecting. In this Dark Reading survey we give you a look at what they're doing today - and where they hope to go.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-11505
PUBLISHED: 2018-05-26
The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output.
CVE-2018-6409
PUBLISHED: 2018-05-26
An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal vulnerability via the download.php q parameter.
CVE-2018-6410
PUBLISHED: 2018-05-26
An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter.
CVE-2018-6411
PUBLISHED: 2018-05-26
An issue was discovered in Appnitro MachForm before 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter is set to a whitelist, the dangerous extensions can be bypassed through ap_form_elements SQL Injection.
CVE-2018-11500
PUBLISHED: 2018-05-26
An issue was discovered in PublicCMS V4.0.20180210. There is a CSRF vulnerability in "admin/sysUser/save.do?callbackType=closeCurrent&navTabId=sysUser/list" that can add an admin account.