Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Vulnerabilities / Threats

9/26/2006
03:17 AM
50%
50%

Cybertrust Touts Program

Cybertrust announced the launch of its Partner Security Program

HERNDON, Va. -- Cybertrust®, the global information security specialist, today announced the launch of its Partner Security Program, a comprehensive solution for organizations to manage the compliance of their extended enterprise. The program will enable Cybertrust customers to identify and significantly reduce risks that result from opening up their networks and systems to partners, customers and other vendors that may not be compliant with an individual organization’s security requirements.

A recent Cybertrust study found that nearly three quarters of organizations worldwide feel that business partners increase their levels of information security risk, and approximately one third of respondents reported that their organizations had suffered a security incident involving business partners within the previous year. However, organizations conducting some form of business partner security assessments experienced a more than three-fold reduction in the likelihood of security incidents.

Cybertrust Partner Security Program was developed to help customers understand and manage the risks of doing business as an extended enterprise through a repeatable and scalable process that controls costs and minimizes the level of effort. Partner Security Program provides customers with a single comprehensive view into the status of all internal business units, external business partners and other entities performing compliance validation activities via a Web-based dashboard. In addition, customers can document and demonstrate to customers, partners, auditors and regulators that they have performed effective due diligence on third parties.

“Cybertrust Partner Security Program fills a unique place in the market by helping to address business risks inherent with the extended enterprise,” said Sandra Palumbo, senior analyst, Yankee Group. “The first formal offering of its kind, Partner Security Program allows businesses to address ongoing risk and compliance challenges with partner networks in a manageable, highly scalable way. As compliance regulations continue to proliferate, it is important for organizations to embrace a formal process around partner security, and to hold their partners and vendors accountable to meeting the standard and reducing risk overall.”

"As a Fortune 500 company, Fiserv takes seriously the security and integrity of its interactions externally with customers and trading partners, as well as internally between its many business units," said Bob Wilcox, chief information security officer of Fiserv, a $4 billion provider of information management systems and services to the financial and health benefits industries. "We look forward to working with Cybertrust to further enhance our security posture."

Cybertrust

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/3/2020
Pen Testers Who Got Arrested Doing Their Jobs Tell All
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/5/2020
New 'Nanodegree' Program Provides Hands-On Cybersecurity Training
Nicole Ferraro, Contributing Writer,  8/3/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Changing Face of Threat Intelligence
The Changing Face of Threat Intelligence
This special report takes a look at how enterprises are using threat intelligence, as well as emerging best practices for integrating threat intel into security operations and incident response. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-15820
PUBLISHED: 2020-08-08
In JetBrains YouTrack before 2020.2.6881, the markdown parser could disclose hidden file existence.
CVE-2020-15821
PUBLISHED: 2020-08-08
In JetBrains YouTrack before 2020.2.6881, a user without permission is able to create an article draft.
CVE-2020-15823
PUBLISHED: 2020-08-08
JetBrains YouTrack before 2020.2.8873 is vulnerable to SSRF in the Workflow component.
CVE-2020-15824
PUBLISHED: 2020-08-08
In JetBrains Kotlin before 1.4.0, there is a script-cache privilege escalation vulnerability due to kotlin-main-kts cached scripts in the system temp directory, which is shared by all users by default.
CVE-2020-15825
PUBLISHED: 2020-08-08
In JetBrains TeamCity before 2020.1, users with the Modify Group permission can elevate other users' privileges.