Today is a significant day in Noetic Cyber’s history, as we announce our upcoming acquisition by Rapid7. This is not the end of the Noetic story, but our vision and technology will continue as part of a more comprehensive exposure management solution. When my co-founders, Allen Hadden & Allen Rogers, ... Read More

Software vulnerabilities are an inevitable consequence of human-made coding errors. Yet their exploitation on a large scale threatens to undermine the digital foundations on which businesses are built. From large-scale supply chain attacks to highly targeted spyware operations, ground zero is increasingly a buggy product. The challenge of patching these ... Read More

Despite many advancements made over the past few years, we believe that many challenges around attack surface and exposure management remain true: “Organizations have to manage a growing attack surface as their technological environments become increasingly complex and dispersed, both on-premises and in the cloud. SaaS applications and supply chain ... Read More

The cyber threat landscape is in constant flux. That makes it difficult for security teams to understand what’s going on at any one time. Vendor reports offer snapshots of varying quality and granularity at different times of the year. Many are specific to particular attacks or threat groups, others are ... Read More

With the emergence of new cybersecurity regulations like the SEC’s incident disclosure rules and the EU’s NIS2 Directive, much attention is directed towards understanding and complying with these new incident reporting requirements. However, underlying these regulations is a significant emphasis on organizations fully integrating cyber risk management into their operations ... Read More

In our recent product announcement, we introduced new capabilities designed to help security teams to better understand and interpret the security data they have. Data accuracy and consistency is a common challenge for Cyber Asset Attack Surface Management (CAASM) platforms, as we ingest data from a wide range of different ... Read More

Successful business leadership is about effective risk management. And successful risk management starts with having the right data to hand. For the chief information security officer (CISO), this means regularly gathering and communicating cybersecurity metrics that answer board questions in a language that senior leaders understand. And that can identify ... Read More

Vulnerability prioritization–a critical component of any cybersecurity program–plays an essential role in helping security teams focus on the highest risks to their business. The Common Vulnerability Scoring System (CVSS) has been a widely adopted framework for assessing the severity of vulnerabilities and aiding in the decision-making process. Last week, the ... Read More

In a recent blog post, I shared my expectations for the Gartner Security and Risk Management Summit 2023 held in London at the end of September. Now, with the event behind us, let’s reflect on how accurately my predictions aligned with the actual experience.   This year, the summit relocated ... Read More

Today marks the start of the 2023 Gartner Security and Risk Management Summit in London. This significant event, also held annually in Dubai, Sydney, Tokyo and the United States, is an important marker in the annual cybersecurity event calendar. Attendees can hear from top Gartner experts, explore industry case studies, ... Read More