Sophos Collaborates with Tenable to Introduce Innovative Sophos Managed Risk Service
Sophos, a leading provider of cutting-edge security solutions against cyber threats, has recently unveiled a strategic collaboration with Tenable®, a renowned player in Exposure Management. This partnership aims to introduce Sophos Managed Risk, a global service focused on vulnerability and attack surface management.
The newly launched service offers a specialized team from Sophos, utilizing Tenable's exposure management technology. This team collaborates closely with security experts from Sophos Managed Detection and Response (MDR) to deliver comprehensive attack surface visibility, continuous risk monitoring, prioritized vulnerability assessment, investigation, and proactive alerts to thwart cyber attacks.
In today's digital landscape, the scope of attack surfaces extends beyond conventional on-premises IT perimeters. Organizations often operate numerous external and internet-facing assets that may be inadequately patched or secured, rendering them susceptible to cyber threats. This vulnerability is underscored in the latest Sophos Active Adversary Report, which highlights the importance of addressing key tasks to mitigate the risk of intrusions leading to ransomware or other malicious activities.
These tasks include securing Remote Desktop Protocol (RDP) access, implementing multi-factor authentication, and patching vulnerable servers – all identified as primary entry points in breaches handled by Sophos Incident Response in 2023. The Sophos Managed Risk service is designed to evaluate an organization's external attack surface, prioritize high-risk exposures like open RDP, and offer tailored remediation guidance to eliminate vulnerabilities and proactively defend against potential attacks.
Rob Harrison, Senior Vice President for Endpoint and Security Operations Product Management at Sophos, emphasized the significance of this collaboration: "Sophos and Tenable are joining forces to tackle pressing security challenges faced by organizations. By identifying and addressing vulnerabilities in external assets, devices, and software, often overlooked, we aim to help organizations mitigate exposure risks, which if left unaddressed, can lead to costly breaches. Our goal is to empower organizations with proactive security measures, including Sophos Managed Risk, Sophos Endpoint, and round-the-clock Sophos MDR coverage, to minimize the likelihood of breaches and fortify their security posture.
Greg Goetz, Vice President of Global Strategic Partners and MSSP at Tenable, emphasized that despite the attention-grabbing nature of zero-day vulnerabilities, the primary threat to organizations remains known vulnerabilities – those for which patches are already available. He highlighted the importance of a proactive approach that prioritizes risks based on context-driven analytics, enabling organizations to address exposures before they escalate into significant issues. Through Sophos Managed Risk, leveraging the Tenable One Exposure Management Platform, organizations can benefit from outsourced preventive risk management, empowering them to anticipate and mitigate cyber threats effectively.
External Attack Surface Management (EASM): The service provides advanced identification and classification of internet-facing assets, including web and email servers, web applications, and public-facing API endpoints.
Continuous monitoring and proactive notification of high-risk exposures: Sophos Managed Risk proactively notifies organizations when a new critical vulnerability is identified in their internet-facing assets, allowing for swift response and mitigation.
Vulnerability prioritization and identification of new risks: The service enables swift detection of high-risk and zero-day vulnerabilities, followed by real-time notification to ensure that critical internet-facing assets are promptly identified, investigated, and responded to in order of importance.Craig Robinson, Research Vice President of Security Services at IDC, praised Sophos Managed Risk for helping organizations prioritize vulnerability and exposure management, thereby reducing the workload for security teams and enabling a more holistic approach to continuous monitoring and threat management.
Additionally, Sophos Managed Risk is available as an extended service with Sophos MDR, providing additional support to organizations in identifying vulnerabilities and managing exposure risks. The service offers regular interaction, scheduled meetings with Sophos experts, insights into the threat landscape, and tailored support through the Sophos Central platform.
Related Courses and Certification
Also Online IT Certification Courses & Online Technical Certificate Programs
SIIT is on a mission to make technology education and professional training more accessible, so more people can show off their talents and take their tech careers to the next level. All courses are tailored to meet individual specific career needs, leading to Tech Skills Acquisition and Professional Certification.
Student Login
Login & Study At Your Pace
500+ Relevant Tech Courses
700,000+ Enrolled Students
Jobs Vacancy
The Jobs portal provides you with real time Jobs Opening and Vacancy Updates curated globally. Start applying for your dream job with ease in any location you choose.
Learn More >>