Introducing Sophos Managed Danger, Powered by Tenable – Sophos Information

Exploited unpatched vulnerabilities are the main root reason for profitable assaults, as reported in Sophos’ 2024 Ransomware Report.

The fashionable assault floor has expanded past conventional on-premises IT boundaries, with organizations working incessantly unknown numbers of exterior and internet-facing belongings which are unpatched or beneath protected, leaving them weak to cyberattackers.

Given this urgent want, we’re excited to introduce Sophos Managed Risk, powered by Tenable. This new service allows organizations to search out and eradicate blind spots and keep forward of potential assaults by clearly understanding and prioritizing the very best threat exposures, with professional steerage from Sophos’ devoted group.

Sophos Managed Danger delivers:

  • Assault floor visibility
    The fashionable assault floor continues to develop past the borders of conventional IT, and most organizations now have internet-facing belongings they don’t understand they personal, offering simple targets for risk actors. Sophos Managed Danger discovers the group’s internet-facing belongings and analyzes their exterior assault floor.
  • Steady monitoring
    In-house IT and safety groups could lack the deep information and expertise of the exploitation panorama wanted to totally perceive the safety posture of their group’s assault floor. Sophos Managed Danger offers professional steerage and helps set remediation priorities.
  • Danger-based vulnerability prioritization
    New vulnerabilities are found sooner than most organizations can repair them. Understanding which of them are related and by which order to patch them is a major problem. Sophos Managed Danger identifies and prioritizes exposures utilizing in depth vulnerability protection and risk-based prioritization know-how from Tenable.
  • Proactive notification of high-risk exposures
    Attackers search for weaknesses within the atmosphere lengthy earlier than organizations know they’re there. Figuring out high-risk exposures rapidly is essential. Sophos Managed Danger offers proactive notification when new crucial vulnerabilities are found that have an effect on the group’s belongings.

“One of many largest challenges organizations face when enhancing their safety posture is prioritizing what to deal with first. This kind of steerage helps clear up that difficulty and reduces the workload for safety groups tasked with tackling vulnerability and publicity administration,” stated Craig Robinson, analysis vp of Safety Companies, IDC. “Options corresponding to Sophos Managed Danger is usually a differentiator by enabling overwhelmed groups to take a extra holistic strategy to steady monitoring and risk administration.”

The Sophos-Tenable Alliance

Sophos Managed Danger combines industry-leading know-how from Tenable with risk experience from Sophos, delivered as a proactive assault floor administration service. This distinctive partnership brings collectively two extremely revered cybersecurity market leaders to ship superior safety outcomes for patrons and companions.

“Sophos and Tenable are two {industry} safety leaders coming collectively to handle pressing, pervasive safety challenges that organizations repeatedly wrestle to regulate. We are able to now assist organizations determine and prioritize the remediation of vulnerabilities in exterior belongings, units and software program which are usually missed. It’s crucial that organizations handle these publicity dangers, as a result of unattended, they solely result in extra expensive and time-consuming points and are sometimes the foundation causes of serious breaches,” stated Rob Harrison, senior vp for endpoint and safety operations product administration at Sophos. “We all know from Sophos’ worldwide survey information that 32% of ransomware assaults begin with an unpatched vulnerability and that these assaults are the most costly to remediate. The perfect safety layers to forestall these points embody an lively strategy to enhancing safety postures by minimizing the probabilities of a breach with Sophos Managed Danger, Sophos Endpoint, and 24×7 Sophos MDR protection.”

“Whereas the most recent zero day could dominate the headlines, the largest risk to organizations, by a big margin, remains to be recognized vulnerabilities – or vulnerabilities for which patches are available,” stated Greg Goetz, vp of worldwide strategic companions and MSSP, Tenable. “A profitable strategy consists of risk-based prioritization with context-driven analytics to proactively handle exposures earlier than they change into an issue. Sophos Managed Danger, powered by the Tenable One Publicity Administration Platform, delivers outsourced preventive threat administration, enabling organizations to anticipate assaults and scale back cyber threat.”

Collaborates with the world’s most trusted MDR service

Sophos Managed Danger is on the market as an prolonged service with Sophos MDR, which already protects greater than 21,000 organizations globally. The devoted Sophos Managed Danger group is Tenable-certified and works intently with Sophos MDR to share important details about zero-days, recognized vulnerabilities and publicity dangers to evaluate and examine probably exploited environments. Organizations profit via common interplay, together with scheduled conferences with Sophos specialists to overview latest discoveries, insights into the present risk panorama, and suggestions for remediation and prioritizing actions.

For instance, when Sophos discovers a brand new high-risk zero-day vulnerability that would depart a corporation uncovered, Sophos Managed Danger scans their belongings for the potential for an exploit and proactively notifies the client. Organizations can join with the Sophos Managed Danger group and conveniently handle vulnerability escalation circumstances alongside MDR investigations in a single unified Sophos console.

Accessible quickly

With Sophos Managed Danger specialists offering insights into assault floor vulnerabilities, organizations of all sizes can scale back cyber threat, speed up their patching applications, and enhance insurability. The brand new service will likely be obtainable on the finish of April 2024.

To study extra about Sophos Managed Danger and the way it can help you, visit our website or converse with a safety professional in the present day.