RiskSense adds robust vulnerability prioritization based on risk level and remediation capabilities to Ivanti Neurons for Patch Intelligence
Ivanti Inc., the automation platform that discovers, manages, protects and supports IT assets from the cloud to the edge, has acquired RiskSense, a pioneer in risk-based vulnerability management and prioritization, to drive patch management developments. This integration will allow organizations to prioritize vulnerabilities to patch, reducing their exposure to ransomware attacks through a proactive, risk-based approach to patch management. Several such solutions are already available to Ivanti Neurons for Patch Intelligence customers. Terms of the RiskSense transaction were not disclosed.
“Over the past two years, cyberattacks have gone from being perceived as a mere nuisance to the leading cause of societal disruption,” he said Srinivas Mukkamala, CEO di RiskSense. "In this new landscape, unpatched vulnerabilities become the primary means of infiltrating organizations. For this reason, I am committed to combating ransomware attacks with the belief that, through the combination of risk-based vulnerability prioritization and patching AI, we can help organizations increase cyber security. Together, RiskSense and Ivanti will enable customers to improve operational efficiency and effectiveness, defending against the most sophisticated cyberattacks."
This combination will reduce the average time it takes to detect, discover, remediate and respond to cyber attacks by paying attention to critical vulnerabilities related to or associated with ransomware. Ivanti and RiskSense will provide security and IT teams with context and adaptive intelligence about their organization's exposures to vulnerabilities that are being actively exploited, enabling them to quickly remediate them. This will improve the efficiency and effectiveness of security teams and IT operations in combating automated vulnerabilities used by cyber attackers.
Ivanti has already integrated in Ivanti Neurons for Patch Intelligence, la RiskSense Vulnerability Intelligence e il Vulnerability Risk Rating, which prioritize and quantify the risk of possible attacks through factors such as threat intelligence, in-the-wild exploit trends and security analyst ratings. This functionality is currently available to Ivanti Neurons for Patch Intelligence customers with RiskSense licenses. The acquisition coincides with the recent one White House communication which encourages enterprises to use a risk-based assessment strategy to manage patches and strengthen cybersecurity against ransomware attacks. Furthermore, Gartner has listed risk-based vulnerability management as one of its most important security projects which IT professionals should invest in in 2021 to increase companies' business and reduce risks.
“Ivanti has been a leader in patch management for many years and the acquisition of RiskSense will take our capabilities to the next level,” he said Jim Schaper, President and CEO of Ivanti. "This combination will allow us to offer customers a complete view of vulnerabilities, enabling them to act quickly through Ivanti Neurons for Patch Intelligence. Customers will be able to significantly reduce the risk of breach through vulnerability intelligence and subsequent remediation prioritization based on current exploit and ransomware attack trends."
“The combination of risk-based vulnerability prioritization and automated patch intelligence is a first in the market,” he continued Mukkamala di RiskSense. "This is due to the combination of two powerful data sets from Ivanti and RiskSense. The former has the most comprehensive patch information, while the latter boasts a dataset on vulnerabilities and exploits, with mapping capabilities based on the growing ransomware groups as ransomware-as-a-service, in addition to information shared with members associated with the APT groups. Together, Ivanti and RiskSense, will enable customers to take the right action at the right time and defend against the ransomware that today represents the main security threat.”
“Despite the ineffectiveness of patches without threat context, many IT and security teams attempt to patch every vulnerability,” he commented Michael Montoya, Chief Information Security Officer di Fortune 500. “The combination of Ivanti and RiskSense will provide added value to enterprises, allowing them to identify vulnerabilities with higher priority, accelerating remediation.”
Ivanti is a privately held company backed by investors Clearlake Capital Group, L.P., Charlesbank Capital Partners and TA Associates. On this transaction, BMO Capital Markets acted as exclusive financial advisor to Ivanti and Momentum Cyber served as exclusive financial and strategic advisor to RiskSense. In addition, Fenwick & West LLP acted as advisor to RiskSense, while Sidley Austin LLP acted as advisor to Ivanti.
