Story image

Ensign and IronNet partner to create cyber analytics capabilities

19 Mar 2019

Cybersecurity firm Ensign InfoSecurity (Ensign) and US cybersecurity specialist IronNet Cybersecurity (IronNet) have announced three strategic thrusts to their joint venture (JV) Cyber Analytics Centre for Excellence (COE).

They are enhancing the capabilities of local cybersecurity talents; joint research and development efforts to create advanced cybersecurity solutions; and strengthening cyber threat intelligence sharing to enable collective defence between enterprises, industries, and governments.

This marks a milestone in the partnership between both companies.

The Singapore-based centre aims to equip government entities and organizations operating in Singapore and across Asia-Pacific with collective defence solutions to secure infrastructure against coordinated attacks.

Ensign InfoSecurity CEO Yeoh Keat Chuan says, “Data is the critical ingredient for cyber defence today.

“Without advanced cyber analytics, organizations are blind to emerging threat vectors and can only be reactive to cyber-attacks.

“The Cyber Analytics Centre for Excellence brings together two companies to co-create new data analytics techniques and best practices, and ultimately, help uncover new cyber threat vectors in this digital world.”

IronNet Cybersecurity founder and co-CEO Keith Alexander says, “Today’s advanced threat actors are sophisticated, well-funded adversaries who can rapidly change their tactics, techniques and procedures to avoid detection.

“Defending against these threats require enterprises, their industry and their governments to work together to build a collective defense framework that strengthens the security posture for all members.

“The three strategic focuses that we have devised with Ensign for the Cyber Analytics COE will help build a joint defense framework to accomplish those goals.” 

The three strategic thrusts of the Cyber Analytics COE are: 

Elevating the capabilities of Asia's homegrown cybersecurity talents

The first strategic focus of the COE will be to strengthen the expertise of cybersecurity professionals in Singapore.

Ensign’s security team, which currently comprises 500 cybersecurity professionals, will have cross-training and secondment opportunities with IronNet Cybersecurity.

This exposes local talents to cyber analytical detection methods and the chance to learn from offensive and defensive cybersecurity experts from IronNet who possess deep experience working for military, government, and commercial sectors in the United States.

Developing innovative, best-of-breed cybersecurity solutions

The JV also provides a knowledge and intellectual property (IP) exchange platform for the two companies’ team of data scientists, engineers and researchers.

Ensign InfoSecurity has developed threat detection models based on the deep network security, data science, and cyber intelligence tradecraft expertise of their team to develop AI techniques that detect unknown threats in network protocols.

These models can be further augmented by IronNet Cybersecurity’s patented IronDefense solution which is a scalable network traffic analysis platform that uses advanced behavioural analytics, machine learning, and AI techniques to identify known and unknown threats at each phase of the attack lifecycle.

The cross-pollination of capabilities will enable the center to perform deep research into areas such as cyber analytics and advanced detection methodologies that will result in the creation of new custom security solutions and services for Singapore and Asia-Pacific.

Collective defense cyber intelligence sharing

The centre will facilitate secure and strong industry sector and cross-sector cyber intelligence sharing between the two partners. 

IronNet’s IronDome solution aggregates and analyses behavioural anomalies in real time and at machine-speed across public and private sector organizations at scale to identify cyber threat targeting an industry or geography.

Combined with Ensign InfoSecurity’s access to the metadata from Starhub’s telco network and analytics capabilities, the COE will be able to connect the dots and provide complete visibility on imminent threats across an industry or geographic region and identify stealthy, sophisticated cyber campaigns that would otherwise be challenging for an individual organization to detect and stop.

Ensign is the exclusive distributor in Singapore and select Asia-Pacific markets for IronNet’s IronDefense and IronDome solutions.

Industrial control component vulnerabilities up 30%
Positive Technologies says exploitation of these vulnerabilities could disturb operations by disrupting command transfer between components.
McAfee announces Google Cloud Platform support
McAfee MVISION Cloud now integrates with GCP Cloud SCC to help security professionals gain visibility and control over their cloud resources.
Why AI and behaviour analytics should be essential to enterprises
Cyber threats continue to increase in number and severity, prompting cybersecurity experts to seek new ways to stop malicious actors.
Scammers targeting more countries in sextortion scam - ESET
The attacker in the email claims they have hacked the intended victim's device, and have recorded the person while watching pornographic content.
Cryptojacking and failure to patch still major threats - Ixia
Compromised enterprise networks from unpatched vulnerabilities and bad security hygiene continued to be fertile ground for hackers in 2018.
Princeton study wants to know if you have a smart home - or a spy home
The IoT research team at Princeton University wants to know how your IoT devices send and receive data not only to each other, but also to any other third parties that may be involved.
Organisations not testing incident response plans – IBM Security
Failure to test can leave organisations less prepared to effectively manage the complex processes and coordination that must take place in the wake of an attack.
65% of manufacturers run outdated operating systems – Trend Micro
The report highlights the unique triple threat facing manufacturing, including the risks associated with IT, OT and IP.