As networks grew more complex with the addition of cloud computing, mobile devices and IoT, published software vulnerabilities accelerated by about 12% year-over-year, to more than 22 000 security vulnerabilities published in 2019 alone. These vulnerabilities affect the integrity, stability and reliability of the product. While vulnerability scanners can identify the thousands of vulnerabilities that may exist on a corporate network, cybersecurity personnel must always manually sort through reported vulnerabilities and identify which ones are most important to fix first and which are fake. positive. At the same time, the global demand for cybersecurity professionals has exceeded supply, creating a critical cybersecurity skills gap and talent shortage.
DeepSurface’s Predictive Vulnerability Management platform helps solve this problem by automating the discovery, precise prioritization and research for remediation of vulnerabilities leading to real risk reduction on their networks. Not intended to replace vulnerability scanners, but to pick up where they left off, DeepSurface automatically gathers in-depth knowledge of user permissions and activity, application permissions, host configurations and the location of sensitive data to create a detailed threat model and map of all holdings. paths through a network caused by unpatched software. Most importantly, DeepSurface calculates the risk of each vulnerability and risk path based on the potential impact on critical assets. By equipping teams with actionable intelligence and the contextual analysis they need to measure and prioritize risk, teams can objectively prove where they should be spending their time to reduce the most risk.
“With critical information stored in networks and the cloud, it’s critical that businesses quickly address the vulnerabilities that pose their greatest risk to them before they harm their brand and revenue,” said the CEO of DeepSurface. James dirksen. “With Deep Surface’s unique mapping, guidance capabilities, and actionable insight, security teams are finally able to attack the most dangerous vulnerabilities first with precision, allowing teams to optimize time spent in the areas most at risk. “
According to Gartner, “End-user spending for the information security and risk management market is expected to increase at a compound annual growth rate of 8.2% from 2019 to 2024 to reach $ 207.7 billion in constant currency. “1
“Despite the large investments that many companies make in risk management solutions, choosing which vulnerabilities to address first remains a stubbornly manual and imprecise process,” said Robert pease, Managing Director of Cascade Seed Fund. “As more companies look to improve their risk reduction systems, automation is a natural next step. We found that DeepSurface has developed a compelling solution for predictive vulnerability management and we are excited to see where this investment takes them. “
Founded in 2017, the Portlandbased company is headed by the CEO James dirksen, a veteran Portland entrepreneur who bought and developed the web categorization company RuleSpace, LLC and sold it to Symantec, and Tim morgan, one of the leading penetration and application security testers. They are joined by a strong board of advisers who include Dwayne Melancon, former CTO at Tripwire; Dave cole, former product manager at Tenable; John Ewert, former COO at Palo Alto Networks; and Rob wiltbank, CEO of Galois, Inc.
“Finally a vulnerability tool that will identify exactly what needs to be fixed and which patch to deploy as a priority in relation to the risk for the company” declared Diane fraiman, Managing Director of Voyager Capital. “It’s tough to do and positions DeepSurface in an excellent position to gain market leadership. Voyager Capital is thrilled to be a part of this growth opportunity.”
The beta version of DeepSurface is used by large healthcare companies, SaaS and financial companies. General availability will be available in Q4 2020, and the company is now planning product preview visits to vulnerability management teams and CISOs.
To learn more about DeepSurface, visit:
About DeepSurface Security Deep surface security is the first automated suite of predictive vulnerability management tools that helps cybersecurity teams automate the process of analyzing and prioritizing vulnerabilities on corporate networks. Created by an experienced cybersecurity team, DeepSurface Security is trusted by companies to identify, prioritize and research vulnerabilities in their networks. Based at Portland, Oregon, DeepSurface is a private company funded by Cascade Seed Fund, SeaChange Fund and Voyager Capital. To find out more visit www.deepsurface.com.
1 Gartner “Forecast: Information Security and Risk Management, Worldwide, 2018-2024, Update 2Q20” Rustam Malik, et al, July 28, 2020