Hackers Shouldn't Have Easy Options

Date published: 13 Apr 2018

12 April 2017, Worcester:  Ahead of RSA Conference 2018 (Moscone Center, San Francisco) Titania announces it has the solution to ‘alert fatigue’ in its world-leading configuration auditing and mitigation technology, and is on a mission to ensure hackers don’t have ‘easy options’. They come to RSA conference, prepared with independent studies, whitepapers on “The Future of Autonomous Mitigation” and a press exclusive demonstration / sneak peek of its product roadmap.
Visit Booth #1933 to:

  • Hear Thought leadership from Adam Montville, Chief Product Architect at CIS, Ian Glover, President of CREST, and Ian Whiting, CEO at Titania
  • Find out about the global survey on the future of ‘autonomous self-healing systems’ Cyber Security competition and contribute to the survey to win a trip to London or $2000
    (and register for the post-survey results).
  • See Titania exhibiting advanced configuration analysis tools at RSA Booth #1933

Many have predicted the rise in automated cyber-attacks and this year Microsoft’s Brad Smith will discuss ‘people vs machines’ in his “Price of Cyber-Warfare” RSA Conference keynote. Like many he is calling for new solutions, to prevent hackers taking advantage of the hidden vulnerabilities in business networks and IT systems.

Titania proposes an alternative but complementary viewpoint to the many solution providers focussed on live attacks. What if those solutions only had to focus on Zero Days, as all the other vulnerabilities, the ‘easy options’ (which in the end often amount to poor cyber hygiene) were completely eliminated?

For anyone working in enterprise security who knows this approach requires autonomous mitigation, it may seem like “mission impossible” akin to Kennedy’s dream of reaching the moon (but we all know how that turned out). Whilst eminently doable, in order to achieve fully self-healing and defending systems we need to provide AI’s with an accurate baseline of essential information to make autonomous mitigation decisions.

What currently stands in its way is the plethora of inaccurate information that current Enterprise systems are plagued with. Titania’s independent research on some of these systems, show tools that are providing less than 20% accuracy. This is generating enough false-positives to make finding a vulnerability like listening for a whisper in a rock concert.

So what’s the solution?
Titania believes it is in automating the same “line by line” configuration analysis and process of interpretation, which expert penetration testers perform manually. Titania’s technology does this at scale, at speed - and with unprecedented accuracy. Through them, industry partners have already begun to unlock the potential for fully autonomous and self-mitigating / defending systems.

Titania will be demonstrating these systems and sharing how delegates can ditch alert fatigue for good. On their booth, they will also be hosting CIS, the world leading standards authority that is used as a benchmark in almost every industry, and CREST, a global professional body for expert penetration testers.

Ian Whiting, CEO & Founder of Titania and former accredited Penetration Tester, will be discussing how its advanced configuration analysis tools help SOCs and NOCs. He will share how to quickly gain detailed knowledge of their systems defences, the monitoring capabilities that have been deployed, and more importantly, any exploitable vulnerabilities and non-compliance with regulations such as PCI, GDPR, STIG and CDM.

Nicola Whiting CSO of Titania says “As governments introduce more regulations to address the growing number of major data breaches, compliance is increasingly being pushed to the top of companies risk registers. Our automated configuration and build reviews audit against global public vulnerability repositories to provide validation of a company’s compliance – in detail, at speed and with unprecedented accuracy.”

“I’m looking forward to speaking to people about how they can create a security ecosystem they can rely on, one that de-risks their business and prepares the organisation for fully autonomous mitigation and self-healing systems” continued Whiting.

Don’t miss the presentations at Booth #1933, given throughout the conference about how organisations can automate cyber hygiene checks and streamline their validation workload:

  • Ian Whiting, CEO at Titania

Tuesday 10:00 and 13:30| Wednesday 11:00 and 13:30 | Thursday 10.00

  • Adam Montville, Chief Product Architect at CIS
    Tuesday 10:30 and 14:00| Wednesday 11.30 and 14:00 | Thursday 10:30
  • Ian Glover President at CREST

Tuesday 11.30 and 15:00 |Wednesday 10:30 and 15:00 | Thursday 11:30am

Visitors to the stand will also be in with a chance to win a trip to London – or a $2000 cash prize alternative. Titania’s Enterprise Security competition will be held at their booth throughout the conference, and visitors that complete a 2 minute survey (on the impact of autonomous attacks and desire for ‘autonomous self-healing systems’) will be entered into the prize draw.

The results from the industry survey on “Autonomous Attack & Self-Healing Systems” will be published later this year.

- Ends -

About Titania: Titania are the world leaders in configuration analysis tools, helping to protect over 27 million end users in 95 countries. Our pioneering virtual modelling technology ensures that our configuration analysis tools deliver a level of detail and accuracy that previously only manual penetration testing achieved –
delivered at enterprise scale and with unprecedented speed.

Nipper Studio performs analysis of firewalls, routers, switches and other network devices. Paws Studio performs analysis of servers, workstations, laptops, databases, enterprise applications and systems running Windows, Linux or Mac OS. Both tools can be used onsite, online, offline, in the cloud, virtually or integrated into an enterprise system. Their accuracy is certified. (www.titania.com)

About CIS: CIS® (Center for Internet Security, Inc.) is building an environment of trust in cyberspace with its benchmarks that set the global standard in best practices for securing IT systems and data against the most pervasive attacks. Our proven guidelines are continuously refined and verified by a volunteer, global community of experienced IT professionals.  CIS is also home to the Multi-State Information Sharing and Analysis Center® (MS-ISAC®), the go-to resource for cyber threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial government entities. (www.cisecurity.org)

About CREST: CREST is a global professional body for expert penetration testers, providing organisations wishing to buy penetration testing services with confidence that the work will be carried out by qualified individuals with up to date knowledge, skill and competence of the latest vulnerabilities and techniques used by real attackers. (www.crest-approved.org)


In Association With