Press Release

Also showcases leadership in cloud security introducing first CIS Azure Benchmark

SANTA CLARA, Calif. -  Feb 13, 2018 - Cavirin Systems, Inc., provider of comprehensive cybersecurity, risk management, and DevSecOps automation solutions for hybrid cloud, has been selected as a gold winner by the 2018 Cybersecurity Excellence Awards in the ‘Best Compliance Solution’ for its’ ‘Continuous Security for Hybrid Clouds.’ Cavirin Systems was also selected as a silver winner in two additional categories including ‘Best Cloud Security’ and ‘Best Cybersecurity Company’ for fifty to one hundred employees. The 2018 Cybersecurity Excellence Awards honor individuals and companies that demonstrate excellence, innovation and leadership in information security, based on the strength of their nomination and the popular vote by members of the information security community.

These prestigious awards clearly reflect Cavirin’s continued leadership in enabling continuous security and compliance across the hybrid cloud.  The most recent example of this leadership is forming the working group for developing a CIS Security Benchmark for Azure Cloud. The benchmark is a significant milestone for public cloud security as a foundational and prescriptive guideline for organizations to establish a healthy security posture in Azure Cloud investments. The CIS Security Benchmark takes a different approach from other products that rely on published APIs and therefore provide only an indirect view into the cloud infrastructure. This quantitative and automatic assessment is a foundation for DevSecOps.

"Congratulations to Cavirin for being recognized as a winner in the Cloud Security, Compliance, and Best Cybersecurity Company categories of the 2018 Cybersecurity Excellence Awards," said Holger Schulze, CEO of Cybersecurity Insiders and founder of the 400,000-member Information Security Community on LinkedIn that organizes the awards program. "With over 400 entries in more than 70 categories, the 2018 awards are highly competitive and all winners truly reflect the very best in today's cybersecurity industry."

 “Over the last few quarters we’ve continued to raise our visibility and credibility in bringing DevSecOps to hybrid cloud security,” said David Ginsburg, Vice President of Marketing, Cavirin.  “Outstanding customer traction on our new platform, recent award wins, exceptional independent product reviews, and established thought leadership have set the stage for a fantastic 2018 for Cavirin.

Cavirin will next showcase its leading platform for continuous security in hybrid clouds at Container World 2018 from February 26-28, 2018 in Santa Clara, CA.  Cavirin will also be hosting a webinar on March 7th featuring Byron Acohido, Pulitzer Prize winner and Executive Editor of lastwatchdog.com highlighting several critical cyber threats looming in 2018. Please register for this pioneering webinar below.

 

Resources:

Webinar: 2018 Cyber Threats are Looming – Leverage NIST CSF

Blog: Why a Hybrid Cloud Strategy is Important

 

0
0
0
s2sdefault

Industry Veteran to Help Drive Adoption of DevSecOps Automation Solution

SANTA CLARA, Calif. -  Feb 6, 2018 - Cavirin Systems, Inc., provides a comprehensive cybersecurity, risk management, and DevSecOps automation solution for the hybrid cloud, via the broadest curated library of industry guidelines, control frameworks, and best practices.  

Cavirin today announced that it has appointed industry veteran Jack Kudale as its Chief Operating Officer to help lead the company to the next level of market success in 2018.  He joins Cavirin most recently from Lacework, a cloud security startup, where he was CEO.  Previous senior roles included SnapLogic, a leader in hybrid cloud integration, and CA Technologies, where Kudale led DevOps sales for the Fortune 500 leader.  Jack brings to Cavirin deep operational experience in the DevOps cybersecurity, IT Ops, and APM spaces.  Cavirin sits at the intersection of hybrid cloud growth and with it, continuous compliance requirements, with the realization that DevOps security automation is the way to get there.  Jack will help the company execute on this vision.

 “Cavirin’s vision of DevSecOps automation for the hybrid cloud will securely enable digital business.  Security leaders must adopt a continuous adaptive risk and trust assessment strategic approach,” said Jack Kudale, Chief Operating Officer at Cavirin Systems. “Cavirin is poised to lead this DevSecOps revolution, on the back of its cloud compliance and security posture capabilities, to further its commitment towards customers and partners.”

 “Cavirin’s new platform is spot-on in addressing the security needs of companies deploying in the cloud,” said Steve Shead, Chief Information Officer at SugarCRM.  “We will look upon Jack’s leadership to further align our requirements and Cavirin’s offerings moving forward.”

 “Jack’s skills and experience perfectly complement the Cavirin management team, and he will be instrumental in accelerating our revenue growth and execution,” said Dr. Rao Papolu, Cavirin’s Chief Executive Officer.  “With the release of our new platform, we are experiencing strong customer traction, and combined with a growing hybrid cloud market that needs our technology, we are ready to embark upon the next stage of Cavirin’s journey.”

 The company will next showcase its capabilities at Container World 2018, February 26-28 in Santa Clara.  The company has also been selected as a finalist in the 2018 Cybersecurity Excellence Awards.

 

0
0
0
s2sdefault

Company Also Receives SC Magazine 5-Star Rating and Recommendation 

SANTA CLARA, Calif.— November 28, 2017—Cavirin today announced C2, a SaaS offering of its successful hybrid cloud security solution, now available on Amazon Web Services (AWS). The SaaS architecture is unique in this market in that it offers hard-walled performance and security guarantees for every customer and yet provides SaaS ease of consumption and integration with the cloud provider’s billing and security systems. Cavirin SaaS initially spans AWS and on-premises deployments, while the Cavirin solution continues to expand its support for assessment and remediation of AWS, GCP, Azure, Docker, and on-premises data centers. With its flexible licensing model and usage based, pay-as-you-go pricing, Cavirin C2 offers a convenient mechanism for enterprises to roll out the security solution on a timetable of their choice.

Cavirin also announced the support for runtime protection of container workloads through its new continuous-monitoring capabilities for Docker container security, integrated with Amazon Simple Notification Service (SNS). The new monitoring capabilities include support for creating event-driven, customized security policies to monitor, receive alerts for, and act upon security-impacting events, such as unauthorized modifications to critical files and unintentional changes to key configurations that can affect the attack surface.

These capabilities build upon the platform’s sophisticated monitoring architecture, which abstracts the data coming in from any source, stores and processes it, and then presents it to the operator. Cavirin’s AWS CloudTrail integration permits the operator to monitor artifacts that include launched instances, modifications to VPCs, ACL changes, and AWS Lambda-triggered changes to a security group.

“Cavirin uniquely offers an end-to-end solution for container workloads,” said Ravi Rajamiyer, vice president of Cavirin engineering. “This starts from the image-level security before production, to runtime protection after production launch, and is fully aligned with DevSecOps CI/CD practices.”

In parallel, Cavirin’s micro-services based scale-out architecture now supports over 10K instances on a single VM, with near-constant throughput for much larger deployments via horizontal scaling, while delivering 5x faster assessments over competing platforms. The platform’s scalability, usability, and DevOps capabilities were also recognized in a recently published SC Magazine product review with both a 5-star rating and recommendation.

Cavirin SaaS is available today for evaluation, with full GA planned for the first quarter of 2018. The company will showcase its SaaS offering, monitoring, and performance metrics in Booth 1404 at AWS re:Invent 2017, November 28-30 in Las Vegas. Also, join Cavirin for its upcoming webinar with DevSecOps expert Greg Bledsoe, “Automating Security into the DevOps Process,” Thursday, December 7th, at 10am Pacific time. Download On-demand Webinar.

 

 

 

0
0
0
s2sdefault

SANTA CLARA, Calif.--(BUSINESS WIRE)--Cavirin Systems, Inc., provides a comprehensive cybersecurity, risk management, and DevSecOps automation solution for the hybrid enterprise, via the broadest curated library of industry guidelines, control frameworks, and best practices.

Cavirin today announced that its solution has been recognized as a Trust Award finalist in the Best Risk/Policy Management Solution category for the 2018 SC Awards. The finalists and winners for the Trust Awards are chosen by an expert panel of judges with extensive knowledge and experience in the cybersecurity industry. Winners will be announced at the SC Awards ceremony on April 17, 2018 in San Francisco.

"In an age where threats are ever-evolving, it is reassuring to know that one true constant is the commitment of dedicated information security professionals, as best exemplified by our SC Media Awards finalists," said Illena Armstrong, VP, editorial, SC Media. "These inspiring innovators have set a high bar for their industry peers, as they continue to protect the world from attacks and vulnerabilities that imperil our security, privacy, and digital infrastructure. The year 2017 brought us WannaCry ransomware infections, the rise of cryptominers, and bugs like Broadpwn and BlueBorne that affected billions of devices. Whatever threats rear their ugly heads in 2018 and beyond, our finalists will be ready to act."

Now in its 21st year, SC Awards is recognized as the industry gold standard of accomplishment for cybersecurity professionals, products and services. With the awards, SC Media recognizes the achievements of cybersecurity professionals in the field, the innovations happening in the vendor and service provider communities, and the vigilant work of government, commercial and nonprofit entities. Vendors and service providers who offer a product and/or service for the commercial, government, educational, nonprofit or other industries are eligible for the SC Awards' Trust Award category.

"Cavirin's selection as a finalist reflects the value of our solution in addressing today's cybersecurity and threat landscape. We uniquely integrate cloud infrastructure, workload, and container security with automation and ease of deployment, to help enterprises manage risk across their hybrid cloud," said David Ginsburg, vice president of Cavirin marketing.

"Finalists for the Trust awards are selected by a panel of approximately 100 professionals and the SC Magazine product reviews team," added Illena Armstrong of SC Media. "It's a high bar to clear and we are proud to acknowledge Cavirin as a finalist."

The SC Awards gala honoring the winners attracts top professionals in the cybersecurity community and provides an invaluable opportunity for networking. To register for the 2018 SC Awards gala, please visit http://www.scmagazine.com/awards/.

The company will showcase its capabilities at Container World 2018, February 26-28 in Santa Clara. Also, join Cavirin for its upcoming webinar, "Discover a Simplified Approach to Container Runtime Protection," Tuesday, January 30th, at 10am Pacific time. Register here.

0
0
0
s2sdefault

Enables Enterprises to Automatically Adopt Best Practices

 

SANTA CLARA, Calif.— Oct 4, 2017 — Cavirin Systems, Inc. offers continuous security assessment and remediation for hybrid clouds, containers, and data centers, via the most comprehensive curated library of industry guidelines, control frameworks, and best practices.

Cavirin today announced support for the NIST Cybersecurity Framework on its Hybrid Cloud Security Platform.  The Framework outlines the best risk management practices and principles that organizations should apply to improve the security and resilience of their critical infrastructures. It helps organizations avoid the failures in processes and policies that are the source of many of today’s breaches.  To create this guidance, the NIST Framework leverages current standards and guidelines, such as ISO, COBIT, CIS, and other NIST documents.

Cavirin unifies and automates continuous cybersecurity risk management for hybrid infrastructures prevalent in the enterprise. Cavirin’s customers can select the NIST Cybersecurity Framework as one of the Platform’s many control frameworks for assessing their infrastructure against the framework requirements, prioritizing and remediating any open issues found, thereby enhancing their security and risk posture.  Cavirin’s security team has analyzed this draft NIST document and translated the guidance into a set of technical controls that help organizations automatically align to the document’s recommendations. A detailed description of Cavirin’s NIST support is available on the NIST Industry Resources page. Cavirin’s NIST Framework primer is here.

The Cybersecurity Framework was published in February 2014 following a collaborative process involving industry, academic, and government agencies, as directed by a presidential executive order.  The 2017 draft Framework for Improving Critical Infrastructure Cybersecurity Version 1.1 incorporates feedback since the release of framework version 1.0, and integrates comments from the December 2015 Request for Information as well as comments from attendees at the Cybersecurity Framework Workshop 2016 held at the NIST campus in Gaithersburg, Maryland.

 “NIST is a comprehensive cybersecurity-based control framework that integrates various security technologies and mechanisms into an integrated framework,” said Pravin Goyal, Cavirin Director of Information Security and Compliance Engineering.  “Given our expertise in cybersecurity, we have interpreted the framework and translated it into a set of automated controls that are easy to implement and automate for any sized business. This is a huge win for any business that is looking to implement the NIST Cybersecurity Framework to holistically manage its cybersecurity risk.”

Cavirin already supports the following NIST standards:

  • NIST 800-53r4 - Security and Privacy Controls for Federal Information Systems and Organizations
  • NIST 800-171 - Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations

Please join Cavirin’s webinar titled: “Implementing the NIST Cybersecurity Framework Shouldn’t be Scary,” scheduled for October 31 at 10am pacific, Register Here. 

 

 

 

 

0
0
0
s2sdefault

Cavirin provides security management across physical, public, and hybrid clouds, supporting AWS, Microsoft Azure, Google Cloud Platform, VMware, KVM, and Docker.