Cyware has expanded its technology offering to build the Industry’s first multi-sectoral operational collaboration network by enabling automated cross-sectoral threat intelligence sharing between information sharing communities (ISACs).
Conventionally, threat intelligence sharing between industry sectors has been limited and never completed at this scale where sectors including healthcare, space, energy and natural gas, retail, manufacturing, operations technology, legal services, education, and maritime transportation have joined hands to share malware and vulnerability advisories as well as Indicators of Compromise (IOCs) and threat mitigation strategies with each other in real-time. The initiative will enable organizations in one sector to learn from threats seen by organizations in other sectors and proactively take necessary mitigation measures and defend against common threats.
The launch of this ISAC-led operational collaboration initiative comes at a time when the cyber threat landscape is witnessing a massive escalation in high-impact cyberattacks targeting critical infrastructure entities globally. As per the report by the US-CERT, in 2021, “the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the National Security Agency (NSA) observed incidents involving ransomware against 14 of the 16 U.S critical infrastructure sectors.” In May 2021, President Biden signed an Executive Order on Cybersecurity underscoring the need for removing barriers to information sharing between public and private enterprises.
Errol Weiss, the Chief Security Officer at Health-ISAC, said, “At Health-ISAC, we have been using Cyware’s solutions for sharing intelligence as well as valuable threat mitigation strategies with our members in real-time to collectively reduce the risk of potential attacks and enhance the resilience of existing cyber defenses.”
“Now, using the new automated ISAC-to-ISAC cross-sector sharing solution by Cyware, we are able to work with other ISACs to leverage each other’s expertise in countering threats proactively. The collaboration is paving the way for each ISAC to ensure that their industry benefits from the common ground gained through this collective defense ecosystem,” added Errol.
“Our partnership with Cyware started in 2020 and is our go-to resource to ensure all Space ISAC members have access to the most up to date information about the threats facing space systems. We believe that having a truly operational collaboration is the only way we will raise the security posture for the space sector, and we will see this come to fruition in our future Space ISAC Watch Center,” said Erin Miller, Executive Director of Space ISAC.
“The DNG ISAC has already received positive feedback from its participants on shares from other ISACs as part of the new ISAC to ISAC sharing feature. It was so easy to set up yet secure and configurable. With this new operational collaboration initiative by Cyware, our members are increasingly benefitting from the synergies we have developed with other ISACs and their members in proactively identifying threats and sharing mitigation strategies,” said Jim Linn, CIO of American Gas Association.
“Information sharing communities form the keystone of cross-sectoral operational collaboration between ISAC member organizations who have been facing the brunt of the uptick in nation-state adversary activity. The newly launched capability is the logical extension of our threat sharing and response capabilities that are already being leveraged by our ISAC partners to create shared situational awareness and operational collaboration with over 10,000 of their member organizations,” said Anuj Goel, CEO, Cyware.
Cyware brings together historically siloed security operations, allowing organizations to share threat data more efficiently, and collaborate on threat response within their security functions as well as with other organizations within their network. Earlier in 2021, Cyware launched a wide range of threat sharing solutions including CTIX Spoke and CTIX Lite to enable ISAC and ISAO members with small security teams to automatically ingest, enrich, and take actions on the threat intelligence shared by their sharing communities to enable closer collaboration against threats.