CIO Bulletin

Resecurity - Providing a unified platform for cybersecurity solutions

Cybersecurity risk is increasing day by day due to the increased usage of web services like AWS to store sensitive data. A poor configuration of cloud services can expose the risk to cybercriminals worldwide to carry out compromising breaches. Resecurity is an American cybersecurity company with headquarters in Los Angeles that provides next-generation endpoint protection and intelligence-driven cybersecurity solutions to leading Fortune 500 corporations and governments worldwide.

The company is focused on intelligence-driven solutions. They invest in Big Data, Artificial Intelligence, and Data Science. These bring unique value in complex investigations of cybercrimes, APT campaigns, and threat actors. They focus a lot on R&D, like researches based on the latest techniques and tradecrafts of cybercriminals and nation-state actors, and analyze massive amounts of data to improve their products.

The company’s core mission is to provide intelligence that is tailored to the end consumers with the correct information at the right time or better time to combat cyber threats. Instead of relying too much on “controls” in the existing infrastructure, the company focuses on the key question of “are you being targeted” or are you “breached.”

Helping organizations revolutionize cybersecurity

Resecurity helps organizations in revolutionizing cybersecurity by recognizing actual threats to the clients and reducing noise from other commodity solutions. Second, they provide direct data that can integrate with a platform that requires zero learning and immediate operational capabilities.

Third, the solution is mission-ready, meaning flexible and scalable to meets the changing digital landscape. Fourth and most importantly, it’s self-sustaining, meaning instead of focusing on configuration and administration, the company provides immediate details of what’s happening outside, like drones, collecting valuable intelligence that you should be worried about.

Strengthening Cyber Security Resilience with APT Emulation

APT threats are some of the most dangerous in the wild due to the length of time an attacker has access to the internal network. Attackers can obtain a wide range of valuable data from the enterprise, costing millions of dollars in legal issues and post monetary restitution. If the organization is charged with safely storing critical personal data (e.g., financial or patient records), regulatory bodies penalize with hefty fines for increased violations.

To eradicate APT attackers, Resecurity has spent decades protecting some of the largest brands in the world. One of the key aspects of their controls is the agility to make changes to the environment, hardening in all stacks of the infrastructure, and rapid patching regiment. Lastly, they are very careful from an operational security aspect, as the first line of defense is human as well as the weakest point of compromise.

Red Teaming simulates real-world attack scenarios

Efficient and thorough penetration testing requires real-world scenarios similar to the same actions an attacker would use to exploit vulnerabilities. Red teaming is a group of white hat hackers who run penetration testing on a system to find any weaknesses in infrastructure, software, user training, and other resources connected to the network. Resecurity applies these internally for their customers. Companies are breached not because they lack controls but because of misconfigurations or unpatched systems. The company builds custom tools to see what’s open and where it can pivot.

Resecurity takes risk measurements very seriously, as their risk measurement isn’t about likelihood or probability. They collect all the connecting dots based on their all-source intelligence to tell you whether or not you are being targeted. In addition, because of their extensibility, they grow with your digital footprint and give you the whole picture without additional cost. The company focuses on actual threat risk, not just knowing you have risk.

Finding and Containing Cyber Criminal Attacks Using Digital Forensics and Incident Response

Even experienced administrators and advanced cyber-defenses fail to catch an attacker occasionally. When this happens, digital forensics professionals are needed to collect, process, document, and analyze evidence critical to an investigation. Digital forensics professionals can also help organizations identify vulnerabilities both proactively and retroactively after a successful data breach. Network administrators can usually perform digital forensics with basic data collection, but experienced digital forensics investigators have extensive knowledge of computer technology, network infrastructure, and coding.

Solutions provided by Resecurity

Resecurity is a data-driven company and has built technologies on top of it. Their flagship product Context^™ is the brain, but in simple terms, it’s a threat intelligence platform. What makes Context^™ a unique offering is that it has all-source data. Not just commodities like IOC or IP reputation but all connecting data points from over 250K categories of TTPs to libraries of data points that give you a simple picture of what’s impacting you.

The company never set out to make its products into a security threat but also recognizes that CTI platforms require a team, so they built Risk^™ Digital Risk Monitoring platform – powered by Context to provide a comprehensive view of digital footprint against threats. The main focus for Risk^™ is to reduce time, resources, and money for the information security team by creating a simple platform that gives an immediate understanding of where a company stands from security posture. But most importantly, Resecurity aims to build a trustworthy organizational platform that gives digital risk insights into a company and its supply chain, providing a better understanding of third-party risk. Given all the supply chain risk today, every company wants to know if they are breached or not and if yes, then what actions are needed to be taken.

About the CEO

Gene Yoo is the Chief Executive Officer of Resecurity. He has over 25 years of cybersecurity experience for some of the world’s largest brand names, such as Warner Bros., Sony, Computer Science Corporation, Coca-Cola Enterprise, Capgemini, and Symantec. He has also served in an advisory role to Phantom (acquired by Splunk), Protectwise (acquired by Verizon), Elastica (acquired by Blue Coat), and Vorstack (acquired by ServiceNow).