Digital Risk Protection Has Crossed the Chasm

 In Cybersecurity

Attackers are profiting from your organization’s digital transformation initiatives.

Organizations continue to invest in their digital transformation initiatives to capitalize on strategic goals: increase speed, enable collaboration, improve efficiency, and grow profit. However, with increased digitalization comes significant attack surface growth.

With the introduction of new services, applications, and technologies to their environments, organizations face the multifaceted challenge of fortifying critical assets that exist outside the corporate perimeter. This makes the risk landscape a virtual cakewalk for attackers.

The modern threat landscape is continually evolving. Increased ransomware activity, spearphishing campaigns, credential theft, and vulnerability exploitation leave today’s security operations center (SOC) under siege from attackers and overabundant alerts. Organizations need to seek proactive risk remediation solutions to enable their strategic digital transformation objectives. This is where digital risk protection (DRP) comes in.

DRP services provide solutions and capabilities that your security team should be leveraging in an ideal world, but can’t, because they lack the necessary time, skillset, or resources. DRP serves to extend the capabilities of your organization’s security team.

DRP technology and service providers offer solutions developed to protect organizations’ digital assets and information from external threats by combining intelligence, detection, and mitigation response. These solutions provide monitoring and visibility across open, deep, and dark web sources, aid in identifying potential risks to brand reputation or critical assets, offer contextual information around indicators of compromise (IOCs), and deliver actionable intelligence about threat actors and their tactics, techniques, and procedures (TTPs).

DRP vendors provide insight into your organization’s digital footprint.

Vendors within the DRP space deliver an assortment of services including brand protection, fraud detection, threat intelligence, data leakage detection, domain monitoring, social media protection, and account takeover protection. Typically, DRP solution pricing is based on subscriptions or package offerings. To give organizations a starting point, we have consolidated a list of leading vendors in the DRP solution market.

Before selecting a DRP provider or partner, business leaders should consider:

  • How can DRP support your risk management approach?
  • How will DRP affect your strategic business outcomes?
  • What requirements do you have around technology integrations?
  • How much money are you willing to invest in DRP?
  • To what extent do you want to leverage automation?
  • How will you quantify the return on investment (ROI) of your DRP?

The vendors, service offerings, and integrations listed in this section do not imply an exhaustive list. This section intends to provide a better understanding of the solutions provided by DRP vendors.

CybelAngel is a leading digital risk management platform providing enterprises with actionable threat intelligence that enables effective remediation and improved cybersecurity posture. By leveraging artificial intelligence and proven machine learning capabilities, to monitor, detect and manage digital risk across all layers of the Internet, CybelAngel helps organizations protect their intellectual property, brand, and reputation. Every day, CybelAngel detects data leaks that others don’t.”

Service Offerings:

  • Data breach prevention
  • Threat intelligence
  • Account takeover (ATO) prevention
  • Asset discovery and monitoring
  • Dark web monitoring
  • Domain protection
  • Merger and acquisition (M&A) due diligence
  • Remediation service
  • Third-party risk management

Estimated Funding: USD 51.7 million (Source: Crunchbase)

Integrations: ServiceNow, Splunk, Jira, IBM Resilient

Digital Shadows minimizes digital risk by identifying unwanted exposure and protecting against external threats. Organizations can suffer regulatory fines, loss of intellectual property, and reputational damage when digital risk is left unmanaged. Digital Shadows SearchLight™ helps you minimize these risks by detecting data loss, securing your online brand, and reducing your attack surface.”

Service Offerings:

  • Threat intelligence
  • Brand protection monitoring
  • Dark web monitoring
  • Malicious domain detection and protection
  • Third-party risk management
  • Human intelligence (HUMINT) collection and analysis
  • Risk response automation
  • Data exposure and technical leakage detection
  • VIP and executive monitoring
  • Attack surface monitoring and remediation
  • Takedown remediation
  • Indexed threat data

Estimated Funding: USD 58 million (Source: Crunchbase)

Integrations: Splunk Phantom, Cisco Umbrella, ServiceNow, ThreatConnect, ThreatQuotient, Cortex XSOAR, ArcSight, IBM QRadar, IBM Resilient, Palo Alto Networks, Anomali, Jira

IntSights is revolutionizing cybersecurity operations with the industry’s only all-in-one external threat protection platform designed to neutralize cyberattacks outside the wire. Their unique cyber reconnaissance capabilities enable continuous monitoring of an enterprise’s external digital profile across the open, deep, and dark web to identify emerging threats and orchestrate proactive response. Tailored threat intelligence that seamlessly integrates with security infrastructure for dynamic defense has made IntSights one of the fastest-growing cybersecurity companies in the world.”

Service Offerings:

  • Data and credential leakage detection
  • Vulnerability enrichment
  • Threat intelligence
  • Dark web monitoring
  • Blocking and blacklisting
  • Takedown remediation
  • Brand protection
  • VIP protection
  • Fraud protection
  • Malware protection
  • Remote workforce protection
  • Compliance alignment

Estimated Funding: USD 71.3 million (Source: Crunchbase)

Integrations: Carbon Black, Check Point, Cisco, Cortex XSOAR, CrowdStrike, FireEye, Fortinet, IBM QRadar, LogRhythm, McAfee, Okta, Palo Alto Networks, Qualys, ServiceNow, Splunk Phantom, Symantec, Tenable, Zscaler

Recorded Future is the world’s largest provider of intelligence for enterprise security. By combining persistent and pervasive automated data collection and analytics with human analysis, Recorded Future delivers intelligence that is timely, accurate, and actionable. In a world of ever-increasing chaos and uncertainty, Recorded Future empowers organizations with the visibility they need to identify and detect threats faster; take proactive action to disrupt adversaries; and protect their people, systems, and assets, so business can be conducted with confidence. Recorded Future is trusted by more than 1,000 businesses and government organizations around the world.”

Service Offerings:

  • Brand protection
  • Data and credential exposure detection
  • Takedown remediation
  • Threat intelligence
  • Dark web monitoring
  • Threat response automation
  • Vulnerability monitoring
  • Third-party risk protection
  • Geopolitical intelligence

Estimated Funding: USD 57.9 million (Source: Crunchbase)

Integrations: Microsoft Azure, ServiceNow, Splunk, AlienVault, Anomali, ArcSight, Carbon Black, Cisco Umbrella, Cofense, Cortex XSOAR, Darktrace, DomainTools, Dragos, FireEye, GreyNoise, IBM QRadar, LogRhythm, Maltego, McAfee, Palo Alto Networks, Rapid7, RSA Netwitness, Shodan

RiskIQ is the leader in attack surface management, providing the most comprehensive discovery, intelligence, and mitigation of threats associated with an organization’s digital presence. With more than 75 percent of attacks originating outside the firewall, RiskIQ allows enterprises to gain unified insight and control over web, social and mobile exposures. Trusted by thousands of security analysts, RiskIQ’s platform combines advanced internet data reconnaissance and analytics to expedite investigations, understand digital attack surfaces, assess risk and take action to protect the business, brand and customers.”

Service Offerings:

  • Automated asset inventory and discovery
  • Threat intelligence
  • Vulnerability management
  • Third-party risk protection
  • Dark web monitoring
  • Attack surface monitoring and reduction
  • Advanced threat analytics
  • Automated threat detection and response
  • Brand protection

Estimated Funding: USD 83 million (Source: Crunchbase)

Integrations: Splunk, Microsoft, Palo Alto Networks, LogRhythm, MicroFocus, Cortex XSOAR, Check Point, CrowdStrike, Anomali, ThreatQuotient, Maltego, Citrix, Qualyz, Rapid7, ServiceNow, Cloudflare, FireEye, McAfee, MITRE

ZeroFOX provides enterprises AI-powered protection, intelligence and disruption to identify and dismantle external threats across the public attack surface. The ZeroFOX Platform combines advanced AI-driven analysis to detect complex threats on the surface, deep and dark web, fully managed threat intelligence services with threat analysts that become an extension of your team, and automated remediation to effectively disrupt threats.”

Service Offerings:

  • Band protection
  • Data and credential leakage detection
  • Executive protection
  • Domain protection
  • Dark web monitoring
  • Remote workforce protection
  • Location and even protection
  • Vulnerability monitoring
  • Threat intelligence

Estimated Funding: USD 154.2 million (Source: Crunchbase)

Integrations: AlienVault, Anomali, Microsoft Azure, Corex XSOAR, IBM QRadar, LogRhythm, Maltego, ArcSight, Palo Alto Networks, RSA Netwitness, Splunk, ThreatConnect, ThreatQuotient

The DRP market is still evolving. And it’s promising.

The need for digital risk protection continues to escalate. About five years ago, most organizations investing in DRP solutions were early adopters. Now that digital transformation initiatives are in full-swing, organizations are realizing their need for services that optimize risk management and cyberattack defenses.

Figure 1: Innovation Adoption Lifecycle

As the DRP market continues to evolve, 2021 marks the precipice of the “early majority” stage in the Innovation Adoption Lifecycle curve. Organizations are likely to seek DRP solutions that meet their transformative business needs throughout 2021 and 2022. This will enable businesses to better understand threat actor attack patterns, conduct early detection to minimize risk, and fortify environment confidentiality, integrity, and availability.

Many DRP solution capabilities maintain overlaps with other managed security providers, such as attack surface monitoring and vulnerability management. As the DRP market matures, it’s likely that DRP vendors will begin teaming up with managed security service providers (MSSPs) within the coming years through partnerships, M&A, or consolidation to reduce redundancy and expand solution opportunities.

DRP solutions aid in enhancing business resilience by protecting organizations’ digital assets and brand reputation. As the cyber threat landscape continues to evolve, we expect to see more and more organizations adopting DRP services.

Stratascale is a trusted partner in DRP.  We are a $1.3B security consultant and solutions provider and have worked with enterprise-level companies in security operations and threat intelligence.  Please contact us to learn more about our solutions and offerings available to address your DRP issues.

Leave a Comment