Yesterday Tidal Cyber announced investments from both USAA and Capital One Ventures to help grow the global use of Threat-Informed Defense through enhancing the Tidal Cyber Enterprise Edition platform.
Read the Press Release
Tidal Cyber’s customer and financial growth has exceeded tenfold in just the past year, showing that the concept of Threat-Informed Defense is resonating with enterprises, especially financial services, wanting to achieve a complete view of what their defenses are covering against the relevant threat landscape, and how to get more value out of their current security stack.
In the past, cybersecurity was based on identifying and closing vulnerabilities in software to keep adversaries from exploiting these flaws and attacking. In the modern world, the number and speed of new vulnerabilities makes it nearly impossible to keep everything patched, leading to a growth of cybersecurity moving away from focusing only on fixing exploitable vulnerabilities.
This new way of looking at security, called Threat-Informed Defense, instead tries to catalog the specific, technical ways that adversaries attack their victims, often referred to as Tactics, Techniques, and Procedures, or TTPs. With this catalog, security teams can then understand how adversaries attack from the perspective of the adversary, and gain insights into how to prioritize defenses against these attacks.
An updated view of the landscape also helps create a full understanding of the ecosystem by showing gaps in your defenses against threats, and how an adversary would use your own enterprise’s tools, resources, and connections against you once they gain access.
Tidal Cyber was created and built to make it easy and cost-effective for security practitioners to adopt Threat-Informed Defense. Our users are empowered to always understand how security products align with adversary TTPs and how to defend against them.
Read more about Threat-Informed Defense and Tidal Cyber
Tidal Cyber was founded by three individuals who spent their careers working to democratize access to Threat-Informed Defense, which is shown in the release of the freely available Community Edition, launched in August 2022.
Community Edition is an important resource for cybersecurity practitioners by providing an up-to-date knowledge base of both adversaries and their TTPs aligned with ATT&CK. The addition of the Tidal Cyber Registry includes mappings to hundreds of security tools to show how they can defend against adversary TTPs.
Try out Community Edition for free
Enterprise security teams needed more than a knowledge base to effectively scale Threat-Informed Defense, which is where Enterprise Edition helps. Aligning relevant threats causing concern to an organization against the security coverage provided by their existing tools in the security stack gives unprecedented visibility into how well-defended customers are and highlights any gaps in defenses.
In Enterprise Edition these Coverage Maps not only give users a clear understanding of where defenses are strong or weak, but also computes a color-coded confidence score associated with each adversary TTP, making it quick and easy to understand for teams to know where to prioritize efforts and get the most improvement in coverage. The platform even provides recommendations for how the tools currently owned can be optimized to improve threat coverage, making sure the value out of each tool is maximized and security stack purchases are not wasted.
Customers in financial institutions, insurers, healthcare, pharmaceutical, manufacturing, and technology companies are using Enterprise Edition to make their security teams more efficient while identifying and closing key gaps in their defenses in real-time.
Learn more about Enterprise Edition
Rick Gordon, Tidal Cyber CEO, stated that these investments from USAA and Capital One Ventures validate Tidal Cyber’s approach to Threat-Informed Defense and the value it brings towards empowering modern security leaders needing to make informed decisions when optimizing their security defenses.
This funding will play a pivotal role in enabling Tidal Cyber to enhance both its Enterprise Edition and Community Edition platforms to help drive the adoption of Threat-Informed Defense, giving more security teams visibility into their security tools and risks relevant to their organizations.