WE PROTECT CRITICAL INFRASTRUCTURE FROM EMERGING CYBER RISKS

General Data Protection Regulation Readiness

Third-Party Risk Management

Revolutionizing critical infrastructure protection and traditional risk management by seamlessly bundling innovative technology, risk intelligence and service delivery outcomes into a central governance platform.

 

NERC CIP Compliance

OT / IT Network Convergence

UTILITY

FINANCE

MANUFACTURING

TRANSPORTATION

HEALTHCARE

MARITIME

Using our Emerging Security Risk Management Platform, Fortress helps companies to better Understand, Visualize and Secure its critical business assets. Unlike traditional outsourcing and advisory firm business models, Fortress’ always-on, co-managed ESRM platform combines managed services, next-gen security technology and vulnerability management tools, to operationalize findings, remediation and risk management across the enterprise.

We target industries that comprise our country’s critical infrastructure and serve with companies with highly-regulated, global and distributed networks.

COMPREHENSIVE CYBER RISK MANAGEMENT PLATFORM

Outcomes-as-a-Service: Achieve your security and risk management outcomes through a single-pane-of-glass view.

Fortress ESRM Platform in Action

We offer a Total Cyber Security Solution aimed at plugging the weak links in a company’s cyber security system, including supply chain risk and the gaps between in-house IT & OT security systems.

The Fortress Emerging Security Risk Management Platform provides continuous monitoring and management of cyber threats emanating from a company’s attack surface. In addition, the system integrates monitoring of physical, IT and OT security for a better picture of enterprise-wide cyber security.

PLATFORM MODULES

 

FortressOT

Performs OT security functions incorporating ICS and SCADA, including sensors and analytical engines

 

FortressWorkflow 

Orchestration of findings from Third-Party Risk Management (TPRM) and General Data Protection Regulation (GDPR) and other regulatory compliance programs

 

FortressAnalytics

Advanced quantitative analysis and machine learning tools focused on attack surface, vulnerabilities, threats and breach incidents

 

FortressView

Performs continuous cyber risk monitoring and automated risk rating

 

FortressBridge

Manages integration of platform to other systems and endpoint solutions

HOW WE HELP

Convergence of Risk and Security by Transforming Risk Intelligence into Operational Value

CYBER RISK MANAGEMENT PLATFORM AND SERVICES

Third-Party Risk Management (TPRM) with Continuous Monitoring & Attack Scenarios
General Data Protection Regulation (GDPR) Readiness and Compliance Management
3rd Party / 1st Party Risk Convergence
Threat Modeling and Control Prioritization

OPERATIONAL TECHNOLOGY (OT) & INFORMATION TECHNOLOGY (IT) CONVERGENCE

ICS & SCADA Network Discovery & Visualizations
Continuous Monitoring of OT Components, Industrial IT Components, and Corporate IT Assets to Identify Security Vulnerabilities, Misconfiguration, Malfunctions, and Policy Breaches
Centralized Network Configuration Touchpoint and Immediate Notification of Any Baseline Violations
Regulatory Compliance and Non-Regulatory Standards Management (e.g., NERC CIP, NIST 800-82 and ISA/IEC 62443)

ENABLING CONVERGENCE OF TPRM, OT/IT & PHYSICAL SECURITY

Unified View of Security Program Components and their Communications to Identify Convergence Points
Open Architecture for integration with Point Security Solutions, to Extend the Platform’s Visibility and Insights into Risk Posture
Enables Calibration Across Business Units through Customizable Workflows

How We Orchestrate Your Security Program

Third-Party Cyber Risk Management &

General Data Protection Regulation Readiness (GDPR)

OPERATIONAL SECURITY

Asset Management • Control System Change Monitoring • Passive & Active Control System Threat Vulnerability Monitoring • Anomaly Detection • Baseline Monitoring • Managed Services

EMERGING SECURITY RISK MANAGEMENT

Security Program Reviews • Attack Surface Discovery • Vulnerability Prioritization • Business Continuity Assessments • Threat Simulation & Modeling • Physical Security Assessments • System Engineering & Integration • Tabletop Exercises • Incident Response • OT/ICS Vulnerability Assessments • Managed Services

VENDOR & SUPPLY CHAIN RISK MANAGEMENT

Program Design • 3rd & 4th Party Continuous Monitoring • Vendor Security Risk Assessments • Risk Ranking • Findings Management • Contract Review • Remediation Planning • Compliance Mapping • Security Questionnaire Development • Managed Services

How We Secure Your Critical Infrastructure

Our technology-enabled services provide a total solution to help you visualize IT & OT devices, systems and networks, their communications, abnormalities and potential areas of convergence and/or intercommunication where traditional air gaps have eroded.

COLLECT

Our collection platform encrypts and sends event data to the cloud of centralized log retention, analysis and investigation.

TRACK

Our Analysts add Incident Reports to the Fortress Platform, providing client with notification and workflow management.

ANALYZE

Our Fortress SOC Analysts applies threat intelligence, expert rules, analytical and analysis techniques to client’s log data.

IMPROVE

Our Monthly Summary reports provide statistics and forward-looking recommendations on security posture improvements.

DOCUMENT

Our Analysts create Incident Reports detailing validated findings and providing tactical recommendations.

ONGOING MONITORING

We supplement the visualization of our IT & OT Convergence process with Ongoing Monitoring data from your extended risk perimeter, including third-party risk and threat intelligence.

space

TECHNOLOGY ALONE IS NO LONGER ENOUGH

Our customizable solutions utilize scalable Data, Analytics, People, and Processes (DAPP) including machine learning and continuous monitoring, which enhance today’s expensive, manual, yet mature partner risk management processes – thereby making it cheaper, repeatable, more accurate, more actionable, and closer to real-time.

Contact us

855.367.8737

For sales inquiries, product demos and all other purposes, please contact us using this form, by phone or at sales@fortressinfosec.com.

11 + 7 =

COPYRIGHT © 2018. FORTRESS INFORMATION SECURITY. ALL RIGHTS RESERVED. PRIVACY POLICY