Our Partners The Chertoff Group works with a small set of trusted, best-in-class partners to offer technical services that complement our core offerings.
The unique architectures and protocols of Industrial Control System (ICS) networks and the developing state of ICS cybersecurity pose new challenges for many asset owners, confronting them with an unclear threat landscape and a shortage of ICS/Operational Technology (OT) security expertise. Our partner Dragos includes industrial security practitioners from the U.S. government cyber teams and around the private sector who provide boots-on-the-ground experience to industrial responders to help them effectively prepare for, contain and remediate potential ICS compromises.
“As we usher in 21st century transportation solutions represented by high speed rail, we believe that the safety of our future passengers is paramount,” said Chertoff Group-Dragos customer Lori Willox, Chief Financial Officer of Texas Central Railway. “We are excited about the Chertoff – Dragos partnership that helps us ensure best-in-class safety and security in our systems through a converged OT/IT cyber risk management assessment.”
—Lori Willox, Chief Financial Officer of Texas Central Railway
Automated validation tools are now available that can run threat tactic-specific diagnostics on an organization’s technology stack. For The Chertoff Group Cyber Risk Diagnostic tool, we work with AttackIQ, using its automated “controls assurance” testing platform, which contains a vast library of mini-testing scripts aligned to a comprehensive knowledge-based of threat actor tactics, techniques and procedures developed by leading U.S. research and development organization MITRE (the MITRE ATT&CKTM framework).
“We have worked with The Chertoff Group for over a year in developing their Cyber Risk Diagnostic, and have used the approach as a proof of concept with multiple customers, receiving overwhelming strong, positive feedback. It is our belief that this solution is a true game-changer in the security industry, providing customers with an unmatched assessment of control effectiveness, targeted training and meaningful security investment justification. ”
—Brett Galloway, CEO of AttackIQ
The partnership between The Chertoff Group and Synopsys Software Integrity Group helps customers build more secure software faster through a combination of market-leading software security and cyber risk management capabilities. Benefits of our collaborative approach include timely cyber policy insight, unified threat modeling that facilitates better defensive coverage, as well as technical testing and validation to ensure controls are operating as intended. Learn more about our partner Synopsys at https://www.synopsys.com/software-integrity.html
“Organizations are increasingly realizing that software risk equates to business risk. This is a central focus of the partnership between Synopsys and The Chertoff Group, which was born out of a desire to educate organizations on policies and standards and how they can be directly applied to development and deployment teams."
—Tom Herrman, Vice President of Channels and Alliances, Synopsys Software Integrity Group