Integrations with ServiceNow CMDB and ITSM automatically maps cyber risk to business hierarchies and risk mitigation workflows, saving thousands of hours required to operationalize cyber risk quantification
LAS VEGAS, August 8, 2022 /PRNewswire/ — Balbix, the leader in cybersecurity posture automation, today announced new integrations with ServiceNow (NYSE: NOW), the leader in digital workflows. As a result of the integrations, customers can automatically add business context to cyber risk data and integrate remediation actions into their existing security and IT workflows. CISOs can shave thousands of hours of the time it takes to operationalize cyber risk quantification (CRQ) dollars and bridge the gap between cybersecurity and the business.
Integration with ServiceNow’s Configuration Management Database (CMDB) allows Balbix customers to automatically ingest business context from their CMBD into the Balbix platform and compare it with asset, vulnerability and risk data from their other IT and security tools and Balbix Combine sensors to create a unit Cyber risk model shown in dollars. Data is automatically deduplicated, correlated, and derived to dramatically reduce the manual workload for teams to prioritize, prioritize, and measure cyber risk with business context. For example, with the integration, companies can now:
- Measure and report the amount of risk in dollars by business unit, manager, asset type, application, regulatory requirements and geographic location (cities, countries, regions).
- Quantify exposure in dollars to externally facing assets, internal assets, assets managed by IT, and assets not managed by IT.
“Historically, Fortune 500 companies spent thousands of hours of manual work matching business context with their risk data for board reports, risk analysis, and cybersecurity decisions,” he said Chris Griffith, chief product officer at Balbix. “Our integration with the ServiceNow CMDB has enabled us to greatly reduce the time it takes to quantify cyber risk. With Balbix, CISOs can continuously and automatically map risk to their business hierarchy and prioritize their highest-risk issues for response.”
Organizations struggle to report concrete CRQ results, with 62% saying they can’t monetize their injury risk, according to Balbix Security Situation Report 2022. Additionally, according to the report, 51% of companies said they lack ongoing visibility into asset inventories, making it difficult to correlate risk with business context, and instead rely on siled tools, manual workflows, and qualitative analysis left to quantify the risk.
“Cyber risk has become a frustrating business risk to manage as leadership teams struggle to accurately quantify their risk and prioritize initiatives to mitigate it,” he said Ed Amoroso, Founder and CEO of the research and consulting company TAG Cyber. “These integrations address the growing demands that CISOs have to report on cyber risk in a way their business leaders can clearly understand in order to make the right investments and remediate their riskiest vulnerabilities faster.”
In addition to automating advanced CRQ functions, integration with ServiceNow IT Service Management (ITSM) further eliminates manual effort by allowing security teams to create ServiceNow remediation tickets from within Balbix. This enables security and IT teams to increase productivity by using a familiar and shared remediation workflow system. In addition, security analysts can create vulnerability remediation tickets for a single affected asset or for a group of assets to more efficiently specify remediation tasks and reduce the mean time to remediation (MTTR) of risk issues.
To learn more about Balbix and its integration with ServiceNow, visit https://www.balbix.com.
Balbix enables organizations to reduce cyber risk by faster identifying and mitigating their most risky cyber security issues. The Balbix Security Cloud™ platform ingests data from organizations’ security and IT tools to understand every aspect of their cybersecurity posture, build a unified cyber risk model, and then deliver actionable risk mitigation insights. With Balbix, organizations can automate inventory of their cloud and on-premises assets, perform continuous risk-based vulnerability management, and quantify cyber risk in dollars. Executives and operations teams can make cybersecurity decisions based on data, not opinion.
A fast-growing group of Fortune 500 companies trust Balbix as the “brains” of their infosec programs, recognizing the benefits of maximally automated workflows and measurably reduced cyber risk. Balbix was ranked #32 on the 2021 Deloitte Fast 500 North America and recognized by Gartner for its innovation.
For more information visit www.balbix.com.