Latest news with #ZeroTrustAssessment
Techday NZ
3 days ago
- Business
- Techday NZ
Portnox & CrowdStrike team up for real-time access control
Portnox has introduced an integration with CrowdStrike to enable organisations to enforce network access policies using real-time risk intelligence derived from endpoint telemetry. The integration brings together Portnox's cloud-native Network Access Control (NAC) platform with CrowdStrike's device telemetry and Zero Trust Assessment (ZTA) scoring, allowing organisations to tailor access controls based on continuous device risk evaluation. Portnox stated that addressing endpoint visibility and risk-based access control is essential to modern cybersecurity, and that the collaboration with CrowdStrike directly supports this goal by aligning endpoint intelligence with network access enforcement. Denny LeCompte, Chief Executive Officer of Portnox, commented: "In an era where cybersecurity threats are constantly evolving, dynamic, real-time access control is paramount. Our integration with CrowdStrike delivers on this need by empowering organizations to make informed, automated access decisions based on the most current device posture. This partnership significantly fortifies our customers' security posture, enabling them to confidently embrace Zero Trust principles and adapt to an ever-changing risk landscape." CrowdStrike's Falcon platform is a cloud-delivered solution employing artificial intelligence to provide protection for endpoints, workloads, and identities. It features real-time detection and response, threat intelligence, and behaviour-based protection mechanisms aimed at preventing security breaches. A distinctive metric offered by CrowdStrike is the ZTA score, which evaluates the risk level of a device based on inputs such as its health, known vulnerabilities, recent threat detections, patterns of user behaviour, and the operational status of the CrowdStrike agent. This score is represented on a scale from 0 to 100, and allows security teams to determine the appropriate level of network access or if device remediation is necessary. Through the integration, Portnox's platform enhances its ability to implement detailed and adaptive access controls without relying on on-premises hardware or complex setups. New capabilities provided by the integration include: Automatic verification of whether a device is managed by the CrowdStrike Falcon agent before granting network access. Incorporation of ZTA scores into policy decision-making, so that only low-risk devices can receive full access, while devices assessed as high-risk may be assigned to guest networks or receive restricted access. Utilisation of real-time CrowdStrike risk signals to reinforce least-privilege models in both corporate and Bring Your Own Device (BYOD) scenarios. Automated network access control policies that adjust to changes in device risk posture as reported by CrowdStrike, with the goal of limiting threats before escalation. The companies note that this collaborative capability is intended to benefit organisations pursuing Zero Trust architectures, particularly those managing hybrid work environments or BYOD programmes. The system is designed to ensure only trusted and compliant devices connect to corporate networks, blocking unauthorised or insecure devices and helping to maintain ongoing security as threat patterns change. Follow us on: Share on:
Mid East Info
06-05-2025
- Business
- Mid East Info
Dubai Electronic Security Center Launches New Innovative Projects at GISEC Global 2025 - Middle East Business News and Information
Launched the 'Zero Trust' guideline to secure government networks and the advanced 'Ethaq Plus' for safeguarding digital transactions. Rolled out a certification program for Information Security Officers to equip individuals across various government sectors with the skills needed to implement the information security regulations Introduced a Post-Quantum Cryptography (PQC) Guideline to bolster Dubai's digital infrastructure readiness. Al Shaibani: 'These new projects reflect our commitment to building a reliable and sustainable digital infrastructure that aligns with Dubai's vision of becoming the world's smartest and safest city.' Dubai, UAE, May 2025: The Dubai Electronic Security Center announced the launch of a series of innovative initiatives and projects aimed at strengthening the emirate's digital security and cyber infrastructure, while also advancing specialized talent development in the sector. The announcements were made during the Gulf Information Security Expo and Conference (GISEC Global 2025), held at the Dubai World Trade Centre from May 6-8, where the Center is participating as the official Government Cybersecurity Partner. Zero Trust Assessment Tool and Guideline: Among the new initiatives is the Zero Trust Assessment Tool and Guideline, a major leap in securing Dubai's government networks and includes a comprehensive guide for implementing the Zero Trust model, which emphasizes continuous verification of identity and access rights. This practical tool assists organizations and local entities in transitioning to a Zero Trust framework, ensuring the protection of critical systems and data, in complex and dynamic technological environments, thereby reducing the risk of breaches and insider threats. The guideline will be implemented across several government entities in Dubai using advanced technologies, including multi-factor authentication, network segmentation, continuous digital traffic monitoring, and data classification based on sensitivity levels. These measures minimize cyberattack exposure and ensure swift response to breach attempts, despite challenges such as integrating the new system with existing infrastructure and maintaining a seamless user experience. ETHAQ Plus Initiative: The Dubai Electronic Security Center also launched the advanced 'Ethaq Plus' initiative, aimed at elevating digital trust and enabling secure, reliable transactions for organizations. The service provides certified digital certificates to protect data and communications, verify authenticity, and support the adoption of trusted digital identities and advanced security models that reduce cyber risks at the institutional level. Information Security Officers Certification Program: As part of its efforts to develop national talent, the Center introduced the ISR Officer Certification Program to equip individuals across various government sectors with the knowledge and skills needed to implement the information security regulations effectively. It also helps cultivate a new generation of cybersecurity officers, strengthening the resilience and sustainability of Dubai's government operations. Readiness for Quantum Technologies: In preparation for future threats arising from advancements in quantum computing, DESC launched the Post-Quantum Cryptography Guideline. This guide is designed to prepare Dubai's digital infrastructure to counter emerging quantum-based threats. The initiative marks a strategic step to ensure Dubai's digital defenses remain at the forefront, safeguarding the city's smart data, services, and thriving digital future. H.E. Yousuf Hamad Al Shaibani, Chief Executive of the Dubai Electronic Security Center, said: 'At the Dubai Electronic Security Center, we are committed to fostering a resilient and secure cyber environment driven by innovation and proactive adaptability to evolving challenges. The new projects we unveiled at GISEC Global 2025 reflect our vision to build a trusted, sustainable digital infrastructure aligned with Dubai's future goal of becoming the smartest and safest city in the world.' Al Shaibani added, 'By adopting concepts like Zero Trust and developing advanced national platforms, we reaffirm our commitment to providing strategic solutions that support government and private entities in protecting their critical data and services, enabling them to accelerate digital transformation with confidence and efficiency. We also believe that investing in national talent is the cornerstone of cultivating a new generation of cybersecurity leaders capable of ensuring the sustainability of Dubai's digital security.' Specialized Cybersecurity Challenges: During the event, the Center launched the latest edition of the Dubai Cyber Challenge, dedicated to Dubai government entities. The challenge aims to assess and enhance participants' cybersecurity skills while promoting compliance with the Center's Information Security Regulations (ISR). The competition features over 30 carefully designed tasks simulating commonly used government applications and services in Dubai. With varying difficulty levels, the challenges allow participants to test their cybersecurity abilities across diverse scenarios. Additionally, DESC is hosting the School of Cyber Defense Championship in partnership with TechFirm, attracting over 300 applications from university students across the UAE. Participants compete in an advanced environment simulating real-world cybersecurity challenges, where they respond to cyberattacks and identify security vulnerabilities. Winners will receive valuable prizes worth over AED 130,000, supporting the development of their skills and careers in the cybersecurity field.
