US Military and Other Leading US Government Agencies Take Proactive Stance Against Cyberattacks with AttackIQ | national company


SANTA CLARA, Calif.–(BUSINESS WIRE)–February 23, 2022–

AttackIQ ®, the leading independent provider of Breach and Attack Simulation (BAS) systems, today announced that major legislative, executive, intelligence and defense agencies of the U.S. government – including the U.S. military – rely on a threat-informed defense strategy to take a proactive stance against cyber-attacks. By focusing on known threats and continuously testing their defenses against the adversary behaviors outlined in the MITER ATT&CK® framework, operators have better data and insight into their program’s performance. To date, AttackIQ is now deployed in more than a dozen US government agencies and organizations, including three of the six US military service branches; legislative, intelligence community, defense agency clients; and many civilian agencies of the executive branch.

From the SolarWinds supply chain cyberattack on civilian government agencies to ongoing attacks on national security systems, the US government is a top target for nation states and cybercriminal groups. To improve the government’s cybersecurity posture, in 2021 the Biden administration issued a new Executive Decree for the federal government, with a focus on implementing a zero-trust architecture. In addition to zero trust, US government agencies are investing in proactive measures and technologies such as breach and attack simulation to understand their performance against threats, identify gaps in their defenses, and make decisions based on evidence. data to improve their cybersecurity.

AttackIQ Security Optimization Platform – winner of the 2021 American Security Today ‘ASTORS’ Homeland Security Awards Gold Award for Best Breach and Attack Simulation Solutions, and GOVIES Gold Award Government Security 2021 for Best Cyber ​​Defense Solution – empowers cybersecurity practitioners to continuously check the health of their security programs securely, at scale, and in an automated manner. Continuous validation of security controls gives security teams real-time, data-driven visibility into whether their controls are working as intended, at all times, not just at one point in time.

“From the SolarWinds incursion to the recent tensions along the Ukrainian border, we are in a perpetual state of conflict in cyberspace, and the U.S. government faces significant threats,” said Carl Wright, chief commercial officer of AttackIQ and former US Marines CISO. Body. “At AttackIQ, we are honored to partner with the U.S. government to give our nation’s critical organizations the technology and insights they need to stay ahead of the changing threat landscape.”

The use of breach and attack simulation provides a number of capabilities to the US government, including:

  • Security check validation: Agencies and the US military use the platform to continuously test and audit their security controls to ensure cybersecurity readiness.
  • Compliance Optimization: U.S. government contractors and agencies can validate the effectiveness of compliance against the Department of Defense’s Cybersecurity Maturity Model (CMMC) certification and National’s 800-53 family of security controls. Institute of Standards and Technology (NIST).
  • Training and certification of analysts: Agencies and the U.S. military use the platform to test their teams against specific certification requirements such as NIST 800-53 and the DoD’s Cybersecurity Maturity Model (CMMC) certification to improve individual and team performance.

These capabilities emerge from cutting-edge research and development produced by MITER Engenuity Threat-Informed Defense Center, a private research and development organization whose mission is to improve the effectiveness of cybersecurity worldwide and expand the use of the MITER ATT&CK framework. AttackIQ is a founding member of the Center and has contributed to seven of the 13 projects launched last year, including ATT&CK for Cloud, NIST 800-53 Controls to ATT&CK Mapping, and Mapping ATT&CK to CVE.

Lt. Gen. Lori E. Reynolds, USMC, Retired Joins Council of Informed Advocates

To better share cybersecurity learnings with US government agencies, AttackIQ is proud to announce that Lt. Gen. Lori E. Reynolds, USMC, Retired, has joined AttackIQ. Council of Informed Advocates expert security advisors. The Council brings together cybersecurity and technology leaders from across industries to share best practices and improve cybersecurity effectiveness. The depth and breadth of Lt. Gen. Reynolds’ experience will serve as a resource to government as agencies provide informed threat defense.

Retiring from a 35-year career in the United States Marine Corps, Lt. Gen. Reynolds’ final assignment was as deputy commander of information, a newly created post that recognized the growing importance of information, cyberspace and digital technologies, as well as emerging conflict. domains of space and cyberspace. During her time as deputy commander of information, she was responsible for all computing, intelligence, cyberspace, space and influenced the development of Marine Corps personnel and capabilities. . Lt. Gen. Reynolds joins James Trainor, federal government expert and board member, former deputy FBI director and current senior vice president at Aon Solutions, to bolster AttackIQ’s advisory expertise with the U.S. government within our Council of Informed Advocates.

“Threat actors are becoming increasingly sophisticated and aggressive in their attempts to harm and disrupt the organizations they target. It’s time for the cybersecurity community as a whole to look at the challenges holistically and share corresponding best practices so we can make sure we’re doing our best to create a safer world,” said Lori. Reynolds. “I welcome the opportunity to join this community of experts designed to find new ways to defend organizations and do more to help keep our nation safe.”

About AttackIQ

AttackIQ, the leading independent provider of breach and attack simulation solutions, has created the industry’s first security optimization platform for the continuous validation of security controls and the improvement of efficiency and efficiency of security programs. AttackIQ is trusted by leading organizations around the world to plan security enhancements and verify that cyber defenses are performing as intended, in accordance with the MITER ATT&CK framework. The company is committed to giving back to the cybersecurity community through its award-winning free service AttackIQ Academyopening of Preactive Security Exchange and partnership with MITER Engenuity’sThreat-Informed Defense Center. For more information, visit Follow AttackIQ on Twitter, Facebook, LinkedInand Youtube.

Show source version on

CONTACT: Mariah Simank

10 times for AttackIQ

[email protected]

(512) 971-3702




Copyright BusinessWire 2022.

PUBLISHED: 02/23/2022 08:00 AM / DISK: 02/23/2022 08:02 AM

Copyright BusinessWire 2022.


Comments are closed.