“Risk is the factor of a stratagem measured by what man is powerless to control.” -Mike Norton, White Mountain
Headquartered in Albuquerque, New Mexico, RiskSense Inc. (formerly CAaNES, LLC) is a leader in Cyber Security Threat Assessment and Remediation Management. RiskSense is a multi-year winner of Technology Ventures Corporation’s Flying 40 Award; a 4-year recipient of Albuquerque Business First’s Fastest Growing Companies Award, a 4-year recipient of Inc. Magazine’s Inc. 5000 award and a 4-year participant in the New Mexico Private 100. The company has proven 50% year-over-year revenue growth while maintaining profitability for the past 5 years.
Array of Solutions Offered
RiskSense tackles cyber risks by prioritizing, visualizing and managing them. The solutions offered by the company are elucidated below:
Cyber Risk & Vulnerability Management Platform- RiskSense ingests vulnerability data from a company’s endpoints, networks and applications then correlates them with multiple sources of threat intelligence, leveraging the industry’s leading scanners and security tools such as QUALYS, Nessus, AppScan, DbProtect etc.
Threat Intelligence- The scan results are automatically co-related with multiple sources of external threat intelligence like DShield.org, Exploit Database etc.
Prioritization- RiskSense employs advanced risk scoring that helps in assigning different levels of risk to assets, applications, and business processes.
Visualize & Manage Risk- RiskSense’s platform reduces complexity by visualizing the risks and the attack path linkages so you can see how to break the kill chain.
Coding Error Identification- As 80% of serious breaches occur through application vulnerabilities, RiskSense helps in identifying coding errors and helps in strengthening it better.
Remediation- As it takes up to a week to close a severe vulnerability, the company’s streamlined workflows and integrations with popular ticket management systems helps in coordinating and closing the vulnerability faster.
Professional Services Offered
Every company has its own unique network, business requirements and needs. RiskSense offers a wide range of professional services for every phase of a customer’s security program. They also offer services along with the software which customers love.
Vulnerability Assessment- An in-depth assessment of all the IPs in the network is done so that the vulnerabilities such as missing patches, configuration etc. and weaknesses are identified resulting in an overall security posture.
Penetration Testing- An attacker’s actions to breach an organization’s cyber defenses are simulated. A variety of tools are used by testers to see how easily access is gained to sensitive systems and information.
Gap Analysis- This is mainly done for compliance purposes and it involves evaluating the ‘should’ vs ‘is’ state of the security posture and identifying recommendations to achieve compliance.
Incident Response- This service is delivered proactively or post haste in the event of a breach. When a breach occurs, RiskSense’s team parachutes in to determine the scope and method of the breach and thereby recommending and implementing specific courses of action to contain and remediate the incident.
Cybersecurity Training– Employees are susceptible to cyber attacks such as phishing. As a result, they need to be educated about the importance of cyber risks. Training is the best remedy for lack of awareness and cyber-hygiene. RiskSense has a team of experts who take special care in training all the employees of a client about cyber risks prevention and mitigation.
Dr. Srinivas Mukkamala, CEO
He is one of the co-founders and CEO of RiskSense. He has been researching and developing security technologies for over 15 years working on malware analytics, breach exposure management, web application security, and enterprise risk reduction. He was one of the lead researchers for CACTUS (Computational Analysis of Cyber Terrorism against the US). He has been published in over 120 peer-reviewed publications in the areas of information assurance, malware analytics, digital forensics, data mining, and bioinformatics. He has a patent on Intelligent Agents for Distributed Intrusion Detection System and Method of Practicing.Dr. Mukkamala received his Bachelor of Engineering (B.E.) in Computer Science and Engineering from University of Madras, before obtaining his M.S. and Ph.D. in Computer Science from New Mexico Tech.
Mark Fidel, President
He is one of RiskSense’s co-founders and its President. He is a New Mexico licensed attorney. Mark began his career selling commercial insurance, and then held a series of financial positions at the New Mexico Institute of Mining and Technology and Intel Corporation. He was admitted to the New Mexico Bar in 2002 and became an associate at one of New Mexico’s largest law firms, Modrall Sperling, where he specialized in commercial litigation. Mr. Fidel is a former litigator who founded Applied Records Management (ARM) in 2004. ARM is a records management and litigation support consulting firm.
Mark holds a Bachelor of Arts and Economics degree with a major in Finance from New Mexico State University. He earned an Executive MBA from the University of New Mexico and his law degree from the University of Denver.