50 Fastest Growing Private Companies to Watch 2016

Bringing business focus to information risk: Allgress


‘More than just traditional IT governance, risk and compliance.’

Founded in 2008, Allgress helps enterprise security and risk professionals solve the problem of how to assess, understand and manage corporate risk. Its founders and management team are committed to providing CISOs with the ability to make effective investment decisions that align security and compliance programs with top business priorities, communicate the value of those decisions to senior executives, and manage risk, fines, and brand damage. Allgress is based in Livermore, California.

Allgress Business Risk Intelligence solutions converge disparate risk silos across global enterprise networks and automate governance, risk and compliance (IT GRC) management processes. Powered by the patented Allgress Business Risk Intelligence engine, the company’s products, solutions and CISO reporting tools provide customers with heat maps and compliance assessment reports that reveal a comprehensive, immediate and intuitive picture of their organizations’ security and compliance risk posture.

As a CISO, you are in a unique and challenging position. Your organization’s top leadership expects you to provide security and compliance for its most valuable and vulnerable information assets, and they expect you to do it automatically. In addition to having to react to the latest Advanced Persistent Threats (APTs) and dealing with complex and mounting regulatory compliance, you have the burden of communicating your organizational security posture to senior leaders, who frequently view security as a“necessary evil” that they don’t understand. To overcome these challenges, Allgress Business Risk Intelligence brings you more than just traditional governance, risk and compliance (IT GRC) management.

The Allgress Business Risk Intelligence Solution
The Allgress Business Risk Intelligence solution goes beyond traditional IT governance, risk and compliance (IT GRC) management by providing assessment as well as continuous monitoring. It provides security and risk professionals with a notification when a parameter falls outside the acceptable range then the information they need to effectively manage organization-wide security, compliance and risk. With Allgress, you can converge disparate enterprise risk silos and gain an immediate, intuitive and unified view of your organizations’ information security and compliance risk posture.

The patented Allgress Business Risk Intelligence Engine powers the Allgress product modules. Each module provides meaningful and actionable data. Highly visual and intuitive heat maps and compliance reports that provide best-in-class graphics automatically translate that data into the language of business. Most modules can be deployed separately or as an integrated solution. When deployed separately, they provide insight into the areas most important to you and your organization. When they are deployed as an integrated solution, you receive a holistic view of regulatory compliance, security and risk across your global network.

With Allgress, you have an operationally efficient solution that allows you to meet the demands of security and risk management, regulatory compliance, vulnerability management reporting, and security-incident management. Now, you can make effective decisions that align security and risk-management programs with business priorities, communicate the value of those decisions to senior executives and board members, and secure the resources you need to manage risk, fines and brand damage.

The Allgress GetCompliant Portal
The Allgress GetCompliant Portal for AWS was designed to reduce the complexity and shorten the timeframe of achieving compliance for customers deployed within AWS Focusing on all major compliance framework such as: PCI, HIPAA, CJIS, NIST, and FISMA compliance, the portal guides an organization through the compliance process providing focused content every step of the way. By tightly integrating with current AWS tools, customers are able to automate manual compliance functions reducing time and expense.

Key Features:

  • Broad Compliance Coverage including: PCI, HIPAA, CJIS, NIST, FISMA, IRS 1075, ISO, and GLBA.
  • Easy to use compliance assessment workflow and results repository.
  • Sample Policy and Procedures individualized for compliance framework.
  • Integration with AWS tools automated compliance checks.

Meet the Key Executives

Gordon Shevlin, Founder and Chief Executive Officer: Gordon Shevlin is the CEO of Allgress Inc, an IT-GRC company, and one of several security companies he has co-founded over a career spanning more than 25 years.

Prior to Allgress, Gordon co-founded SiegeWorks, and SiegeWorks International, a digital defense services firm. There he grew the company, built a strong international presence, and managed its successful acquisition by FishNet Security, the nation’s leading provider of information security solutions.

With his breadth of knowledge in information security, Gordon has been invited to serve on the advisory boards of 12 leading information security companies. In addition to being a serial entrepreneur, Gordon has been dedicated to enhancing the knowledge and skills of information security professionals through his volunteer work with ISSA. Among his many roles, Gordon has been President and Vice President of the ISSA Silicon Valley Chapter, CFO of ISSA International, and has held board positions for three consecutive terms.

Gordon is a graduate from the University of Michigan.

Jeff Bennett, Founder, President and Chief Operating Officer: Jeff Bennett brings more than two decades of: business leadership, product development, and IT security and compliance industry experience to the company. A serial entrepreneur, he has founded and led several companies, including digital defense services firms SiegeWorks and SiegeWorks International. In 2006, FishNet Security, the nation’s leading provider of information security solutions that combine technology, services, support and training, acquired SiegeWorks. Following the acquisition, Bennett served as executive vice president of services at FishNet. He has served on the advisory boards of other leading security providers. Bennett holds a Bachelor of Science Degree in Business Administration from California State University at Hayward.

“By offering instant, accessible and visual analysis of the risk impact of each corporate initiative, Allgress elevates the role of the CISO to focus on minimizing risk, creating company-wide value, and supporting business objectives.”