Concept: Minnesota’s software company NetSPI has launched an attack surface management (ASM) platform to help organizations discover and secure all assets on the external attack surface. The platform provides continuous pen-testing supported by NetSPI’s worldwide security testing team to assist enterprises in inventorying known and unknown internet-facing assets, identifying exposures, and prioritizing significant business risks.
Nature of Disruption: The ASM technology platform leverages automated scanning and orchestration technology to map, identify, and inventory all assets while also improving attack surface visibility. The dynamic, cloud-native application continuously monitors the attack surface and alerts when a high-risk exposure is identified. It provides a single platform for viewing the whole external attack surface in a streamlined and always-on approach. The NetSPI ASM operations team manually triages high-risk exposures and validate them, assesses the risk it poses to the organization, provides remediation guidance to the team, and escalates concerning exposures to their penetration testing team for additional investigation. ASM platform also includes tracking and trending data over time, simple set-up, asset intelligence, open-source intelligence gathering, slack, and email integrations, asset, and exposure prioritization, and port discovery.
Outlook: As the digital transition continues to transform all companies into online businesses, the problem of exposed assets and systems is becoming increasingly severe, resulting, in the EASM (External Attack Surface Management) security technology emergence. NetSPI’s EASM platform ensures that business networks are always covered, and attack surfaces are visible. It focuses on identifying all of an organization’s internet-facing assets, assessing them for vulnerabilities, and then resolving or eliminating the detected issues. The leading cloud providers, three of the five FAANG companies, nine of the top ten US banks, and many of the Fortune 500, including Meta, Apple, Amazon, Netflix, and Alphabet, are among the company’s customers. In May 2021, NetSPI raised $90M in growth capital led by KKR, with participation from Ten Eleven Ventures. NetSPI aims to use the funds to drive its growth by increasing its cyber security and client experience teams, investing in product innovation, and extending its operations across the United States and internationally.