The company is led by President and CEO, Jeff Tutton who brings over 15 years of experience in the regulatory and security compliance industry. In an interview with CIO Applications, Tutton talks about the unique value that Intersec Worldwide brings to the global security and compliance landscape.
How do you keep pace with the changing regulatory landscape?
Our company brings a unique combination of best-in-class people, cutting-edge technology and processes to analyze and monitor threats and implement appropriate solutions. We utilize new and innovative technologies to keep our clients ahead of their competitors in terms of compliance. We continuously keep an eye on the ongoing changes in the threat landscape along with the infrastructure utilized by our clients to ensure optimum security.
I have come across many solution providers who sell a solution, which is not integrated. We integrate all our offerings to enable us to identify the threats in our client’s environment effectively. In our organization, the compliance, incident response, and forensics teams work together and continuously to monitor threats, keeping pace with the changing regulatory landscape.
For example, many organizations look at recent incidents and data breaches as cryptomining efforts. They do not dig deep into the problem to identify the real impediments and ultimately consider data clean up to be the solution. To better address such situations, our team works together to protect the client’s environment, analyze the problem underneath, and remediate it to maintain their compliance initiatives and security measures.
What are the services that you deliver to your clients to maintain security and compliance in their environment?
Our services are focused on cyber security, and we help our clients to comply with PCI, GDPR, HIPAA, and NIST among other regulatory standards to ensure they’re both protected and compliant.
We utilize new and innovative technologies to keep our clients ahead of their competitors in terms of cybersecurity incident response, forensics, remediation, and compliance
Our compliance team identifies and monitors the customers’ existing environment in accordance with the regulatory standards. We also offer incident response, forensics, and remediation services that enable us to deal with the threats, perform compromise assessments, and complete technical GDPR assessment along with other technical components’ assessments. Whether it’s abridging the gaps in identifying compliance initiatives, security gaps during the compromise assessment, or an actual data breach investigation, we implement and integrate all the remediation services to benefit our customers.
In addition, we offer continuous monitoring which is traditionally called system security plan (SSP), and we refer to it as managed detection and response (MDR) of the threats. Our continuous monitoring services analyzethe current threats, security issues, and challenges, and thereafter enable our clients to comply with the regulatory standards, respond to incidents, continuously manage those incidents, and take collective actions as needed. This is the centrepiece for us.
What is the process that you follow for delivering your services?
We first identify all the customers’ incidents and incident response situations. We analyze the technologies, processes, and resources employed by our customers. If they lack the right type of resources or the ability to implement the technology, we provide them with expert assistance and ensure that the solution is integrated. If required, we offer network-tapping infrastructure and security tools so that we can add or delete the customer’s data, duplicate it, and pass it through various tools.
Can you share a case study where the company has helped a client in overcoming certain challenges and increasing their productivity?
One of our clients was facing several challenges and witnessed inefficiencies in operations. For that client, we deployed various technologies from log aggregation and network tapping to end-point forensics and ideas. We discovered that they were dropping 80 percent of their packets through what we believe was an ineffective managed security service provider (MSSP) as they had lesser visibility into other applications throughout their systems and networks, and we remediated the situation. Our team worked with the client’s security team to develop their security operations center. We fixed the client’s networking systems completely, and in the process, we also worked with their compliance lead, attorneys, and insurance teams to ensure that we maintain compliance and mitigate risks for them.
Which are the various industries that you cater to?
We work with several major finance brands and finance organizations, as well as the world’s leading multinational corporations. Our customer base also encompasses industry leading healthcare, retail, and insurance firms among other technology companies that face security issues or challenges. We are focused on resolving the problems wherever they may be, and that separates us from our competitors.
Could you share the company’s vision for the next few years?
Currently, our focus lies in the company’s growth in Europe and some of the other regions outside the US. We not only envision discovery and monitoring of incidents, data breaches, and attacks but also continuous monitoring of structured and unstructured data. Another major focus is creating innovative tools and services that we believe will transform our industry and all we serve.