Research | Our Q3 report details what's new in the world of ransomware.
Reduce Alert Noise and False Positives
Boost your team's productivity by cutting down alert noise and false positives.
Automate Security Operations
Boost efficiency, reduce burnout, and better manage risk through automation.
Dark Web Monitoring
Online protection tuned to the need of your business.
Maximize Existing Security Investments
Improve efficiencies from existing investments in security tools.
Beyond MDR
Move your security operations beyond the limitations of MDR.
Secure with Microsoft 365 E5
Boost the power of Microsoft 365 E5 security.
Secure Multi-Cloud Environments
Improve cloud security and overcome complexity across multi-cloud environments.
Secure Mergers and Acquisitions
Control cyber risk for business acquisitions and dispersed business units.
Operational Technology
Solve security operations challenges affecting critical operational technology (OT) infrastructure.
Force-Multiply Your Security Operations
Whether you’re just starting your security journey, need to up your game, or you’re not happy with an existing service, we can help you to achieve your security goals.
Detection Investigation Response
Modernize Detection, Investigation, Response with a Security Operations Platform.
Threat Hunting
Locate and eliminate lurking threats with ReliaQuest GreyMatter
Threat Intelligence
Find cyber threats that have evaded your defenses.
Model Index
Security metrics to manage and improve security operations.
Breach and Attack Simulation
GreyMatter Verify is ReliaQuest’s automated breach and attack simulation capability.
Digital Risk Protection
Continuous monitoring of open, deep, and dark web sources to identify threats.
Phishing Analyzer
GreyMatter Phishing Analyzer removes the abuse mailbox management by automating the DIR process for you.
Integration Partners
The GreyMatter cloud-native Open XDR platform integrates with a fast-growing number of market-leading technologies.
Unify and Optimize Your Security Operations
ReliaQuest GreyMatter is a security operations platform built on an open XDR architecture and designed to help security teams increase visibility, reduce complexity, and manage risk across their security tools, including on-premises, clouds, networks, and endpoints.
Blog
Company Blog
Case Studies
Brands of the world trust ReliaQuest to achieve their security goals.
Data Sheets
Learn how to achieve your security outcomes faster with ReliaQuest GreyMatter.
eBooks
The latest security trends and perspectives to help inform your security operations.
Industry Guides and Reports
The latest security research and industry reports.
Podcasts
Catch up on the latest cybersecurity podcasts, and mindset moments from our very own mental performance coaches.
Solution Briefs
A deep dive on how ReliaQuest GreyMatter addresses security challenges.
Threat Advisories
The latest threat research report from ReliaQuest Threat Research research team.
White Papers
The latest white papers focused on security operations strategy, technology & insight.
Videos
Current and future SOC trends presented by our security experts.
Events & Webinars
Explore all upcoming company events, in-person and on-demand webinars
ReliaQuest ResourceCenter
From prevention techniques to emerging security trends, our comprehensive library can arm you with the tools you need to improve your security posture.
Threat Research
Get the latest threat analysis from the ReliaQuest Threat Research Team. ReliaQuest ShadowTalk Weekly podcast featuring discussions on the latest cybersecurity news and threat research.
Shadow Talk
ReliaQuest's ShadowTalk is a weekly podcast featuring discussions on the latest cybersecurity news and threat research. ShadowTalk's hosts come from threat intelligence, threat hunting, security research, and leadership backgrounds providing practical perspectives on the week's top cybersecurity stories.
November 30, 2023
About ReliaQuest
We bring our best attitude, energy and effort to everything we do, every day, to make security possible.
Leadership
Security is a team sport.
No Show Dogs Podcast
Mental Performance Coaches Derin McMains and Dr. Nicole Detling interview world-class performers across multiple industries.
Make It Possible
Make It Possible reflects our focus on bringing cybersecurity awareness to our communities and enabling the next generation of cybersecurity professionals.
Careers
Join our world-class team.
Press and Media Coverage
ReliaQuest newsroom covering the latest press release and media coverage.
Become a Channel Partner
When you partner with ReliaQuest, you help deliver world-class cybersecurity solutions.
Contact Us
How can we help you?
A Mindset Like No Other in the Industry
Many companies tout their cultures; at ReliaQuest, we share a mindset. We focus on four values every day to make security possible: being accountable, helpful, adaptable, and focused. These values drive development of our platform, relationships with our customers and partners, and further the ReliaQuest promise of security confidence across our customers and our own teams.
More results...
On the March 15, I was lucky enough to be invited to a round table event at Chatham House in London titled, Security by Design: Mitigating Cyber Security Risks in the Civil Nuclear Infrastructure in the Gulf. This event came off the back of the recent publication – also by Chatham House – on cybersecurity at civil nuclear facilities.
The event raised a number of interesting points, both around the nuclear sectors collective approach to cybersecurity in general as well as the role that cyber situational awareness could play in the defense of the nuclear sector in the future.
While it is apparent that the nuclear sector is taking cybersecurity seriously, it is fair to say that this industry sector as a whole is coming late to the cybersecurity party.
Clearly, security and safety issues have always been a major concern for the nuclear sector, and retrospective modifications of nuclear facilities as flaws are detected and new standards are implemented would appear to have been common practise for decades. As such, a logical assumption is that implementing common cybersecurity standards is really in the same ball park as the fixes applied to physical infrastructure that one delegate elegantly referred to as “in service modifications.” However, I believe that these are different in two ways.
Firstly, in service modifications to physical infrastructure, I would assume, are mostly stimulated by safety issues and based around a perception of increased risk. Conversely, software patching is conducted primarily on the perception of an increased threat to a vulnerable system. The separation between risk and threat is more than just mere wordplay, with the critical differentiator being that the word ‘threat’ implies the presence of an actor with malicious intent, whereas risk does not.
The second key difference between in service modifications and patching lies within the implicit process that surrounds them, and the stimuli for conducting these activities – namely, the frequency of the occurrence of risks significant enough to stimulate remedial action. Within software patching, the risk is created in the most part by the threat, which has a far greater rate of occurrence within software systems than physical industrial system. In plain terms, I am proposing that dealing with cybersecurity within the nuclear sector required a different approach to the ones inherent within the physical and operational security cultures currently within the industry. Additionally it is my belief that cyber situational awareness – and its derivate threat intelligence – could play a critical part within this cultural change.
So what could cyber situational awareness contribute to the nuclear industries approach to cybersecurity? The most immediate contribution would be within how the nuclear industry perceives the threat in the first instance. Within the area of threat perception, Stuxnet casts a long shadow. Although the incident was an attack on a nuclear supply chain, the incident has created a perception of a high level of cyber risk around the safety critical elements of the nuclear system and that attacking computer systems associated with nuclear infrastructure was the preserve of the nation state.
Neither of these perceptions hold true within the light of informed cyber situational awareness and strategic logical analysis of the true cyber threat. Not only would creating a failure that would result in a meltdown incident within a nuclear facility via a computer attack be technically difficult, but it would also be strategically highly undesirable for even the most belligerent of nation state actors. An overemphasis on nation states conducting destructive attacks on nuclear infrastructure could overshadow more realistic threat scenarios, such as a cybercriminal hosting bitcoin miners on unsecured systems that could, in turn, cause a reactor shutdown.
Cyber situational awareness at its core seeks to create an accurate picture of the threat landscape and the actors within it. For modern threat led cybersecurity this is a critical piece of the wider cybersecurity puzzle.