Panorays

Last updated
Panorays
Company type Private
Industry Technology, IT risk management
Founded2016 (2016)
FoundersMatan Or-El, Meir Antar, Demi Ben-Ari
Headquarters
New York City
,
United States
Area served
Global
Website www.panorays.com

Panorays is a SaaS-based, third-party security risk management platform. It was founded in 2016 and is headquartered in New York, United States. [1]

Contents

History

Matan Or-El, Meir Antar, and Demi Ben-Ari, created Panorays in 2016 as an automated third-party security risk management platform. [2] In June 2018, Panorays received a $5 million funding round, led by Aleph venture capital. [2] [3] In December 2019, Panorays received $15 million in Series A funding, led by Oak HC/FT and former Palo Alto Networks chief executive officer, Lane Bess. [4] [5]

Technology

The Panorays platform gives visibility into and control over third-party security risk through a three-pronged approach to risk assessment - automated vendor questionnaires, assessment of a third-party's external attack surface, and the nature and criticality of the business relationship. [4] The platform also checks vendor compliance with multiple regulations, including the European Union’s General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), New York State Department of Financial Services (NYDFS), and automates the Standardized Information Gathering (SIG) and Consensus Assessments Initiative Questionnaires (CAIQ). It continuously monitors and evaluates third-party security risk, helping companies ensure their vendors are in alignment with their security policies, regulations, and risk appetite. [6] [7] [8]

Awards

Related Research Articles

<span class="mw-page-title-main">UST (company)</span> American technology company

UST, formerly known as UST GLOBAL, is a provider of digital technology and transformation, information technology and services, headquartered in Aliso Viejo, California, United States. Stephen Ross founded UST in 1998 in Laguna Hills. The company has offices in the Americas, EMEA, APAC, and India.

A cybersecurity regulation comprises directives that safeguard information technology and computer systems with the purpose of forcing companies and organizations to protect their systems and information from cyberattacks like viruses, worms, Trojan horses, phishing, denial of service (DOS) attacks, unauthorized access and control system attacks. While cybersecurity regulations aim to minimize cyber risks and enhance protection, the uncertainty arising from frequent changes or new regulations can significantly impact organizational response strategies.

A chief information security officer (CISO) is a senior-level executive within an organization responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The CISO directs staff in identifying, developing, implementing, and maintaining processes across the enterprise to reduce information and information technology (IT) risks. They respond to incidents, establish appropriate standards and controls, manage security technologies, and direct the establishment and implementation of policies and procedures. The CISO is also usually responsible for information-related compliance. The CISO is also responsible for protecting proprietary information and assets of the company, including the data of clients and consumers. CISO works with other executives to make sure the company is growing in a responsible and ethical manner.

Data portability is a concept to protect users from having their data stored in "silos" or "walled gardens" that are incompatible with one another, i.e. closed platforms, thus subjecting them to vendor lock-in and making the creation of data backups or moving accounts between services difficult.

<span class="mw-page-title-main">Insight Partners</span> American investment manager

Insight Partners is a global venture capital and private equity firm that invests in high-growth technology, software, and Internet businesses. The company is headquartered in New York City, with offices in London, Tel Aviv, and Palo Alto.

ExtraHop is a cybersecurity company providing AI-based network intelligence that stops advanced threats across cloud, hybrid, and distributed environments.

<span class="mw-page-title-main">General Data Protection Regulation</span> EU regulation on the processing of personal data

The General Data Protection Regulation is a European Union regulation on information privacy in the European Union (EU) and the European Economic Area (EEA). The GDPR is an important component of EU privacy law and human rights law, in particular Article 8(1) of the Charter of Fundamental Rights of the European Union. It also governs the transfer of personal data outside the EU and EEA. The GDPR's goals are to enhance individuals' control and rights over their personal information and to simplify the regulations for international business. It supersedes the Data Protection Directive 95/46/EC and, among other things, simplifies the terminology.

<span class="mw-page-title-main">WalkMe</span> American web-based software company

WalkMe is an American multinational software-as-a-service (SaaS) company, with headquarters in San Francisco, California. Its Digital Adoption Platform (DAP) was recognized in Everest Group's PEAK Matrix Assessment of DAP vendors as the leading DAP product. Alongside its headquarters in San Francisco, the company has offices in Raleigh, North Carolina; Tel Aviv, Israel, and a global footprint including the United Kingdom, Australia, and Japan.

Privacy engineering is an emerging field of engineering which aims to provide methodologies, tools, and techniques to ensure systems provide acceptable levels of privacy. Its focus lies in organizing and assessing methods to identify and tackle privacy concerns within the engineering of information systems.

Third-party management is the process whereby companies monitor and manage interactions with all external parties with which it has a relationship. This may include both contractual and non-contractual parties. Third-party management is conducted primarily for the purpose of assessing the ongoing behavior, performance and risk that each third-party relationship represents to a company. Areas of monitoring include supplier and vendor information management, corporate and social responsibility compliance, Supplier Risk Management, IT vendor risk, anti-bribery/anti-corruption (ABAC) compliance, information security (infosec) compliance, performance measurement, and contract risk management. The importance of third-party management was elevated in 2013 when the US Office of the Comptroller of the Currency stipulated that all regulated banks must manage the risk of all their third parties.

SafeBreach is a cybersecurity company based in Sunnyvale, California and Tel Aviv, Israel. The company has developed a platform that simulates hacker breach methods, running continuous "war games" to identify breach scenarios across network systems. SafeBreach is a pioneer in the emerging category of breach and attack simulation. The company's platform provides a “hacker's view” of an enterprise’s security posture to predict attacks, validate security controls and improve SOC analyst response. SafeBreach is funded by Sequoia Capital, Hewlett-Packard pathfinder, Deutsche Telekom Capital Partners and others.

Cohesity is an American privately held information technology company headquartered in San Jose, California with offices in India and Ireland. The company develops software that allows IT professionals to backup, manage and gain insights from their data across multiple systems or cloud providers. Their products also include anti-ransomware features, Disaster Recovery-as-a-Service, and SaaS management.

ThetaRay is a fintech software and big data analytics company with headquarters in Hod HaSharon, Israel and New York, and offices in Madrid, London, and Singapore.

BitSight is a cybersecurity ratings company that analyzes companies, government agencies, and educational institutions. It is based in Back Bay, Boston. Security ratings that are delivered by BitSight are used by banks and insurance companies among other organizations. The company rates more than 200,000 organizations with respect to their cybersecurity.

<span class="mw-page-title-main">Secret Double Octopus</span> Israeli software company

Secret Double Octopus (SDO) is an Israeli software company specializing in passwordless authentication for enterprise environments.

Perimeter 81 is an Israeli cloud and network security company that develops secure remote networks, based on the zero trust architecture, for organizations. Its technology replaces legacy security appliances like VPNs and firewalls.

JumpCloud is an American enterprise software company headquartered in Louisville, Colorado. The company was formally launched in 2013 at TechCrunch Disrupt Battlefield with its announcement of an automated server management tool. JumpCloud's offers a cloud-based directory platform for identity management.

<span class="mw-page-title-main">Personal Information Protection Law of the People's Republic of China</span> Chinese personal information rights law

The Personal Information Protection Law of the People's Republic of China referred to as the Personal Information Protection Law or ("PIPL") protecting personal information rights and interests, standardize personal information handling activities, and promote the rational use of personal information. It also addresses the transfer of personal data outside of China.

OneTrust, LLC is a privacy and security software provider. The company is based in Atlanta, Georgia and was created in response to the increase in internet privacy regulation and laws. As of March 2022, OneTrust had more than 12,000 customers, and had a valuation of $5.3 billion.

Pentera is a cybersecurity software company, specializing in automated security validation solutions. Originally founded as Pcysys in 2015, the company later rebranded as Pentera in 2021. The company is led by Amitai Ratzon (CEO) and Dr. Arik Liberzon. Pentera has entities in the US, Germany, UK, Israel, Dubai, and Singapore.

References

  1. "Energy Giant Shell Is Latest Victim of Accellion Attacks". threatpost.com. 23 March 2021. Retrieved 2021-04-15.
  2. 1 2 "Israeli SaaS cybersecurity co Panorays raises $5m". Globes. 2018-05-06. Retrieved 2021-04-15.
  3. CISOMAG (2018-06-07). "Israeli startup Panorays receives early stage funding of $5 million". CISO MAG | Cyber Security Magazine. Retrieved 2021-04-15.
  4. 1 2 "Israeli cybersecurity startup Panorays raises $15M". SiliconANGLE. 2019-12-04. Retrieved 2021-04-15.
  5. "Panorays Raises $15 Million in Series A Funding Round | SecurityWeek.Com". www.securityweek.com. 6 December 2019. Retrieved 2021-04-15.
  6. "GDPR Drives Changes, but Privacy by Design Proves Elusive". Dark Reading. 15 May 2019. Retrieved 2021-04-15.
  7. "One Year Later: First GDPR Execution Overview Reveals There's Still Work to Do". The State of Security. 2019-05-22. Retrieved 2021-04-15.
  8. "How Much Responsibility Should Monster.com Take for Third Party Data Breach?". CPO Magazine. 2019-09-13. Retrieved 2021-04-15.
  9. 1 2 Vogelman, Seth J. (2019-12-24). "The Fortnightly for 25 XII 2019".{{cite journal}}: Cite journal requires |journal= (help)
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.