New collaboration enhances external security

Technology and services from the Norwegian security company River Security provide Sicra with a new addition to their efforts to deliver the most robust IT security.

– The collaboration with River Security allows our customers to uncover and test their vulnerabilities in real-time. Combined with SOC services, we will now protect IT environments from both the inside and the outside, says Stig Valderhaug, CEO of Sicra.

Norwegian River Security was founded in 2020. In three years, the company has developed services and software that provide customers with real-time insights into vulnerabilities, allowing them to continuously close security gaps. Their client list includes well-known companies in seven countries, both in the private and public sectors, such as Fjordkraft, Norgesgruppen, and Sparebanken Vest.

Security is fresh goods

Sicra works with securing many of Norway's most demanding IT environments and has firsthand experience with how companies should raise their security levels.

– It doesn't help much if we handle an incident or configure a new system if the company publishes a new vulnerability the day after we leave. In today's risk landscape, real-time visibility of everything published in the external digital surfaces is necessary, says Valderhaug.

With River Security, customers get software (attack surface management) that monitors digital surfaces and reports vulnerabilities, along with continuous penetration testing.

– This is a unique combination, and it's exciting that a Norwegian company is the first to offer this. It puts Norway on the international security map, says Valderhaug.

Proactive security systematized

– The way most companies uncover security holes gives a false sense of security. It doesn't help to conduct penetration services once or twice a year. Since large companies expose new code almost daily, the systems must also be tested continuously, says Magnus Holst of River Security.

Holst explains that IT security must increasingly shift from reactive to proactive. The company has mapped the IT environments of many large companies, and the results are always disheartening.

– Our customers have an average of 4,000 employees. We find security holes in all of them. Our job is to turn on the light and show customers where to patch, says Holst.

Growing with friends

River Security is building a partner network where experts like Sicra are preferred.

– We want like-minded partners who understand the importance of good IT security. Our knowledge of how to detect and prevent threats, combined with Sicra's expertise in securing large IT environments, provides a strong combination for business leaders who dislike risk, says Holst.

Solutions from River give Sicra's consultants and customers insights into which vulnerabilities need to be addressed and their severity. This provides the board and management with answers on the state of security and a real-time temperature measurement of all digital surfaces exposed to the outside.

– With River, we can more easily find the threat and prove the consequence. Customers receive alerts about the cases that need to be addressed but avoid all unnecessary noise. We have high hopes for the collaboration and can now build security with an always fresh understanding of reality, says Valderhaug.