Spotlight on Onyxia – Cyber Defense Magazine


Onyxia’s Cybersecurity Management Platform delivers predictive insights and data intelligence that allow CISOs to gain a complete view of their cybersecurity program performance, achieve organizational compliance, increase security stack efficiency, and proactively optimize and communicate the business-level impact of their strategic security initiatives.

We collect and analyze data from the organization’s entire security ecosystem. Based on the analysis, we provide the CISOs with continual program assessment and benchmarking as well as meaningful insights regarding their program performance.

Furthermore, with our OnyxAI predictive insights, we provide powerful suggestions for security program improvement (including resource and/or focus reallocation, security product replacement, etc.). Onyxia’s Cybersecurity Management Platform enables CISOs to run ‘What/If?’ scenarios, receive relevant threat intelligence, and conduct business-level reporting.

Cybercrime statistics on the problem you solve

For 85% of CISOs and security leaders, managing and reporting on their security programs is a time-consuming process – done manually with numerous spreadsheets and/or by a team of analysts. In most cases, an organization operates with more than 50 security solutions, with CISOs needing to manage each one individually. And now, between the heightened demands of new risk management regulations and reporting rules and the need to stay ahead of ever-evolving threats, CISOs are truly facing an uphill battle.

CEO quote

“We are seeing a real need in the market for security solutions that can simplify operations for CISOs, many of whom are still using spreadsheets to address challenges like measuring, reporting, and managing security programs,” said Sivan Tehila, CEO and Founder of Onyxia. “New industry regulations such as those the SEC introduced last year place additional pressures on CISOs. Onyxia’s Cybersecurity Management platform empowers CISOs to meet their growing responsibilities with a sophisticated, efficient, and accurate solution, delivering a predictive security platform created especially for them that leverages AI to fully harness insights, facilitate data-driven decisions, and maximize security efforts.”

Elevator pitch.

Onyxia’s Cybersecurity Management Platform is the Salesforce for CISOs. We deliver powerful predictive insights and data intelligence so that security leaders can proactively improve risk management, ensure organizational compliance, and ultimately, bridge their security initiatives to the business.

What does Gartner say about you? Why?

Most notably, Gartner recognized us as a Sample Provider in the Cyber Defense Planning and Optimization (CDPO) category. Gartner describes CDPO solutions as ones that can help CISOs “focus on reducing the attack surface without creating gaps in coverage of attacks” and keep their “focus on best-of-breed protection against major attack patterns.”


Who are your competitors?

For years, CISOs have relied on spreadsheets, teams of analysts and data visualization platforms to manage and report on their cybersecurity programs. We are disrupting the industry with a platform that enables CISOs to automate the measurement and management of their cybersecurity programs in a tailor-made way.

Gartner notes other players in the CDPO space as: CardinalOps, Enveedo, Posturity, Rivial Data Security, Veriti, XM Cyber and Zyston.

Why is your solution better?

Onyxia is uniquely differentiated in three key areas:

  1. Utilization of AI to Improve the Security Program: We are using AI to provide a deeper analysis of a user’s data. Using this analysis, we share valuable insights into program performance and projected trends based on current SLAs. With the use of AI, we can quickly provide accurate and predictive analysis based on existing program data to help security leaders mitigate risks and prevent future crises.
  2. Customization and Personalization: We give CISOs the ability to adjust what and how metrics are tracked, personalize the security stack map to add products outside of their program, and create detailed and visualized reports that align with the business-level message they want to present. With these customization abilities, we provide CISOs with a uniquely personal and relevant user experience.
  3. A Native Mobile Management Experience: Onyxia is currently the only company that offers CISOs a dedicated Cybersecurity Management mobile app, enabling them to have complete visibility into their program anytime and anywhere. This is a drawing point for CISOs who appreciate constant access to the status of their programs.

How does your solution fit into a company’s Cyber stack? What does it pair well with?

The Onyxia Cybersecurity Management Platform sits above a company’s cyber tech stack and is designed to pair seamlessly with those tools enabling an automated and real-time way for CISOs to manage, measure, and report on their entire security program. We integrate with many of the top security solutions like the Microsoft suite, Crowdstrike, CISCO and WIZ.

A core feature of our platform is our Security Stack Map, which enables CISOs to chart their cyber stack coverage to a NIST-aligned grid. This helps them to easily identify redundancies and gaps in their program tech stack and ensure organizational compliance.

How are you funded?

We are a Seed-stage company with investments from WTV Ventures, Silvertech Ventures, and Angel Investors.

What is your 3-year product roadmap?

As we move forward, we will also build out our offering for MSSPs with a multi-tenant platform, so that they can easily ensure that all of their clients have security programs that adhere to compliance frameworks and are cost-effective.

Tell me about a customer who implemented your solution and what metrics show they are happy with the solution.

A client shared the time saving of at least 160 hours a month for an analyst. Instead of spending time on manual reporting of the program, the analyst can now apply this reclaimed time toward actual risk management strategy.

Another client is a publicly traded components manufacturer with over 40K employees globally and multiple subsidiaries. Before deploying Onyxia, their team spent hours pulling reports from dozens of disconnected security tools which proved vastly inefficient and inaccurate. With Onyxia, the client now has a central location to manage the performance of their entire security program, allowing them to focus more time on program optimization and risk reduction. Their security program now benefits from:

  • Automated program measurement and benchmarking
  • Streamlined Board reporting
  • Full stack security and asset coverage visibility
  • Achieves compliance more easily and aligns with security frameworks

About the Author

Dan K. Anderson authorDan K. Anderson Bio, Winner Top Global CISO of the year 2023. Dan currently serves as a vCISO and On-Call Roving reporter for Cyber Defense Magazine. BSEE, MS Computer Science, MBA Entrepreneurial focus, CISA, CRISC, CBCLA, C|EH, PCIP, and ITIL v3.

Dan’s work includes consulting premier teaching hospitals such as Stanford Medical Center, Harvard’s Boston Children’s Hospital, University of Utah Hospital, and large Integrated Delivery Networks such as Sutter Health, Catholic Healthcare West, Kaiser Permanente, Veteran’s Health Administration, Intermountain Healthcare and Banner Health.

Dan has served in positions as President, CEO, CIO, CISO, CTO, and Director, is currently CEO and Co-Founder of Mark V Security, and Cyber Advisor Board member for Graphite Health.

Dan is a USA Hockey level 5 Master Coach. Current volunteering by building the future of Cyber Security professionals through University Board work, the local hacking scene, and mentoring students, co-workers, and CISO’s.

Dan lives in Littleton, Colorado and Salt Lake City, Utah linkedin.com/in/dankanderson



Source link