ABOUT THE PLATFORM
THE MINERVA PLATFORM
Using innovation to address unsolved problems and underserved markets
Minerva is a resilient and secure cloud based platform that provides real time dynamic insight into security programs. Unencumbered by legacy infrastructure or legacy code, we have leveraged being born in the cloud to provide a highly scalable and performance driven architecture.
The Minerva platform uses a four step approach to solve problems that Cybersecurity leaders have chased for years.
01. LEVERAGE TECHNOLOGY
Advancement in software development has effectively turned everything into code. From the application itself to the infrastructure allowing for more dynamic applications and resilient infrastructure. This allows us to implement a consistent service which allows for more effective management.
02. LEVERAGE INDUSTRY STANDARS
- ISO 27001
- NIST CSF (Using ISO 27001)
- NIST 800-53
- NIST CSF (Using NIST 800-53)
- SMB / EDU NIST 800-53 (Abbreviated)
03. LEVERAGE YOUR ORGANIZATION
Cybersecurity is a team sport and the responsibility of everyone in the organization. We assign responsibility throughout the organization reducing the response distance and placing those that are responsible in a position of ownership. This discipline drive more accurate information and improves business outcomes.
04. LEVERAGE OUR CISO COMMUNITY
The cybersecurity community is evolving and effective leaders recognize that while some parts of our security program must remain secret, there are other parts in which we must work together to achieve more effective security programs.
QUESTIONS FROM YOUR BUSINESS
01. HOW MUCH RISK IS ACCEPTABLE TO OUR ORGANIZATION?
02. HOW DO WE ESTABLISH DUE CARE?
03. CAN WE DEMONSTRATE FISCAL RESPONSIBILITY?
04. WHAT IS OUR REAL EXPOSURE, OR LIABILITY?
05. HOW MUCH AND WHAT TYPE OF COVERAGE DO WE NEED?
06. HOW MUCH INSURANCE DO WE NEED?
ANSWERS FOR YOUR BUSINESS
Maturity assessments are a core component of most of the cyber consulting firms portfolios. Organizations rely on maturity services to provide snapshot visibility into their performance and relative posture against peer organizations. Therein lies the issue.
Current assessment models only show historical information up to the time a report is created. Traditional reports do not provide visibility over time and require the purchase of another assessment to track progress.
The Minerva Platform provides a real time dynamic maturity platform to measure and track your organization’s progress while identifying new areas of improvement in a rapidly evolving threat landscape. There is simply no better way to demonstrate value, set organizational goals and establish the cyber standard of care.
The ability to quantify risk has been called the holy grail for Chief Information Security Officers. In the journey to quantify risk, many have asserted that it is not possible to quantify risk due to the qualitative elements involved in risk such as reputation risk and the liability incurred as a result of a security event, or data leakage. The holy grail is not out of reach, but merely has been hidden from the security community in its battle against bad actors and the ever increasing number of threat vectors that are being addressed.
The Minerva Exposure Engine is a proprietary method that combines event notification and publicly traded stock prices to derive the value of security related events to companies. This unique view incorporates all quantitative and qualitative measures and can be applied to all organizations in the evaluation of their security posture.
Roadmap development remains an annual exercise aligned with budget cycles for most organizations. The exercise for most organizations relies on compliance findings, skilled security staff, and supplier promotion. These elements neglect two of the most critical components of any security program, stakeholder buy-in and organizational goal alignment.
The Minerva Roadmap Engine is focused on driving integration of cross functional stakeholders into the roadmap process. Stakeholders are identified and the core organizational goals are defined. Projects can be submitted for review by anyone in the identified organization. The projects are anonymously reviewed by the stakeholders against the defined criteria. The projects are then ranked dynamically and able to be viewed and communicated by the leadership team. The Minerva Platform drives the integration of the business units into the process.