Relationship brings people, process and an award-winning IRM platform to the GRF community.

Lynx Technology Partners (Lynx), one of Inc. Magazine’s fastest-growing private companies and ranked among the top U.S. security companies for consecutive years, proudly announces a strategic alliance with Global Resilience Federation (GRF), a multi-sector hub of threat information sharing communities. Through this alliance, GRF members and affiliates now have the ability to streamline compliance management and business risk assessments, combining them into a single process.

Lynx Risk Manager (LRM), Lynx’s integrated risk management platform, provides the ability to identify and implement processes that methodically track governance objectives, risk ownership/accountability, compliance with policies and decisions that are set through the governance process, risks to those objectives, and the effectiveness of risk mitigation and controls.

Aric K. Perminter, Lynx Founder and Chairman, said “LRM is purpose-built to enable the simplification, automation, and integration of strategic, operational, and IT risk management process and data. Through this integrated view, GRF stakeholders can easily distinguish between what security tasks are necessary and their business interests.”

LRM is geared to providing end-to-end visibility of all control activities needed to ensure protection of information. It harmonizes common controls from more than 450 regulatory standards into a single set of controls, thus easing the burden and duplication inherent in manual compliance management practices. In short, LRM can assess a single control once and apply it to any standard or regulatory requirement. The tool’s Risk Intelligence Engine allows it to easily correlate an organization’s policy against regulatory standards while measuring the business risk of vulnerabilities in an IT environment.

“We are extremely impressed by GRF and the cyber information sharing model they have implemented for their communities,” said Gina Mahin, Lynx Technology Partners, Chief Executive Officer. “Together, we can offer subject matter expertise and technology solutions to protect organizations that play an important role in the global economy.”

The Lynx Team is made up of experienced, industry recognized, experts who have led governance, risk management, compliance, and cybersecurity programs and served as subject matter experts (SMEs) for Fortune 500 enterprises, and Federal agencies. This partnership with GRF offers subject matter expertise and enriched analysis as well as technology that hasn’t traditionally been available to SMBs with limited resources.

“GRF is committed to advancing the resilience of its member communities and their constituent organizations and supporting them as they work to balance security and business needs,” said GRF President Mark Orsi. “With growing compliance and regulation requirements in the U.S. and Europe, providers like Lynx play an increasingly important role making security a business enabler, not just a budgetary afterthought. We’re very pleased to have them as a new partner.”

Lynx’s award-winning platform offers risk profiling and modeling of the risk between IT assets and business interest. Assets and other security data can be brought into the system with its published application programming interface (API). There are a few prebuilt integrations with leading SIEMs, vulnerability scanners, and patch management solutions Framework Controls that capture control requirements mandated for the proper level of risk mitigation. This effort maps controls to satisfy compliance requirements. The survey process drives the business risk assessment and covers vulnerabilities, environmental/natural risks, loss or theft risk, and regulatory failure; it uses analytics to assist in the review of risk. Administrators can employ the heuristics engine to effectively analyze control scores to discover patterns, such as a certain group of subjects that contribute disproportionately to a poor compliance score, or a certain type of control that fails across a broad array of subjects.

As part of the partnership, GRF and Lynx will develop a strategy that includes people, process, and technology to support interested GRF members or affiliates with their U.S. Department of Defense Cybersecurity Maturity Model Certification (CMMC) achievement efforts. Lynx’s LRM can support CMMC readiness assessments, preparation of internal plans, and storing all artifacts and evidence necessary for the required self-attestation and/or external audit.

About Lynx Technology Partners

Lynx Technology Partners delivers dynamic Cyber Security and Risk Management solutions for our customers helping them understand and navigate their threat landscape. The Lynx Team is made up of experienced, industry recognized experts who have led governance, risk management, compliance and cybersecurity programs and served as subject matter experts (SMEs) for Fortune 500 enterprises, SMBs, and Federal agencies. Lynx combines risk management professional services with an Integrated Risk Management Platform to better manage risk throughout the people, process and technology lifecycle. Our dedication to customer success and responsiveness to needs has earned us the trust of a growing list of customers in highly regulated industries worldwide. For more information, please visit LynxTechnologyPartners.com.

About Global Resilience Federation

Global Resilience Federation (GRF) is a non-profit hub and integrator for support, analysis, and cross-sector intelligence exchange among information sharing and analysis centers (ISACs), organizations (ISAOs), and computer emergency readiness/response teams (CERTs). GRF’s mission is to help assure the resilience of critical and vital infrastructure against threats that could significantly impact the orderly functioning of the global economy and general safety of the public. GRF members include Financial Services ISAC, Retail ISAO, Legal Services ISAO, Energy Analytic Security Exchange, Health ISAC, Professional Services Information Exchange, Oil and Natural Gas ISAC, Downstream Natural Gas ISAC, and Operational Technology ISAC. Learn more at http://www.GRF.org, by visiting @GRFederation on Twitter or Global Resilience Federation on LinkedIn. Questions may be directed to Patrick McGlone at [email protected]