AGILIANCE FORMS SECURITY RISK MANAGEMENT ADVISORY COUNCIL
Former CIA CISO and Security Industry Veterans Accelerate Agiliance
Big Data and Continuous Monitoring Initiatives across Public and Private Sectors

Sunnyvale, Calif. - August 22, 2012 – Agiliance®, Inc., the leading independent provider of Integrated Risk Management solutions for Governance, Risk, and Compliance (GRC) programs, today announced the formation of the Agiliance Security Risk Management (SRM) Advisory Council to accelerate collaboration among public and private sector organizations hit hard by cyber risks. The charter members are Robert Bigman (former CIA CISO), Oliver Eckel (CEO at Cognosec), Pravin Kothari (founder and CEO of CipherCloud), and Ken Tyminski (former CISO at Prudential Financial).

The ability to continuously monitor big data across financial, operational, and IT domains, has emerged as a critical security and regulatory requirement for global corporations and government agencies. The Agiliance SRM Advisory Council was formed to encourage new thinking with respect to IT security and risk management in order to stay ahead of cyber-attack threats. Progressive, security-minded organizations such as Bank of New York (BNY) Mellon, CIT Group, DnB NOR, Fannie Mae, Fiserv, Qualcomm, State Street Bank, U.S. Federal government agencies, and key members of the Intelligence Community, among others, are already leveraging Agiliance technology to identify and remediate security incidents, threats, and vulnerabilities in real time.

"I am excited to continue my relationship with Agiliance," stated Robert Bigman. "Agiliance's ability to provide risk-based context by mining big data security sources enables organizations to prioritize remediation actions and achieve the situational awareness necessary to address today's cyber threats. My place is to help Agiliance's innovative solutions and partner-centric move to mainstream."

Agiliance SRM Advisory Council Members

The new Agiliance SRM Advisory Council members will address security and risk management issues at industry events and contribute to thought leadership programs. The Agiliance SRM Advisory Council is comprised of the following IT leaders from the government, finance, high tech, media, and entertainment sectors:

Mr. Bigman recently retired as CISO for the Central Intelligence Agency, a position he held for the past 15 years. A pioneer in the field of classified information protection, Mr. Bigman developed technical measures and procedures to manage the nation's most sensitive secrets.

Mr. Eckel is CEO of Cognosec, a leading provider of information security, governance, enterprise risk management, compliance, and assurance services. Prior to becoming CEO of Cognosec (an associate company of SecureTrading and member of the UC Group), he was head of security and audit at bwin AG and the CSO of Wave Solutions / Bank Austria.

Mr. Kothari is a security visionary and serial entrepreneur with over 20 years of experience in information security. He is CEO at CipherCloud, was chief technology officer, interim-CEO, and founder of Agiliance, and was vice president of engineering and a co-founder of ArcSight.

Mr. Tyminski is the retired vice president and CISO for the Prudential Insurance Company of America. Prior to his assignment as Prudential's first CISO, Mr. Tyminski held several other prominent positions and is well known in the industry as an information security
visionary and strategic thinker.

"Bob, Oliver, Pravin, and Ken are distinguished members in the information security community with the ability to foster innovation across a variety of industry sectors," said Joe Fantuzzi, president and CEO at Agiliance. "They are all visionaries and bring in-depth
knowledge of today's security challenges in the government and commercial sectors to the table. Their expertise and industry contacts will help drive collaborative, multi-sector initiatives focused on making big data risk management pragmatic."

Read more at the following link:
http://www.agiliance.com/news/pr_20120822_Security_Risk_Council.html

If you're a security pro, you probably have a love-hate relationship with PCI compliance. You love it when you're fighting for budget. You hate it when you're dealing with loose, sometimes illogical, and redundant requirements and unpredictable assessors. Either way, most of us are stuck with it -- so it pays to know the tricks of implementing PCI in a way that works well for the security cause.

http://www.darkreading.com/compliance/167901112/security/news/231600126/tech-insight-navigating-the-murky-waters-of-pci-implementation.html