RiverSafe Limited - Experts & Thought Leaders

RiverSafe, a global cybersecurity, DevOps, and AppSec professional services provider, has partnered with education-based charity - World Vision to improve access to education for children in Africa. World Vision World Vision is a global humanitarian organisation dedicated to improving the lives of children, families, and communities around the world. Focusing on providing education, healthcare, and emergency relief to those in need, they aim to break the cycle of poverty and open doors for a brighter future for children. Education for children  RiverSafe integrates sustainability into its core business strategy, ensuring it grows in a way To support the charity, RiverSafe has provided donations to World Vision to support its mission of providing quality education to children across Africa. This contribution will enable World Vision to enhance literacy skills, provide vital books, and ensure access to essential learning materials for children. RiverSafe integrates sustainability into its core business strategy, ensuring it grows in a way that benefits both the business and the planet, and is working with World Vision to provide quality education, to help change lives and transform societies. Fundamental beliefs Oseloka Obiora, CTO at RiverSafe, commented, "We formed a partnership with World Vision as we share the same fundamental beliefs – that education is the best way to give people a brighter future, for the betterment of everyone in society." Oseloka Obiora adds, "Partnering with World Vision allows us to actively support an initiative that equips young, disadvantaged children with the education they deserve. We are very proud to support the fantastic work they do and hope to continue our relationship, providing more children with good quality education." Breaking the cycle of poverty Spokesperson, World Vision, commented, "Our collaboration with RiverSafe has been fundamental for improving access to education for children. Their support is not only helping transform individual lives but also contributing to the broader goal of breaking the cycle of poverty, making a profound difference, and opening doors to a brighter future for countless children."

RiverSafe, an Application Security, DevOps, and Cyber Security professional services provider, has partnered with Checkmarx, the industry pioneer in cloud-native application security for the enterprise, to help organisations fortify their security landscape amid rising global threats. Open-source vulnerabilities A recent report unveiled concerning statistics. 84 percent of codebases contain open-source vulnerabilities, with 91 percent featuring outdated components, demanding heightened security throughout the software development life cycle. On average, open-source components make up 73 percent of total code across industries, posing substantial risks. Underfunded and Under-Reported report Security concerns for businesses pinpointing a critical threat, insufficient investment in essential tools Furthermore, RiverSafe's recent Underfunded and Under-Reported report highlighted escalating security concerns for businesses pinpointing a critical threat, insufficient investment in essential tools, ranking second only to artificial intelligence (AI).  On the whole, there is great concern among CISOs and their security teams regarding their organisation’s application usage. Software Development Life Cycle While security remains a top priority for CISOs, developers are under increasing pressure to deliver products faster, which can cause friction between agility and security.  This partnership, built with developers in mind, will combine the powerful capabilities of the Checkmarx platform with RiverSafe’s Application Security expertise, ensuring that security is integrated throughout the Software Development Life Cycle (SDLC), enabling developers to create more secure products without slowing down the development process. Security-first approach Oseloka Obiora, CTO and Co-Founder of RiverSafe, commented, “At RiverSafe, we understand the challenges organisations face in AppSec, especially amidst the ever-evolving threat landscape." "That's why we adopt a security-first approach to software development. By partnering with Checkmarx, we empower enterprise businesses to innovate confidently." Code to cloud applications This partnership not only enhances visibility and control over coding environments" “Our collaboration seamlessly integrates threat intelligence into the software development lifecycle, ensuring that security vulnerabilities are identified and addressed proactively," concluded Obiora. Yigal Elstein, Chief Revenue Officer at Checkmarx, said, “SAST and source code analysis (SCA) is not enough to secure cloud-native applications. In the age of digital transformation, it’s imperative to provide the enterprise with robust, consolidated application security solutions from code to cloud." Visibility and control "Teaming up with RiverSafe, with their unparalleled expertise across cyber, application security, and DevOps, provides important context and threat intelligence to our customers." "This partnership not only enhances visibility and control over coding environments but also empowers security and development teams to prioritise critical vulnerabilities effectively with a superior developer experience.”

The National Cyber Security Centre (NCSC) has issued a warning of heightened cyber threat to UK critical national infrastructure due to the risk posed by Russia state-aligned actors. Pro-Russia ‘hacktivists’ have been targeting vulnerable small-scale industrial control systems in the UK, Europe and North America with more attacks expected over the coming months to target critical national infrastructure. AI-enabled cyber threats The NCSC outlined that the threats have largely been technically unsophisticated although US agencies have reported physical disruption to operations. The majority of activity so far has been DDoS attacks and website defacements. The majority of activity so far has been DDoS attacks and website defacements David Manfield, Associate Director for Cyber Security at Investigo, part of The IN Group, comments: “During periods of heightened cyber threat organisations must re-evaluate their cyber defences, from technology to people, to ensure they can remain robust in the face of an attack. Alarmingly, cyber staff is the top talent pain point for over a third of organisations, according to our Tech and the Boardroom survey, highlighting a stark gap in cyber readiness. Especially in the era of AI-enabled cyber threats, organisations should prioritise building a more diverse pipeline of tech talent, actively recruiting staff with specialist cyber skills that can lead and implement policies and technology adoption to bolster defences.” Russian invasion of Ukraine Ideologically driven state-aligned groups, often sympathetic to the Russian invasion of Ukraine, have been behind a series of threats over the past 18 months. NCSC has urged all active technology owners and operators to follow the urged relief In response, the NCSC has urged all operational technology owners and operators to follow recommended mitigation advice to bolster cyber defences. With a focus on critical national infrastructure, the NCSC said: “We expect these groups to look for opportunities to create such an impact, particularly if systems are poorly protected.” Network access security applications Achi Lewis, Area VP EMEA for Absolute Security, commented: “Cyber resilience should be the top priority for the NCSC, government and businesses, underpinning comprehensive cyber defence measures to combine reactive, preventative and recovery procedures. With cyber-attacks being a case of when, not if, particularly when it comes to critical national infrastructure, it is vital that organisations ensure their endpoint devices are best protected against threats to best mitigate the threat and impact of a breach.” “For many devices, essential security tools are failing, as shown in our Cyber Resilience Index. When not supported by remediation capabilities, Endpoint Protection Platforms and network access security applications on managed PCs fail to operate effectively 24 percent of the time, opening high-risk security gaps and making them vulnerable to breaches. While central networks appear a desirable entry point for malicious attackers, endpoints can be an easy route into an organisation’s systems if they’re behind patching and lack the necessary security controls.” Impact of cyber threats Oseloka Obiora, CTO, RiverSafe said: “Any attack against critical national infrastructure could have a catastrophic impact on public services, requiring sturdy cyber defence measures. In order to effectively mitigate the impact of cyber threats, security teams need comprehensive network visibility to enable them to both detect and address vulnerabilities before significant damage is caused.”  “Specifically in dispersed environments, observability should be at the core, monitoring the condition of networks, infrastructure and applications based on data outputs to ensure issues can be identified and resolved swiftly. Effective network visibility through observability could be the difference between hours and days’ worth of downtime should a successful attack occur.”