CEO Sudhakar Ramakrishna Outlines SolarWinds’ Action Plan in Response to Cyber Incident

CEO Sudhakar Ramakrishna Outlines SolarWinds’ Action Plan in Response to Cyber Incident
Sudhakar Ramakrishna President and CEO SolarWinds

Sudhakar Ramakrishna, president and CEO of SolarWinds, wrote in a blog post published Thursday that in light of the cyber attack, the software company will implement measures centered around three key areas: further securing its internal environment, improving product development environment and ensuring the integrity and security of the products it delivers.

For the first primary area, Ramakrishna said actions include the deployment of additional threat protection and hunting software on network endpoints and consolidation of remote and cloud access pathways for accessing the company's applications and network by implementing multifactor authentication.

He said the company will expand its vulnerability management program, conduct extensive penetration testing of Orion software and related offerings and use third-party tools to broaden the security analysis of the source code for Orion and related products as part of efforts to ensure the security and integrity of its products.

To improve the environment for product development efforts, SolarWinds will carry out ongoing forensic analysis of the environment and transition to a new build environment.

“We have engaged several leading cybersecurity experts to assist us in this journey and I commit to being transparent with our customers, our government partners, and the general public in both the near-term and long-term about our security enhancements to ensure we maintain what’s most important to us – your trust,” Ramakrishna wrote.

SolarWinds hired Krebs Stamos Group— a consulting business formed by Christopher Krebs, former director of the Cybersecurity and Infrastructure Security Agency and a two-time Wash100 awardee, and Alex Stamos, former chief security officer at Facebook– to help in the security review.

You may also be interested in...

Nuxeo

Nuxeo Obtains HITRUST CSF Certified Status for Content Mgmt Suite

The Health Information Trust Alliance has granted Nuxeo certified status for information security for its cloud-based content management tool offered through the Amazon Web Services platform.

Gremlins Dynetics

Dynetics Concludes Third Flight Test of Gremlins UAV for DARPA

A Dynetics-made unmanned aerial vehicle demonstrated autonomous and manual safety behaviors in a test flight series for the Defense Advanced Research Projects Agency. The Gremlins Air Vehicle, with its corresponding recovery system, performed seven hours of flight in November, at Utah-based Dugway Proving Ground, Dynetics, a Leidos subsidiary, said Wednesday.

Medallia

HHS Taps Medallia to Help Augment Customer Experience in Health Services

Medallia will deliver user experience technology to help the Department of Health and Human Services address health-related public sector issues and augment key services for HHS customers. The company said Thursday it offers a government-tailored platform that helps agencies determine how to improve citizen experience based on feedback data.