Q&A with Patrick Moorhead, CMO at Pricefx

MEDIA 7 | June 17, 2020

Patrick Moorhead, CMO at Pricefx is a senior media, marketing, and strategy executive with 20 years of experience delivering innovation to market, focused on high growth technology and SaaS solutions marketing.

In this Q&A, Patrick talks about Pricefx AI-powered price management solutions, MarTech and sales automation tools, challenges and skillsets for today's marketing leaders.

MEDIA 7: Can you give us a brief insight into your professional journey so far? What inspired you to get into technology sector and start at Pricefx?
PATRICK MOORHEAD:
For the first part of my career, I was in various roles at ad agencies (Razorfish and FCB) and while there, I always had an interest in what tech vendors were doing because I admired the fast-paced innovation. So I decided to make the shift to a product and tech company (Catalina Marketing) eight years ago and I’m glad I made the move.

At Twitter, I spent more than two years understanding the inner workings of a large innovative tech organization and, during this time, it helped me realize I wanted to put my efforts in early and growth stage companies. I helped scale high growth SaaS tech company (Label Insight) and then joined Pricefx in late 2018. Pricefx checks off all the boxes in everything I was seeking for the next step in my career – global reach, high growth, innovative SaaS B2B tech, solid funding, and the company’s core values of being fast, friendly and flexible, keep us all focused on an awesome future ahead.

M7: Which marketing technology or sales automation tools do you rely on in your job?
PM:
Over the past 14 months I’m proud to say that this team has built and deployed a leading edge MarTech automation stack that is designed to drive outsized impact on our business. With Salesforce as our source of truth, we have assembled deep integrations with a range of capabilities that now include Drift, Apollo, Pardot, WordPress, Weglot, Canva, Bizzabo, and Reachdesk, with full funnel measurement and attribution capabilities from display media all the way through deal level ABM using Google Data Studio, Google Analytics and Klipfolio.

Our driving focus has been on creating operational efficiency and industrial repeatability, and my constant refrain to the team “in the work you’re doing now, think not only about how it can solve the current challenge, but how when designed well, it will solve future challenges without the effort it is requiring today. Make every choice like it’s a brick in the foundation of your future home.”


"Our new AI Optimization capability will provide an industry leading optimization capability that is both powerful on its own, and efficient and scalable across any enterprise when combined with our platform and product suite."

M7: What's your ideal customer profile? What AI-powered solutions does Pricefx offer to ideal customers?
PM: Our ideal customer is any company, in nearly any industry, who is looking for a rapid and efficient advance in how they define and implement their pricing. Pricefx has more than 100 such customers across 37 countries, which include some of the largest manufacturing, retailing and energy businesses in the world. In 2019, Pricefx signed nearly 20 new enterprise customers with revenue in excess of $2 billion. In May, we acquired Brennus Analytics, an exciting French start-up with a modular, proprietary, transparent, and configurable artificial intelligence (“AI”) technology. With the addition of their unique AMAS AI technology, we will soon be able to offer the market a “True AI” optimization solution for pricing, designed to organically enable their existing business structures and decision making processes with a powerful new level of intelligence, modeling, prioritization, and executional guidance.

M7: F-Words Are Changing the Industry. Can you elaborate on the three F words that serve as the cornerstones of Pricefx?
PM: You’re absolutely right, the f-words we work and live by at Pricefx are changing the pricing industry because they solve the frustrations we saw from customers who said that delivering business results with pricing often came with so much baggage and headache – long implementation times coupled with hefty price tags. Our values are deeply rooted in being a fast, flexible and friendly cloud solution. If you were to ask our customers and the people we work with – these f-words are in our core. The f-words company culture runs through the veins of the entire organization, pushing everyone to be a forward-thinking leader.

Fast
An industry leading implementation timeline measured in weeks, not months or years, means our customers start seeing their investment pay off in the first year of activation with Pricefx.

Flexible
Point and click integrations. Dynamic data ingestion and activation. Configurable UI, datamarts, dashboards and more. No other pricing platform offers the flexibility that comes standard with Pricefx, and flexibility is a game changer in today's digitally driven economy.

Friendly
Our no barrier to entry / no barrier to exit contracts changed the game in the pricing industry. Our customer teams have been recognized as the industry's favorite to work with. And our platform is awarded for being easy to learn and use. That's what Friendly pricing looks like.


“In the work you’re doing now, think not only about how it can solve the current challenge, but how when designed well, it will solve future challenges without the effort it is requiring today. Make every choice like it’s a brick in the foundation of your future home.”

M7: What industries and departments are most likely to benefit from utilizing Pricefx AI-powered price management solutions?
PM: Our customers have a variety of stakeholders and users ranging from IT groups looking for centralized admin for enterprise price management, to finance departments looking to analyze and improve margin and profitability, to sales and marketing departments looking to improve both the speed and quality of price quoting to their end customers on a global scale. Our customer portfolio is among the most diverse in the industry, ranging from Manufacturing, to Chemical and Process Engineering, to E-commerce, after-market distribution, mechanical parts, durable goods, and even ski lift tickets! With our new AI Optimization capability, we will provide an industry leading optimization capability that is both powerful on its own, and efficient and scalable across any enterprise when combined with our platform and product suite.

M7: How has the COVID-19 pandemic affected your work - what day to day processes have you had to re-tool to be able to pull them off remotely? What does your remote tech stack look like?
PM: Because we are a global company with our founding offices in Munich, we were able to see how the coronavirus hit our neighbors and we moved rather quickly in comparison to our counterparts. Pricefx is also a flexible work environment. Before the pandemic, we allowed employees to work in their home office or come to our office (whichever they prefer), and flexible working hours to balance work and life.

The global pandemic forced us to reduce our global team travel to zero, and to lean in on how to execute virtual sales cycles and implementation cycles in a way we had not before.

We are a Microsoft run company, and we were heavily reliant on Teams prior to the crisis, so shifting to entirely remote management wasn’t difficult for us, but we have made further investments in Teams and other collaboration tools to improve how our company performs with every single person working from home. It also forced us to move fast on our existing plans – for example, we were already working to virtualize much of our product training and technical workshop efforts prior to COVID, and as a result of the crisis we accelerated those efforts and are now on a path to deliver 3x the amount of training content and support to our customers as before, and 100% virtually and self-service.


"Becoming an effective marketing professional is to see the world through the lens of a salesperson."

M7: What have been your two biggest challenges as a CMO regarding marketing planning at Pricefx, and how did you tackle them?
PM: Challenge 1 – build a high performing team.

I’ve been able to build a world class marketing team by staying focused on my specific role – mainly to create the setting for others to be great, enable them to pursue their strengths and passions, and trust them to deliver for the business.

Challenge 2 – Think Globally, Act Locally
As a global organization with both employees and customers all around the world, it’s critical that I constantly stay focused on both the macro view of the world and different market dynamics, and at the local level how different sellers, buyers, cultures and regions need to be approached in order for our value and message to connect. This balance has required me to work to learn more about the markets and people around the world, while also maintaining consistency in how we as a company present ourselves to them all.

M7: What are some of the common challenges your customers approach you with?
PM:
Our customers typically have a handful of similar challenges – a need to centrally manage and deploy their pricing and discounting consistently across regions and teams; a need for better intelligence and analytics to make critical pricing decisions, or a need to achieve better margin and profitability in a rapid and efficient way. These common challenges are why the market is ripe for pricing software solutions like Pricefx. This G2 chart shows the notable surge in pricing software as sales teams are adapting to new demands of remote selling.

M7: What is the most important skill or set of skills that today’s marketing leaders need to have?
PM:
The helpful secret to becoming an effective marketing professional is to see the world through the lens of a salesperson. You don’t have to be good at sales but I’ve found it very beneficial to understand their role in the organization to be a better marketer. Also, even when you’re marketing something as un-emotional as pricing software, there is still a need to understand the emotional character and mindset of the buyer.

M7: If I were to say to a bunch of people who know you, ‘Give me three adjectives that best describe you,’ what would I hear?
PM: Focused, Articulate, Creative

ABOUT PRICEFX

Established in 2011 in Germany, Pricefx is the global leader in SaaS pricing software, offering a comprehensive suite of solutions that are fast to implement, flexible to configure and customize, and friendly to learn and use. Pricefx delivers a complete price optimization and management platform based on native cloud architecture, providing industry leading time to value and total cost of ownership advantages to customers. Their innovative solution works for both B2B and B2C enterprises of any size, in any industry, in any part of the world. Pricefx’s business model is entirely based on the satisfaction and loyalty of its customers. Today, Pricefx delivers Passion for Pricing to more than 100 customers in more than 37 countries worldwide. For more information, please visit www.pricefx.com.

More C-Suite on deck

‘Today’s market is beyond B2B, it's business to humans (B2H),' says AvePoint’s, Dux Raymond Sy

Media 7 | March 3, 2022

Dux Raymond Sy, Chief Brand Officer at AvePoint talks to Media 7 about purpose-driven marketing strategies and his approach towards branding for AvePoint. Read on to know more about creating interactive content and leveraging influencer brand marketing.

Read More

AvePoint’s Dr. Tianyi Jiang says “Making people feel like their authentic selves is vital to business success.”

Media 7 | February 23, 2022

We had the opportunity to explore AvePoint’s SaaS solutions that helps enterprises protect their cloud data through this interview with Dr. Tianyi Jiang, Chief Executive Officer and Co-Founder at AvePoint. Read on to know more about his thoughts on cloud data migration and his advice to young entrepreneurs.

Read More

'The best way to enable companies to achieve more with data in the cloud is to take an integrated approach,' says Matthew Scullion, CEO at Matillion

Media 7 | May 17, 2022

Matthew Scullion, CEO, and Co-Founder at Matillion talks about the inception of his company, its culture, and vision. Read on to know more about his thoughts on gaining meaningful insights from vast amounts of data and ETL technology.

Read More

‘Today’s market is beyond B2B, it's business to humans (B2H),' says AvePoint’s, Dux Raymond Sy

Media 7 | March 3, 2022

Dux Raymond Sy, Chief Brand Officer at AvePoint talks to Media 7 about purpose-driven marketing strategies and his approach towards branding for AvePoint. Read on to know more about creating interactive content and leveraging influencer brand marketing.

Read More

AvePoint’s Dr. Tianyi Jiang says “Making people feel like their authentic selves is vital to business success.”

Media 7 | February 23, 2022

We had the opportunity to explore AvePoint’s SaaS solutions that helps enterprises protect their cloud data through this interview with Dr. Tianyi Jiang, Chief Executive Officer and Co-Founder at AvePoint. Read on to know more about his thoughts on cloud data migration and his advice to young entrepreneurs.

Read More

'The best way to enable companies to achieve more with data in the cloud is to take an integrated approach,' says Matthew Scullion, CEO at Matillion

Media 7 | May 17, 2022

Matthew Scullion, CEO, and Co-Founder at Matillion talks about the inception of his company, its culture, and vision. Read on to know more about his thoughts on gaining meaningful insights from vast amounts of data and ETL technology.

Read More

Related News

CLOUD SECURITY

CoreStack and Marlabs Announce Global Partnership to Expand Cloud Management Offerings

CoreStack | September 15, 2022

CoreStack, a global multi-cloud governance provider that empowers enterprises to unleash the power of the cloud, today announced a global partnership with Marlabs, a leading global digital solutions company. The partnership will integrate the expertise of both companies, bringing extensive digital transformation for their shared customer base to help them stay competitive through increased digital agility. Marlabs will implement CoreStack’s AI-based real-time cloud governance engine in its Cloud Management Platform, allowing its customers a 360-degree broad and deep visibility across cloud financial management (FinOps), security operations (SecOps), and cloud operations (CloudOps) in an integrated single pane of glass. Marlabs will be hosting this solution in the Marlabs Experience Center in Bengaluru, India, to enable clients to leverage the power and value of the solution. CoreStack's AI-powered multi-cloud governance solution has provided customers with transformational outcomes with its NextGen cloud governance fabric. Implementing their technologies have led to fifty percent increases in cloud operational efficiencies, forty percent decreases in cloud costs, and one-hundred percent compliance with security standards. "We have a strong focus on cloud-powered IT management, and this partnership with CoreStack is a concrete step to our commitment in that direction, We are excited to collaborate with CoreStack and implement and support their ground-breaking FinOps, SecOps, and CloudOps offerings as part of our Cloud Management Platform.” Siby Vadakekkara, Chairman and CEO at Marlabs “As Marlabs’ global partner, we will get a chance to enable our joint customers to manage the cloud proactively and confidently, across key verticals like healthcare, life sciences, fintech, retail, and technology,” said Ezhilarasan Natarajan, Founder and CEO at CoreStack Inc. “We are thrilled to partner with them, and we are looking forward to extending our award-winning NextGen Cloud Governance platform to their customers while drawing on their extensive digital expertise to help businesses around the world.” About CoreStack CoreStack is a NextGen cloud business accelerator that empowers enterprises to predictably increase top-line revenues, improve bottom-line efficiencies, and gain a competitive edge through AI-powered real-time cloud governance on autopilot. CoreStack's FinOps, SecOps, and CloudOps solutions embrace, enhance, and extend native-cloud enable reporting, recommendation, remediation and provide single pane-of-glass governance across multi-cloud. Through executive dashboards for comprehensive real-time insights, CoreStack delivers transformative value such as 40% increase in operational efficiencies, 50% decrease in cloud costs, and 100% security assurance and compliance. CoreStack helps 500+ global enterprises govern $2+ billion in annual cloud consumption. Frost & Sullivan, Gartner, and IDC recognized CoreStack as an innovator and leader in cloud management. CoreStack is backed by strategic advisors, including the ex-CEO of Wipro and ex-CIO of Microsoft. The company is a Microsoft Azure Gold Partner, Amazon AWS Advanced Technology Competency Partner, and Google Cloud Build Partner. To learn more, visit www.corestack.io. About Marlabs Marlabs designs and develops advanced digital solutions that help its clients improve business outcomes swiftly and precisely. It succeeds by harnessing the power of the Digital Collective™, which brings together design-led digital innovation with human experience, composable digital platforms, and a collaborative ecosystem of first-class technology partners and innovators. Marlabs provides digital-first strategy and advisory services, digital labs for rapid solution incubation and prototyping, and agile engineering to build and scale digital solutions, as well as prize-winning products and solutions in AI and analytics, cybersecurity, and IoT. Its offerings help leading companies around the world make operations sleeker, keep customers closer, transform data into decisions, de-risk cyberspace, boost legacy system performance, and seize novel opportunities and new digital revenue streams. Marlabs has its headquarters in New Jersey, with offices in the United States, Germany, and India. Its 2,500+ global workforce includes highly experienced technology, platform, and industry specialists from the world’s leading technical universities.

Read More

CLOUD SECURITY

Prisma Cloud Delivers Context-Aware Software Composition Analysis to Secure Deployment of Open Source Software

Palo Alto Network | September 23, 2022

Open source software is a critical component of cloud-native applications, allowing developers greater speed and modularity without having to reinvent the wheel each time they code. However, as the Unit 42 Cloud Threat Report, 2H 2021 found, open source software can often contain known vulnerabilities, which can open organizations up to significant risk. Palo Alto Networks (NASDAQ: PANW), the global cybersecurity leader, today introduced the industry's first context-aware software composition analysis (SCA) solution to help developers safely use open source software components. The integration of SCA into Prisma® Cloud further demonstrates why Palo Alto Networks is the leading provider of cloud-native security. Traditional SCA solutions are standalone products that can produce a large number of alerts but lack the runtime context to help fix vulnerabilities. With the addition of SCA to the Prisma Cloud platform, developers and security teams can proactively surface and prioritize known vulnerabilities that impact the application lifecycle (i.e., code, build, deploy and run). Prisma Cloud SCA delivers deep dependency detection and remediation of vulnerabilities in open source software before applications reach production. It can also help developers prioritize remediation based on software components that are already in use. These capabilities are not possible when SCA solutions are deployed as single point products. "Developers leveraging open source software should be able to build applications with the confidence they aren't opening the organization up to risk, With the average application consisting of 75% open source components, SCA on Prisma Cloud is key to protecting the organization from code to cloud and empowering developers to build with speed." Ankur Shah, senior vice president, Prisma Cloud, Palo Alto Networks As a complete cloud-native application protection platform (CNAPP), Prisma Cloud is context-aware at every stage of the application lifecycle to provide a unified view of risk across organizations' cloud environments. Where current approaches to cloud security rely on siloed products that provide intermittent visibility without remediation, Prisma Cloud approaches cloud security with a comprehensive, prevention-first framework. With 188% increase in cloud incident response cases over the past three years, this shift in approach has become mandatory. A complete code-to cloud CNAPP needs to incorporate the following five key principles in order to keep organizations safe: Security from code to cloud — protects applications at every stage of the development lifecycle — from code, build, deploy and run. Continuous, real time visibility — uses real-time and contextual security analysis of cloud environments to help prevent misconfigurations, vulnerabilities and threats. Prevention-first protection — stopping attacks and defending against zero-day vulnerabilities to drive down mean time to remediation. Choice for every cloud journey — aligning security needs with current and future cloud priorities by supporting a breadth of cloud service providers, workload architectures, continuous integration and continuous delivery (CI/CD) pipelines, integrated development environments (IDEs), and repositories with a unified platform Cloud scale security — consistently secures applications as cloud environments scale. In addition to SCA and to further increase the safety of cloud-native applications, Prisma Cloud introduced a software bill of materials (SBOM) among other capabilities for developers to easily maintain and reference a complete codebase inventory of every application component used across cloud environments. Implementing SCA and SBOM ensures Prisma Cloud aligns with these principles. "Buyers looking for cloud-native security solutions need to keep the requirements of microservices security protection in mind. The 'bolted-on' and 'whack-a-mole' approaches are a thing of the past," said Frank Dickson, program vice president, Security and Trust at IDC. "Security should be embedded throughout the application development life cycle. This means that buyers need to fundamentally change their approach to security, although they need to continue to protect their run-time environments, they must also embrace solutions that embed security in the application development process, an approach referred to as 'shift left.' Shift left requires one to think less about security products and more about continuous security processes." About Palo Alto Networks Palo Alto Networks is the world's cybersecurity leader. We innovate to outpace cyberthreats, so organizations can embrace technology with confidence. We provide next-gen cybersecurity to thousands of customers globally, across all sectors. Our best-in-class cybersecurity platforms and services are backed by industry-leading threat intelligence and strengthened by state-of-the-art automation. Whether deploying our products to enable the Zero Trust Enterprise, responding to a security incident, or partnering to deliver better security outcomes through a world-class partner ecosystem, we're committed to helping ensure each day is safer than the one before. It's what makes us the cybersecurity partner of choice.

Read More

CLOUD SECURITY

Sigma Computing Partners with Snowflake to Launch Solution on Healthcare & Life Sciences Data Cloud

Sigma | September 15, 2022

Forescout Technologies, the global leader in automated cybersecurity, today announced a new healthcare cybersecurity partnership with First Health Advisory, a leader in healthcare IT risk management. The partnership creates an innovative approach to connected asset risk management by automating the technical data collection, mitigation and risk reduction measures for a healthcare organization’s entire network that encompasses IT, IoT, OT, and IoMT assets. Healthcare organizations’ networks are under constant attack and often do not have the necessary human capital to oversee the work necessary to thwart a potential threat or attack through quick response. This challenge places added importance on the need to obtain highly skilled outside expertise to operationalize a program and execute ongoing asset risk assessments across the network. “Cybersecurity risk assessments for healthcare organizations are incredibly time consuming, static in nature, and mandated by regulatory requirements. Moreover, the steps to mitigate assessment findings and lower risk are difficult to complete with the current cyber skills shortage, This partnership and new approach that combines intuitive risk assessment and automated mitigation technology will allow healthcare organizations to not only make risk assessments easier and faster to complete, but also free up internal resources to support other critical aspects of the patient experience.” Tamer Baker, vice president, global healthcare, Forescout The audit experience will also see a major transformation through this new partnership. Organizations will have an ability to automate evidence collection and receive ongoing mitigation and vulnerability management support from First Health Advisory staff year-round. “Our partnership delivers the optimal solution healthcare organizations are looking for – the right balance of highly skilled, multi-disciplinary risk assessment personnel with deep understanding of the regulatory landscape together with a dependable cybersecurity platform that can automate risk reduction actions,” said Will Long, CSO of Enterprise Security & Technology at First Health Advisory. “We’re excited about this collaboration and together with Forescout, look forward to helping more healthcare organizations improve their security posture.” About Forescout Forescout Technologies, Inc. delivers cybersecurity automation across the digital terrain, maintaining continuous alignment of customers’ security frameworks with their digital realities, including all asset types – IT, OT, IoT, IoMT. The Forescout Continuum Platform provides complete asset visibility, continuous compliance, network segmentation and a strong foundation for Zero Trust. For more than 20 years, Fortune 100 organizations and government agencies have trusted Forescout to provide automated cybersecurity at scale. Forescout arms customers with data-powered intelligence to accurately detect risks and quickly remediate cyberthreats without disruption of critical business assets.

Read More

CLOUD SECURITY

CoreStack and Marlabs Announce Global Partnership to Expand Cloud Management Offerings

CoreStack | September 15, 2022

CoreStack, a global multi-cloud governance provider that empowers enterprises to unleash the power of the cloud, today announced a global partnership with Marlabs, a leading global digital solutions company. The partnership will integrate the expertise of both companies, bringing extensive digital transformation for their shared customer base to help them stay competitive through increased digital agility. Marlabs will implement CoreStack’s AI-based real-time cloud governance engine in its Cloud Management Platform, allowing its customers a 360-degree broad and deep visibility across cloud financial management (FinOps), security operations (SecOps), and cloud operations (CloudOps) in an integrated single pane of glass. Marlabs will be hosting this solution in the Marlabs Experience Center in Bengaluru, India, to enable clients to leverage the power and value of the solution. CoreStack's AI-powered multi-cloud governance solution has provided customers with transformational outcomes with its NextGen cloud governance fabric. Implementing their technologies have led to fifty percent increases in cloud operational efficiencies, forty percent decreases in cloud costs, and one-hundred percent compliance with security standards. "We have a strong focus on cloud-powered IT management, and this partnership with CoreStack is a concrete step to our commitment in that direction, We are excited to collaborate with CoreStack and implement and support their ground-breaking FinOps, SecOps, and CloudOps offerings as part of our Cloud Management Platform.” Siby Vadakekkara, Chairman and CEO at Marlabs “As Marlabs’ global partner, we will get a chance to enable our joint customers to manage the cloud proactively and confidently, across key verticals like healthcare, life sciences, fintech, retail, and technology,” said Ezhilarasan Natarajan, Founder and CEO at CoreStack Inc. “We are thrilled to partner with them, and we are looking forward to extending our award-winning NextGen Cloud Governance platform to their customers while drawing on their extensive digital expertise to help businesses around the world.” About CoreStack CoreStack is a NextGen cloud business accelerator that empowers enterprises to predictably increase top-line revenues, improve bottom-line efficiencies, and gain a competitive edge through AI-powered real-time cloud governance on autopilot. CoreStack's FinOps, SecOps, and CloudOps solutions embrace, enhance, and extend native-cloud enable reporting, recommendation, remediation and provide single pane-of-glass governance across multi-cloud. Through executive dashboards for comprehensive real-time insights, CoreStack delivers transformative value such as 40% increase in operational efficiencies, 50% decrease in cloud costs, and 100% security assurance and compliance. CoreStack helps 500+ global enterprises govern $2+ billion in annual cloud consumption. Frost & Sullivan, Gartner, and IDC recognized CoreStack as an innovator and leader in cloud management. CoreStack is backed by strategic advisors, including the ex-CEO of Wipro and ex-CIO of Microsoft. The company is a Microsoft Azure Gold Partner, Amazon AWS Advanced Technology Competency Partner, and Google Cloud Build Partner. To learn more, visit www.corestack.io. About Marlabs Marlabs designs and develops advanced digital solutions that help its clients improve business outcomes swiftly and precisely. It succeeds by harnessing the power of the Digital Collective™, which brings together design-led digital innovation with human experience, composable digital platforms, and a collaborative ecosystem of first-class technology partners and innovators. Marlabs provides digital-first strategy and advisory services, digital labs for rapid solution incubation and prototyping, and agile engineering to build and scale digital solutions, as well as prize-winning products and solutions in AI and analytics, cybersecurity, and IoT. Its offerings help leading companies around the world make operations sleeker, keep customers closer, transform data into decisions, de-risk cyberspace, boost legacy system performance, and seize novel opportunities and new digital revenue streams. Marlabs has its headquarters in New Jersey, with offices in the United States, Germany, and India. Its 2,500+ global workforce includes highly experienced technology, platform, and industry specialists from the world’s leading technical universities.

Read More

CLOUD SECURITY

Prisma Cloud Delivers Context-Aware Software Composition Analysis to Secure Deployment of Open Source Software

Palo Alto Network | September 23, 2022

Open source software is a critical component of cloud-native applications, allowing developers greater speed and modularity without having to reinvent the wheel each time they code. However, as the Unit 42 Cloud Threat Report, 2H 2021 found, open source software can often contain known vulnerabilities, which can open organizations up to significant risk. Palo Alto Networks (NASDAQ: PANW), the global cybersecurity leader, today introduced the industry's first context-aware software composition analysis (SCA) solution to help developers safely use open source software components. The integration of SCA into Prisma® Cloud further demonstrates why Palo Alto Networks is the leading provider of cloud-native security. Traditional SCA solutions are standalone products that can produce a large number of alerts but lack the runtime context to help fix vulnerabilities. With the addition of SCA to the Prisma Cloud platform, developers and security teams can proactively surface and prioritize known vulnerabilities that impact the application lifecycle (i.e., code, build, deploy and run). Prisma Cloud SCA delivers deep dependency detection and remediation of vulnerabilities in open source software before applications reach production. It can also help developers prioritize remediation based on software components that are already in use. These capabilities are not possible when SCA solutions are deployed as single point products. "Developers leveraging open source software should be able to build applications with the confidence they aren't opening the organization up to risk, With the average application consisting of 75% open source components, SCA on Prisma Cloud is key to protecting the organization from code to cloud and empowering developers to build with speed." Ankur Shah, senior vice president, Prisma Cloud, Palo Alto Networks As a complete cloud-native application protection platform (CNAPP), Prisma Cloud is context-aware at every stage of the application lifecycle to provide a unified view of risk across organizations' cloud environments. Where current approaches to cloud security rely on siloed products that provide intermittent visibility without remediation, Prisma Cloud approaches cloud security with a comprehensive, prevention-first framework. With 188% increase in cloud incident response cases over the past three years, this shift in approach has become mandatory. A complete code-to cloud CNAPP needs to incorporate the following five key principles in order to keep organizations safe: Security from code to cloud — protects applications at every stage of the development lifecycle — from code, build, deploy and run. Continuous, real time visibility — uses real-time and contextual security analysis of cloud environments to help prevent misconfigurations, vulnerabilities and threats. Prevention-first protection — stopping attacks and defending against zero-day vulnerabilities to drive down mean time to remediation. Choice for every cloud journey — aligning security needs with current and future cloud priorities by supporting a breadth of cloud service providers, workload architectures, continuous integration and continuous delivery (CI/CD) pipelines, integrated development environments (IDEs), and repositories with a unified platform Cloud scale security — consistently secures applications as cloud environments scale. In addition to SCA and to further increase the safety of cloud-native applications, Prisma Cloud introduced a software bill of materials (SBOM) among other capabilities for developers to easily maintain and reference a complete codebase inventory of every application component used across cloud environments. Implementing SCA and SBOM ensures Prisma Cloud aligns with these principles. "Buyers looking for cloud-native security solutions need to keep the requirements of microservices security protection in mind. The 'bolted-on' and 'whack-a-mole' approaches are a thing of the past," said Frank Dickson, program vice president, Security and Trust at IDC. "Security should be embedded throughout the application development life cycle. This means that buyers need to fundamentally change their approach to security, although they need to continue to protect their run-time environments, they must also embrace solutions that embed security in the application development process, an approach referred to as 'shift left.' Shift left requires one to think less about security products and more about continuous security processes." About Palo Alto Networks Palo Alto Networks is the world's cybersecurity leader. We innovate to outpace cyberthreats, so organizations can embrace technology with confidence. We provide next-gen cybersecurity to thousands of customers globally, across all sectors. Our best-in-class cybersecurity platforms and services are backed by industry-leading threat intelligence and strengthened by state-of-the-art automation. Whether deploying our products to enable the Zero Trust Enterprise, responding to a security incident, or partnering to deliver better security outcomes through a world-class partner ecosystem, we're committed to helping ensure each day is safer than the one before. It's what makes us the cybersecurity partner of choice.

Read More

CLOUD SECURITY

Sigma Computing Partners with Snowflake to Launch Solution on Healthcare & Life Sciences Data Cloud

Sigma | September 15, 2022

Forescout Technologies, the global leader in automated cybersecurity, today announced a new healthcare cybersecurity partnership with First Health Advisory, a leader in healthcare IT risk management. The partnership creates an innovative approach to connected asset risk management by automating the technical data collection, mitigation and risk reduction measures for a healthcare organization’s entire network that encompasses IT, IoT, OT, and IoMT assets. Healthcare organizations’ networks are under constant attack and often do not have the necessary human capital to oversee the work necessary to thwart a potential threat or attack through quick response. This challenge places added importance on the need to obtain highly skilled outside expertise to operationalize a program and execute ongoing asset risk assessments across the network. “Cybersecurity risk assessments for healthcare organizations are incredibly time consuming, static in nature, and mandated by regulatory requirements. Moreover, the steps to mitigate assessment findings and lower risk are difficult to complete with the current cyber skills shortage, This partnership and new approach that combines intuitive risk assessment and automated mitigation technology will allow healthcare organizations to not only make risk assessments easier and faster to complete, but also free up internal resources to support other critical aspects of the patient experience.” Tamer Baker, vice president, global healthcare, Forescout The audit experience will also see a major transformation through this new partnership. Organizations will have an ability to automate evidence collection and receive ongoing mitigation and vulnerability management support from First Health Advisory staff year-round. “Our partnership delivers the optimal solution healthcare organizations are looking for – the right balance of highly skilled, multi-disciplinary risk assessment personnel with deep understanding of the regulatory landscape together with a dependable cybersecurity platform that can automate risk reduction actions,” said Will Long, CSO of Enterprise Security & Technology at First Health Advisory. “We’re excited about this collaboration and together with Forescout, look forward to helping more healthcare organizations improve their security posture.” About Forescout Forescout Technologies, Inc. delivers cybersecurity automation across the digital terrain, maintaining continuous alignment of customers’ security frameworks with their digital realities, including all asset types – IT, OT, IoT, IoMT. The Forescout Continuum Platform provides complete asset visibility, continuous compliance, network segmentation and a strong foundation for Zero Trust. For more than 20 years, Fortune 100 organizations and government agencies have trusted Forescout to provide automated cybersecurity at scale. Forescout arms customers with data-powered intelligence to accurately detect risks and quickly remediate cyberthreats without disruption of critical business assets.

Read More