The Chertoff Group works with a small set of trusted, best-in-class partners to offer technical services that complement our core offerings.
The unique architectures and protocols of Industrial Control System (ICS) networks and the developing state of ICS cybersecurity pose new challenges for many asset owners, confronting them with an unclear threat landscape and a shortage of ICS/Operational Technology (OT) security expertise. Our partner Dragos includes industrial security practitioners from the U.S. government cyber teams and around the private sector who provide boots-on-the-ground experience to industrial responders to help them effectively prepare for, contain and remediate potential ICS compromises.
Automated validation tools are now available that can run threat tactic-specific diagnostics on an organization’s technology stack. For The Chertoff Group Cyber Risk Diagnostic tool, we work with AttackIQ, using its automated “controls assurance” testing platform, which contains a vast library of mini-testing scripts aligned to a comprehensive knowledge-based of threat actor tactics, techniques and procedures developed by leading U.S. research and development organization MITRE (the MITRE ATT&CKTM framework).
Synopsys Software Integrity Group
The partnership between The Chertoff Group and Synopsys Software Integrity Group helps customers build more secure software faster through a combination of market-leading software security and cyber risk management capabilities. Benefits of our collaborative approach include timely cyber policy insight, unified threat modeling that facilitates better defensive coverage, as well as technical testing and validation to ensure controls are operating as intended. Learn more about our partner Synopsys at https://www.synopsys.com/software-integrity.html