Selected Press Releases

Data Security ISVs Assess Multi-Point Risks and Mask Data for Companies and Their Suppliers

Atlanta, GA, December 12, 2018 -- FortifyData (www.fortifydata.com), a top cyber risk consultancy and platform provider, and Innovative Routines International (IRI) (www.iri.com), a Gartner-listed data discovery and masking ISV, are partnering to help joint customers assess and reduce the risk of data breaches and privacy law violations. FortifyData and IRI will offer multi-source scanning, scoring, and remediation facilities for companies and their suppliers who collect or process primary account numbers (PAN), protected health information (PHI), and other sensitive or personally identifiable information (PII).

FortifyData provides a cyber risk analysis and monitoring platform to communicate cyber risks as quantifiable industry and corporate intelligence; i.e., it scores the likelihood of a breach and recommends tools that help drive investments and decisions to mitigate risk. IRI provides static and dynamic data masking products like FieldShield that find, classify, and de-identify sensitive data in multiple data sources, plus score re-ID risk. IRI also offers safe test data tools and a database firewall to block and audit traffic.

Users who can benefit from the combined offerings include:

Credit Card Data Processors - who can use the FortifyData platform to scan corporate external and internal networks, the dark web for stolen credentials, and other critical risk data points, producing a risk exposure score and recommendations. They can then use IRI FieldShield to find, classify, and encrypt (or tokenize) PANs. This combination supports PCI Prioritized Approach milestones and DSS compliance.

HIPAA Covered Entities and Business Associates - who can use the FortifyData platform to address third-party risk assessment requirements, plus IRI FieldShield to find and de-identify key PHI identifiers to comply with the HIPAA Safe Harbour Rule. FieldShield also scores re-identification risk from remaining PHI quasi-identifiers and further anonymizes them to comply with the Expert Determination Method Rule.

GDPR Data Collectors, Processors and EU Citizens - FortifyData provides monitoring, detection and response solutions to support information security and incident response aspects of GDPR compliance. IRI static and dynamic data masking software can find, deliver, mask, and delete PII in structured and unstructured data sources to comply with GDPR data portability and right-to-be-forgotten provisions.

According to FortifyData CEO Victor Gamra, “joining forces and platforms with IRI adds value for CISOs and compliance teams worldwide. For example, by combining our FortifyScore with FieldShield re-ID risk scores, they can get both holistic and atomic information and recommendations at the same time. We can also help companies more accurately assess third party risks, thus providing complete visibility on exposed, inherent risk,” he added.