Rangeforce provides a cloud-based platform for developing, selling and executing live, hands-on cyber training on real systems, creating a marketplace for security training. Rangeforce was formerly known as Vequrity. The company was founded in 2014 and is based in Norfolk, Virginia.
ESPs containing Rangeforce
The ESP matrix leverages data and analyst insight to identify and rank leading companies in a given technology landscape.
The cybersecurity skills training platforms market offers a range of solutions designed to improve the skills and knowledge of cybersecurity professionals. These solutions provide training on a wide range of cybersecurity topics, including threat detection and response, vulnerability management, and network security. By leveraging these solutions, businesses can ensure that their cybersecurity pro…
Expert Collections containing Rangeforce
Expert Collections are analyst-curated lists that highlight the companies you need to know in the most important technology spaces.
Rangeforce is included in 2 Expert Collections, including Education Technology (Edtech).
Education Technology (Edtech)
These companies offer tech-enabled solutions that facilitate education and learning for people of all ages, from pre-K to adult and professional education.
These companies protect organizations from digital threats.
Latest Rangeforce News
Nov 5, 2023
To Improve Cyber Defenses, Practice for Disaster Views: 0 If you’re not already using crisis simulations as a key part of incident preparation and response, it’s time to start stress-testing personnel and protocols to help teams develop skills and readiness for difficult situations. “We’re seeing more and more demand, as well as requirements established by boards , cyber insurance carriers , or other key stakeholders, to perform these simulations annually or more,” says Mark Lance, vice president of digital forensics and incident response (DFIR) and threat intelligence at GuidePoint Security. Not only do these exercises help employees understand their roles and responsibilities during an incident, but they’re also a great way to educate people. As an example, most people don’t understand the intricacies involved during a ransomware incident, the multitude of third parties involved, and key decision points unless they’ve already been through that situation. “A crisis simulation not only familiarizes them with their own incident response processes, but it also builds awareness of relevant threats, the associated risks, and critical decisions,” Lance says. In an era of constantly evolving cyber threats, crisis simulations offer organizations a vital testing ground for fortifying their cybersecurity defenses, arming teams with the skills and resilience to protect against a multitude of risks. Types of Crisis Simulations The simplest simulation is a “tabletop exercise,” where an organization gathers the appropriate stakeholders, presents a disaster or attack scenario, has each stakeholder talk through their responses, and surfaces strengths and weaknesses in dependencies through collaboration, says Casey Ellis, founder and CTO at Bugcrowd. “A good example is a ransomware tabletop exercise simulating denial of production systems, failover systems, and the deletion of backups,” Ellis says. “The thought of disaster recovery being unavailable is a pretty counterintuitive one, and it’s a scenario that is better thought through beforehand versus on the fly.” The objective of a tabletop is to create a “near-real” crisis condition and see how the team responds, says Erik Gaston, vice president of global executive engagement at Tanium. “This includes communications during a crisis and escalation,” he explains. “This helps not only uncover potential issues before they occur, but [it ensures] that the crisis and incident response plans do not have holes in them.” These exercises also help verify that the teams, especially the blue team, are making good collaborative decisions and not operating in the traditional silos that many security organizations run in. Alternatively, organizations can use red-team penetration tests to simulate real-world attacks. This can be achieved by employing ethical hackers or an internal red team that attempts to breach an organization’s defenses. “The objective is to identify vulnerabilities and assess the organization’s incident response capabilities,” explains Mike Walters, president and co-founder of Action1. “This approach provides valuable insights into an organization’s readiness to combat cyber threats.” Organizations could also consider a public bug bounty program as a type of “ongoing crisis simulation,” Bugcrowd’s Ellis says, explaining that creating the same types of incentives for white-hat hackers as those that exist for criminals unleashes the community’s creativity, and the vulnerabilities and risks that are surfaced are specific, actionable, and highly relevant. “A bug bounty program focuses mostly on prevention,” he notes. Improve Defense by Besting Simulation Challenges The primary challenge organizations face when executing crisis simulations is determining the right level of difficulty, says Tanner Howell, director of solutions engineering at RangeForce. “With threat actors ranging from script kiddies to nation-states, it’s vital to strike a balance of difficulty and relevance,” he says. “If the simulation is too simple, it won’t effectively test the playbooks. Too difficult, and team engagement may decrease.” Organizations should expand simulations beyond technical aspects to include regulatory compliance, public relations strategies, customer communications, and other critical areas, Walters says. “These measures will help ensure that crisis simulations are comprehensive and better prepare the organization for a wide range of cybersecurity scenarios,” he notes. Taavi Must, CEO of RangeForce, says organizations can implement some key best practices to improve team collaboration, readiness, and defensive posture. “Managers can perform business analysis to identify the most applicable threats to the organization,” he says. “This allows teams to focus their already precious time around what matters most to them.” With crisis exercises, he adds, teams can test their skills in a live environment with real threats. “This means having teams perform without preconfigured alerts, playbooks, and the guardrails of automation,” Must says. “This allows teams to truly understand the threat, without falling back on less challenging or passive habits.” Teams can benchmark their performance in these simulations, allowing them to assess and quickly mitigate any gaps they find, he explains. Train Like You Fight With the threat landscape and attack surface for most companies expanding at a rapid rate, IT organizations can never take their eyes off the ball. “This extends to the greater organization, where people need to be vigilant and quickly identify specific types of attacks, like ransomware and even extortion, that can lead to very costly situations,” says Gaston. From his perspective, dedicated teams are critical, as organizations must always be looking for signs of breach across both security and IT operations. The more quickly teams can respond, the better chance the company has of not ending up in the news — or worse. The key way to move from reactive to proactive is to “train like you fight” as often as possible, Gaston says. “When you have your best players, tools, and a refined program, playbooks, and processes being practiced and perfected every day, it ensures that the team stays in a preventative posture and maintains a high level of resiliency,” he adds. “Breaches will happen, but teams taking a preventative posture have far fewer breaches and bounce back much quicker when they do happen.” Solicit Feedback, Apply Lessons The lessons learned from simulations should be used to update and improve incident response plans. Specialized facilitators leading these sessions “ensure you have the right involvement from all participants — both loud and quiet voices.” GuidePoint’s Lance notes. “[They also] drive the established timelines, exercise the critical discussion points, and can provide tangible feedback that will be required for improvements resulting from the session.” It is also important to engage employees at all levels , ranging from entry-level staff to senior management, in these simulations. “This inclusive approach ensures that everyone within the organization understands the importance of cyber resilience and their role in maintaining it,” Action1’s Walters explains. In addition, collecting feedback from participants after each simulation is vital to identify areas that require improvement. Insights can then be used to make necessary adjustments for future simulations, according to Walters. Collaborating with cybersecurity experts and organizations in designing and conducting crisis simulations is highly recommended, he says. “Such partnerships enable the creation of simulations that closely reflect real-world threats,” Walters adds.
Rangeforce Frequently Asked Questions (FAQ)
When was Rangeforce founded?
Rangeforce was founded in 2014.
Where is Rangeforce's headquarters?
Rangeforce's headquarters is located at 440 Monticello Ave, Norfolk.
What is Rangeforce's latest funding round?
Rangeforce's latest funding round is Unattributed VC.
How much did Rangeforce raise?
Rangeforce raised a total of $37.62M.
Who are the investors of Rangeforce?
Investors of Rangeforce include KPN Ventures, Trind Ventures, Paladin Capital Group, Cisco Investments, Energy Impact Partners and 7 more.
Who are Rangeforce's competitors?
Competitors of Rangeforce include SimSpace and 7 more.
Compare Rangeforce to Competitors
GoCoach is a talent development company that operates in the human resources and professional development industry. The company offers a platform called SkillCycle, which provides services such as performance management, workforce insights, and a coaching marketplace, all aimed at supporting employee development and retention. The company primarily serves businesses looking to upskill their workforce and streamline their people operations. It was founded in 2018 and is based in Philadelphia, Pennsylvania.
Guild focuses on career development and education. The company offers services such as education and learning programs, career development, and one-on-one coaching to help employees grow personally and professionally. Guild primarily sells to large employers, aiming to help them attract and retain top talent while building the workforce of the future. Guild was formerly known as Guild Education. It was founded in 2015 and is based in Denver, Colorado.
Maria Schools is a lifelong learning institution focused on equipping professionals with essential skills for the digital and responsible business world. The company offers avant-garde training programs that teach employees how to adapt and thrive in the rapidly changing digital era, with a focus on continuous learning and digital transformation. Maria Schools primarily serves the professional development and corporate training sectors, offering courses in entrepreneurship, product management, storytelling, and corporate responsibility. It was founded in 2020 and is based in Paris, France.
New Horizons Worldwide is a provider of modern IT training solutions and professional development programs across various sectors. The company offers a comprehensive range of services including live instructor-led online and in-person training courses, certification preparation, and corporate training in areas such as project management, cybersecurity, cloud technology, data analytics, and programming. New Horizons primarily caters to individuals seeking career advancement and organizations aiming to upskill their workforce. It was founded in 1982 and is based in Conshohocken, Pennsylvania.
QuickStart is a company focused on providing IT training and certification courses in the education and technology sectors. The company offers a range of online courses and bootcamps in areas such as cybersecurity, cloud engineering, data science, analytics, and software engineering. These offerings are designed to equip both new and established IT professionals with the skills needed to stay competitive in the rapidly evolving IT industry. QuickStart was formerly known as QuickStart Technologies. It was founded in 2016 and is based in Austin, Texas.
Toolwire is a learning-by-doing software-as-a-service company that aims to provide the quickest and most effective way to develop system skills and complete competency certifications.