What We Do
How we do it
Our Threat Response Unit (TRU) publishes security advisories, blogs, reports, industry publications and webinars based on its original research and the insights driven through proactive threat hunts.
View Threat Intelligence Resources →
Mar 15, 2023
CVE-2023-23397 - Microsoft Outlook Elevation of Privilege Zero-Day Vulnerability
THE THREAT On March 14th, as part of Microsoft’s monthly Patch Tuesday release, the company disclosed a critical, actively exploited vulnerability impacting Microsoft Office and Outlook. The…
Read More
View all Advisories →
About Us
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 2000+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Read about how we got here
Leadership Work at eSentire
Mar 20, 2023
Exertis and eSentire Partner to Deliver 24/7 Multi-Signal MDR, Digital Forensics & IR Services and Exposure Management to Organisations Across the UK, Ireland, and Europe
Basingstoke, UK– 20 March, 2023. Leading technology distributor, Exertis, announced today that it has bolstered its cybersecurity services, adding eSentire, the Authority in Managed Detection and Response (MDR), to its Enterprise portfolio of offerings. eSentire’s award-winning, 24/7 multi-signal MDR, Digital Forensics & Incident Response (IR), and Exposure Management services will be available…
Read More
e3 Ecosystem
We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.
Learn more
Apply to become an e3 ecosystem partner with eSentire, the Authority in Managed Detection and Response.
Login to the Partner Portal for resources and content for current partners.
News releases — Dec 16, 2014

eSentire releases cybersecurity documentation framework

3 minutes read


Culled from years of industry expertise, this Information Security Policy Framework provides Registered Investment Advisors the means to proactively document and manage their defense posture while responding to due diligence and regulatory requirements.

NEW YORK, Dec. 16, 2014 – eSentire, Inc., the leader in Active Threat Protection cyber-solutions and managed information security services, today announced general availability of its information security policy guidance and incident response documentation kit. The documents, available at no charge (under a Creative Commons Attribution/Non-Commercial License), provide a starting point for Registered Investment Advisors (RIA’s), allowing them to create an actionable framework for responding to and managing a more proactive cybersecurity defense posture.

Responding to pressure from boards of directors, investors, and a growing number of regulatory agencies, including the U.S. Securities and Exchange Commission, organizations today need governance frameworks that define pragmatic cybersecurity practices appropriate to their size, company culture, and risk surface. Organizations like the OCIE-SEC and American Bar Association, serve industries rooted in risk, and focus on today’s cybersecurity issues by providing the ‘what’ while delivering governance guidelines. eSentire’s Infosec Framework Documentation Kit provides the ‘how’ of defense, based on over a decade protecting these types of businesses from a continuous evolution and maturation of sophisticated cybersecurity threats and threat vectors.

“Increasing regulatory and due diligence demands, coupled with the barrage of threats and elaborate threat vectors, result in CTOs facing a bifurcated job of securing their environments and implementing cybersecurity defenses,” said eSentire Chief Security Strategist Eldon Sprickerhoff. “Since the SEC Risk Alert was released, I have seen several consulting companies ‘instantly’ become experts in Hedge Fund Cyber Security and offering consulting services to provide boilerplate information security policies to funds. My hope is that our release of both the information security policy and incident response starter kit will act as an antidote, and truly aid resource-constrained IT teams in answering inbound information security queries, particularly those referencing Question Two in the OCIE-SEC 28 Questions Risk Alert.”

Both documents are released under Creative Commons license with attribution to eSentire, permitting extremely broad non-commercial use of the source material. Sprickerhoff’s hope is that hedge fund technology groups, such as Alternative Investment Tech Executives Club (AITEC) and Hedge Fund Tech Connect (HFTC), are able to form sub-committees to help interested users to learn from each other while they fine-tune documentation for their own firms.

eSentire is the leading managed security service provider to more than 450 financial services firms, legal, extractive and healthcare organizations. The company pioneered Continuous Advanced Threat Protection, which leading analyst firm Gartner Research began covering in June 2014 as a best practices framework for defending against the most egregious cyber security attacks. eSentire delivers continuous monitoring, real-time threat detection and containment technology as a service with human threat analysts on a 24x7x365 basis. The company challenges legacy security approaches, combining behavior-based analytics, immediate mitigation and advanced threat intelligence.

About eSentire

eSentire® is the leader in Active Threat Protection solutions and services, the most comprehensive way to defend enterprises from advanced and never-before-seen cyber threats. eSentire’s flagship offering, Network Interceptor, challenges legacy security approaches, combining behavior-based analytics, immediate mitigation and actionable intelligence on a 24x7x365 basis. The company’s dedicated team of security experts continuously monitors customer networks to detect and block cyber attacks in real-time. Protecting more than $2.0 trillion in combined AUM, eSentire is the trusted choice for security decision-makers in financial services, healthcare, mining, energy, engineering and construction, legal services, and technology companies. Recently, eSentire was named the HFMWeek 2014 Best Hedge Fund Security Service Provider. In late 2013, eSentire was named to the Deloitte Technology Fast 50 Companies to Watch and cited as a Canadian Innovation Exchange CIX Top 20 most innovative Canadian company. For more information visit www.esentire.com and follow @esentire.