Menlo Park, California, September 30, 2022 – Blue Lava, the first security program management platform built by and for Chief Information Security Officers (CISOs), is honored to be a recognized as a Sample Vendor for the second year in a row for both the Cybersecurity Performance Management and Cybersecurity Maturity Assessment categories in the new Gartner Hype Cycle for Cyber Risk Management 2022.

This Hype Cycle speaks to the maturity of Cyber Risk Management. We think Blue Lava has both a proven mainstream use case in cybersecurity maturity assessments and is helping to develop the future of the market via performance management. To help CISOs measure, mitigate and communicate their cyber risks, Blue Lava has introduced a new Risk Dashboard and toolset within its Security Program Management (SPM) platform.

In the report Gartner notes a common obstacle for security professionals is that most industry standards and frameworks for cybersecurity reflect the need for implementation of controls or capabilities with little guidance on how to address their performance and delivery. Gartner also recommends prioritizing investments by facilitating informed conversations with executives and integrating risk, value and cost optimization into business cases, funding requests, and board reporting. The Blue Lava team not only fully endorses these observations, we think they are the key drivers for building a solution to address these universal challenges.

The Blue Lava SPM platform provides a comprehensive and quantitative baseline view of security maturity, including detailed findings and remediation guidance. This, along with the new risk solution, equips CISOs and other security leaders with the ability to align cybersecurity risks, priorities, projects, and resource allocation recommendations with business priorities. Graphics and reports are also tailored for board-level communications including the alignment of security initiatives to business areas, coverage against frameworks like NIST-CSF, risk-based project prioritization, peer benchmarking, and progress against targets over time.

“We are thrilled to be recognized as a Sample Vendor in the Gartner Hype Cycle for the second year in a row,” said David Walter, Chief Executive Officer of Blue Lava. “We believe this acknowledgement by Gartner once again affirms our commitment as a pioneer in the emerging cybersecurity program management market, as well as our position in the cyber risk management space.”

Blue Lava is designed to help CISOs communicate the business value of security and to secure support and champion security awareness in the boardroom. Built on a community-sourced model by experienced security professionals, Blue Lava guides security leaders to measure, optimize, and communicate their security program quickly, confidently, and aligned to business objectives.

Blue Lava is dedicated to solving security program management challenges and supporting the continuous process that enables security leaders to ensure they optimize their program’s maturity. It has been met with resounding success to its customers. Accordingly, the platform’s unique framework has positioned the company for sharp market growth and expansion opportunities.

The Gartner report ‘Hype Cycle for Cyber Risk Management, 2022’ was previously titled as ‘Hype Cycle for Cyber and IT Risk Management, 2021’in 2021.

GARTNER and HYPE CYCLE are a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and are used herein with permission. All rights reserved.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About Blue Lava

Blue Lava manages the business of security. Built by a team of tenured security operators, Blue Lava is the industry’s first security program management platform, guiding CISOs to measure, optimize, and communicate their program with confidence and ease. Blue Lava has built long-term relationships with customers, earning the trust of executive teams across various industries, from small businesses to global enterprises.