In the news

PICNIC WELCOMES INDUSTRIAL CYBERSECURITY PIONEER ROBERT M. LEE TO ITS BOARD OF ADVISORS

WASHINGTON, D.C. – August 3, 2022 – Picnic, the creators of the industry’s first automated enterprise-wide social engineering prevention and detection platform, announced today that industrial cybersecurity pioneer Robert M. Lee has joined their Board of Advisors.

Lee is the founder and CEO at Dragos Inc., an industrial cybersecurity technology company on a mission to safeguard civilization. He is a world-renowned innovator and expert in cybersecurity for industrial control systems and operational technology (ICS/OT) and highly sought after by both security professionals and governments for his advice and input.

“We welcome Robert to our Board of Advisors with great enthusiasm,” said Picnic CEO Matt Polak. “Robert’s track record speaks for itself, and he works tirelessly to keep people safe by defending critical infrastructure with the most effective OT cybersecurity platform there is. At Picnic, we support this mission by protecting the human guardians on the defensive frontlines of hardened cybersecurity systems. I look forward to our future together.”

“Social engineering is a key and growing threat to industrial organizations and Picnic offers important innovations to help the community strengthen its defenses,” said Lee. “Picnic’s team understands how threats perform reconnaissance and initial targeting against companies and has built a privacy-forward platform for organizations looking to strengthen their cybersecurity. I am excited at the opportunity to help Picnic advance what they do.”

About Picnic
Picnic Corporation is an innovative cybersecurity firm that predicts and prevents social engineering attacks. Picnic’s one-of-a-kind automated technology platform reverse-engineers threat actor reconnaissance and detects how social engineering attacks are likely to strike. With this power, Picnic customers can see themselves from the hacker’s point of view, automatically remove the info hackers use to craft social engineering attacks, and ultimately prevent them from happening. Backed by leading institutional investors and a top-flight group of advisors, Picnic’s technology combines human intelligence, security, and mathematics to provide unparalleled, automated protection from social engineering. For more information, contact Picnic at [email protected], visit us at getpicnic.com, and follow us on Twitter and LinkedIn.

For media inquiries, contact us at: [email protected]
Copyright © 2022 Picnic Corporation


Picnic appoints Troy Roberts as VP of Sales

WASHINGTON, D.C. – April 11, 2022 – Picnic, the industry’s first automated social engineering prevention and detection platform, announced today the appointment of veteran sales leader Troy Roberts as Vice President of Sales. Roberts brings to Picnic an outstanding and proven track record of scaling businesses, boosting teams, and driving sustained revenue growth. As Vice President of Sales, Roberts will be responsible for building the sales organization and accelerating Picnic’s growth.

Roberts has over twenty years of experience and expertise in enterprise software, cybersecurity, and digital transformation. He was most recently Vice President of Worldwide Sales at Dragos. Previous experience includes leading sales organizations at Dell, Symantec, HPE, and Forcepoint. Roberts is a committed “servant leader” who is passionate about elevating the performance of his teams and enabling them to achieve exceptional results.

“We are excited to welcome Troy to the Picnic team,” said CEO Matt Polak. “He has an impressive and extensive history of taking companies to the next level and I look forward to building Picnic with him.”

“I’m thrilled to be a part of this pioneering company,” said Roberts. “Picnic’s automated technology solution gives companies a new capability that proactively hardens an organization against the single largest problem in cybersecurity today: social engineering.”

About Picnic
Picnic Corporation is an innovative cybersecurity firm that predicts and prevents social engineering attacks. Picnic’s one-of-a-kind automated technology platform reverse-engineers threat actor reconnaissance and detects how social engineering attacks are likely to strike. With this power, Picnic customers can see themselves from the hacker’s point of view, automatically remove the info hackers use to craft social engineering attacks, and ultimately prevent them from happening. Backed by leading institutional investors and a top-flight group of advisors, Picnic’s technology combines human intelligence, security, and mathematics to provide unparalleled, automated protection from social engineering. For more information, contact Picnic at [email protected], visit us at getpicnic.com, and follow us on Twitter and LinkedIn.

For media inquiries, contact us at: [email protected]
Copyright © 2022 Picnic Corporation


PICNIC MAINTAINS EFFECTIVE SECURITY CONTROLS OVER ITS PLATFORM ACCORDING TO RECENT SOC 2 Type II REPORT

Meeting all five Trust Service Principles (TSPs) along with HIPAA Security Rule Requirements, Picnic is set to deliver customer confidence in its first-of-its-kind enterprise-wide social engineering protection platform.


WASHINGTON, D.C. – March 24, 2022 – Picnic, the industry’s first social engineering prevention and detection platform, announced today that the company has undergone a System and Organization Controls (SOC) 2 Type II examination resulting in a CPA’s report stating that management of Picnic maintained effective controls over the security, availability, processing integrity, confidentiality, and privacy of its platform.

A SOC 2 Type II report is designed to meet the needs of existing or potential customers who need assurance about the effectiveness of controls used by the service organization to process customers’ information.

Picnic proactively protects people and companies from social engineering threats that get around traditional cybersecurity controls. The company’s platform does this by continuously monitoring the public data of organizations and their people from over 1,000 data sources, analyzing what data an attacker could use to create a social engineering scam, and then removing that data to prevent an attack. The technology works proactively, automatically, seamlessly, and continuously to protect individuals, their organizations, and their families.

“Until now, companies have struggled with balancing data security and privacy. At Picnic, we provide security through privacy. Since our platform delivers unprecedented insights into an organization’s data vulnerabilities, it is important for our clients to know that we do this with integrity and with no compromises when it comes to keeping people’s personal info secure,” said Picnic CEO Matt Polak. “We are pleased that our SOC 2 Type II report has shown we have effective controls in place to mitigate risks and ensure customer confidence.”

The following principles and related criteria have been developed by the American Institute of CPAs (AICPA) for use by practitioners in the performance of trust services engagements:

  • Security: The system is protected against unauthorized access (both physical and logical).
  • Availability: The system is available for operation and use as committed or agreed.
  • Processing Integrity: System processing is complete, valid, accurate, timely, and authorized to meet the entity’s objectives.
  • Confidentiality: Information designated as confidential is protected as committed or agreed.
  • Privacy: Personal information is collected, used, retained, disclosed, and disposed of to meet the entity’s objectives.
  • HIPAA Security Rule Requirements: The system is compliant with the applicable HIPAA Security Rule requirements set forth in the U.S. Department of Health and Human Services’ (HHS) Health Information Portability and Accountability Act.

A SOC 2 Type II report is an internal control report on the services provided by a service organization to its customers and provides valuable information that existing and potential customers of the service organization need to assess and address the risks associated with an outsourced service. The engagement was performed by BARR Advisory, P.A.

About Picnic
Picnic Corporation is an innovative cybersecurity firm that predicts and prevents social engineering attacks. Picnic’s one-of-a-kind automated technology platform reverse-engineers threat actor reconnaissance and detects how social engineering attacks are likely to strike. With this power, Picnic customers can see themselves from the hacker’s point of view, automatically remove the info hackers use to craft social engineering attacks, and ultimately prevent them from happening. Backed by leading institutional investors and a top-flight group of advisors, Picnic’s technology combines human intelligence, security, and mathematics to provide unparalleled, automated protection from social engineering. For more information, contact Picnic at [email protected], visit us at getpicnic.com, and follow us on Twitter and LinkedIn.

For media inquiries, contact us at: [email protected]
Copyright © 2022 Picnic Corporation


PICNIC EMERGEST FROM STEALTH WITH $14 MILLION IN SERIES A TO LAUNCH INDUSTRY’S FIRST SOCIAL ENGINEERING PREVENTION PLATFORM

Washington, D.C. – February 23, 2022 – Picnic, the industry’s first social engineering prevention and detection platform, announced today $14 million in Series A funding, led by Crosslink Capital, Rally Ventures, and with continued participation from Energy Impact Partners.

As the root cause of almost every major cyber-attack, social engineering involves attackers harvesting exposed public information to effectively research and attack people, companies, and supply chains. Today’s hackers are sidestepping traditional cybersecurity defenses and relying on employee’s access to systems in order to enter and exfiltrate data.

“2021 saw some of the largest ransomware attacks on critical infrastructure and the private sector. If as an industry we want to stop ransomware and other major attack vectors before they even start, we need to start thinking differently about how to solve the problem,” said Matt Polak, Founder at Picnic. “At Picnic, we recognized early that this is a human problem, not a technical problem. Through the company’s platform, organizations can harden the human data layer – thus preventing attackers from gaining employee access.”

Picnic is a cybersecurity firm specializing in comprehensive social engineering protection for businesses and their people.

  • Predict: Enables organizations to see what attackers see and predict who may be targeted. The platform emulates attacker reconnaissance at scale with 1000+ data sources across social media, data brokers, breach repositories, the deep and dark web.
  • Prevent: Neutralizes and eliminates data beyond the firewall that could fuel attacks. Picnic’s intelligence enriches existing security investments by making them more predictive, while removing exposed information about VIPs, company, and employees.
  • Protect: Continuously monitor publicly available data and latest attack vectors. Through the ability to measure and manage employees’ digital footprints, organizations can stay on top of countermeasures against most recent social engineering attacks.

“Companies continue to make investments in cybersecurity awareness training and phishing simulations to educate employees against clicking on malicious links. Unfortunately, these efforts inevitably fall short. With Picnic, organizations and their people can take control of their privacy in a way that they couldn’t before,” states Charles Beeler, Managing Director and co-founder of Rally Ventures. “Picnic’s dedication to security through privacy, the unparalleled bird’s eye view of information and automated actions that the platform provides its users, and the power and protection they give to employees and their families are all things we are proud to be a part of.”

Jim Routh, long-time former CISO of many large companies and current Board member of Supply Wisdom, GrammaTech, Unbiased Security and the Global Resiliency Federation, had this to say: “Digital consumers are unaware of how information about them is being saved, aggregated, and circulated today. The boundary between an individual’s work and personal life has blurred. This has created a unique and complex cybersecurity challenge for the enterprise: how to protect employees in an environment where their data is being used against them by social engineers. The primary challenge with this dilemma is that it continues to grow larger due to the success of cyber criminals. Picnic has created an employee-forward cybersecurity platform that empowers businesses and security specialists to know and manage digital footprints beyond the conventional perimeter while offering a benefit to the employee.”

To schedule a demo of the platform, go to https://getpicnic.com/schedule-a-demo/.

About Picnic
Picnic Corporation is an innovative cybersecurity firm that predicts and prevents social engineering attacks. Picnic’s one-of-a-kind automated technology platform reverse-engineers threat actor reconnaissance and detects how social engineering attacks are likely to strike. With this power, Picnic customers can see themselves from the hacker’s point of view, automatically remove the info hackers use to craft social engineering attacks, and ultimately prevent them from happening. Backed by leading institutional investors and a top-flight group of advisors, Picnic’s technology combines human intelligence, security, and mathematics to provide unparalleled, automated protection from social engineering. For more information, contact Picnic at [email protected], visit us at getpicnic.com, and follow us on Twitter and LinkedIn.

For media inquiries, contact us at: [email protected]
Copyright © 2022 Picnic Corporation