AttackIQ has announced its entry into the South African market with the appointment of Luke Cifarelli as its Country Manager. This move signals AttackIQ’s commitment to the African region and its mission to help organisations build and maintain a threat-informed defence against today’s relentless cyber threat environment.
AttackIQ is a founding sponsor and governing board member of the MITRE Engenuity Center for Threat-Informed Defence, a non-profit research organization co-founded with other industry leaders including JP Morgan Chase, IBM Security, and Salesforce. The AttackIQ platform is architected around the MITRE ATT&CK framework, using it as a foundational blueprint for continuous security validation and exposure management.
Recognising that effective security validation is a necessity for businesses of all sizes and maturities, AttackIQ’s portfolio is designed to democratise access to enterprise-grade testing. “AttackIQ’s Flex offering delivers essential, agent-less security validation that is both cost-effective and simple to deploy, bringing the power of a threat-informed defence within reach of mid-market organizations and streamlining operations for lean security teams.”
Cifarelli highlights the significance of this move into Africa as it brings the AttackIQ world-class platform to the region. “AttackIQ is trusted by security teams globally for continuous validation of the efficacy of businesses’ security controls against the latest adversary tactics and techniques,” says Cifarelli, a recognised expert in the cybersecurity field who will spearhead AttackIQ’s initiatives across the region.
He adds AttackIQ’s Strategic Partner Program provides a framework for MSSPs and technology firms to build and deliver managed security validation services. “This mature program includes dedicated technical enablement, go-to-market support, and API-level integrations designed for multi-tenancy. A testament to this partner-first approach is its official technology partnership with several global tech giants including Microsoft. AttackIQ is co-sell ready through the Microsoft One Commercial Partner program and offers direct integrations with Microsoft Sentinel (SIEM) and Microsoft Defender XDR. This allows joint customers to seamlessly operationalize continuous security validation, running tests and feeding results directly into their existing Microsoft security operations and tools,” he confirms.
Cifarelli expands: “The African continent is experiencing rapid digital transformation and connectivity growth, simultaneously making it a prime target for cyber adversaries. A recent wave of high-impact breaches across financial services, state-owned enterprises, and critical infrastructure has exposed the urgent need for a fundamental shift in security strategy—from reactive, point-in-time checks to continuous, threat-informed security validation.”
He notes AttackIQ’s investment in a local presence addresses this critical gap directly. “It provides African organisations with the expertise and technology not just to test their defences, but to continuously validate and measure their security efficacy against real-world adversary behaviours, thereby demonstrably reducing risk and improving resilience,” he concludes.
