SOURCE: Cenzic

June 27, 2005 09:00 ET

Cenzic Launches New Managed Service to Remotely Assess Web Applications for Security Vulnerabilities and Compliance Issues

Cenzic ClickToSecure™ Allows Organizations to Rapidly and Easily Evaluate Web Application Security Without Investments in Infrastructure, Personnel or Training

SANTA CLARA, CA -- (MARKET WIRE) -- June 27, 2005 -- Cenzic, Inc. today introduced a new managed service that helps customers remotely assess commercial and custom web-applications for security vulnerabilities and compliance issues. Available immediately, Cenzic ClickToSecure is one of the industry's first solutions to combine the power of an enterprise-class application security assessment product with the flexibility of a managed security service.

Web-based applications, which have proliferated across all industries, present irresistible temptations to hackers. Due to their inherently open nature, these applications contain vulnerabilities that, when exploited, can lead directly to information theft, regulatory penalties, financial losses and reputation damage. When companies are unable to adequately test and protect their web applications in-house, they must outsource the project to application assessment consultants for accurate results. However, because qualified consultants are rare and very expensive, testing complex web applications for vulnerabilities manually can be very costly and time consuming.

Cenzic ClickToSecure overcomes these challenges by bringing together Cenzic's leading automated assessment technology and professional services expertise to provide highly accurate and cost-effective application security analysis. ClickToSecure enables customers to minimize the risk of running critical business applications via the web by addressing emerging application threats and minimizing the business impact of application security initiatives.

"For most organizations, performing regular security assessments on web applications, exposing vulnerabilities and quickly fixing them are complex and costly undertakings," said John Weinschenk, Cenzic's president and CEO. "Cenzic ClickToSecure allows companies of all sizes to achieve a level of application security that typically has been available only to large organizations with the financial and human resources to deploy and manage an application security assessment solution in-house. As important, the solution allows customers to ensure optimal protection of business-critical web applications and therefore focus on core business operations. What's great about this service is that customers get the benefit of Cenzic Hailstorm, the leading application security assessment product, combined with security professionals without any major in-house expertise."

Cenzic ClickToSecure delivers rapid application security analysis, helping organizations adhere to internal policy, remain compliant and improve application security in the face of today's continually evolving threats. The managed service is based on the company's unique stateful assessment methodology, which emulates the way real hackers work in order to test applications for security vulnerabilities and compliance issues. By emulating real-world hacking behaviors and testing applications remotely, ClickToSecure provides companies with highly accurate results without requiring in-house experts to deploy a software solution. Key benefits of ClickToSecure include:

--  ClickToSecure requires no additional investments in hardware, software
    or IT personnel. Application assessments are performed remotely with
    minimal impact on IT or business operations.
--  No in-house expertise required -- Customers benefit from Cenzic's
    proven professional services organization, which manages the assessment
    from start to finish, including analysis, reporting and recommendations to
    remediate discovered vulnerabilities.
--  Rapid time to value -- ClickToSecure leverages Hailstorm, Cenzic's
    automated security assessment software, allowing customers to get a jump-
    start on conducting an assessment with no installation or implementation
--  Flexible pricing -- ClickToSecure enables customers to pay on a per
    application assessment basis or schedule an ongoing assessment program.
--  Deployment options -- ClickToSecure customers can transfer application
    Cenzic's assessment capabilities in-house at anytime. Cenzic provides full
    migration services to help customers optimize their application security
Pricing and availability

Assessments through the Cenzic ClickToSecure service are available immediately on a per application basis or as part of an ongoing assessment program.

About Cenzic

Cenzic provides Hailstorm®, the breakthrough enterprise software suite for automated application security assessment and compliance that allows corporations and government organizations to dramatically improve the security of commercial and custom applications. While automating the vulnerability management and penetration testing process for web applications, Hailstorm enables security experts, QA professionals, and developers to work together to assess, analyze, and remediate applications for security vulnerabilities, and verify compliance with security policies. Benefits include reduced security risk and liability, lower development and testing costs, and faster time-to-market. Cenzic's customers are currently in the financial services and e-marketplace sectors. For more information visit

Contact Information

    Jason Throckmorton or Jesse Odell
    Email Contact