SOURCE: Cenzic

May 29, 2007 08:15 ET

Toronto Catholic School District Secures Web Applications With Cenzic

Personal Data for Over 90,000 Students Protected by Automating Security Testing Across the SDLC

SANTA CLARA, CA--(Marketwire - May 29, 2007) - Cenzic Inc., a leading provider of application security risk management, vulnerability assessment and compliance solutions, today announced that one of Canada's largest school districts, the Toronto Catholic School District School Board (TCDSB),, which educates over 90,000 students in 201 elementary and secondary schools, has selected Cenzic Hailstorm for a pilot project to secure the district's Web applications throughout the software development life cycle (SDLC).

The district's computer sciences department is responsible for building and managing Web applications, many of which contain highly sensitive information -- from students' personal information to report cards to credit recovery to a data integration platform for decision making. In the past, consultants would review code on an ad-hoc basis with static assessments, but as Web applications grew in complexity, and hackers became more sophisticated, the district needed to implement a process to automate software vulnerability assessments with frequent security checks that would protect them against the latest hacks.

"The impact of a security hack can be devastating... we have personal information for 93,000 students," said John Brighton, senior systems manager, student applications at Toronto Catholic District School Board. "As a school district, there is no safe place for us -- we are vulnerable to both internal and external hackers. Cenzic is integral to our strategy around vulnerability assessment and risk management."

TCDSB has implemented a process by which security assessment takes place throughout the SDLC. Applications are tested before going into production, and are continually tested in production to stay ahead of new vulnerabilities. Their subscription to Cenzic features proactive weekly updates to prevent the latest hacks, which can be run overnight and reviewed and addressed first thing in the morning.

"With both the rate of new vulnerabilities introduced and the sophistication of hackers increasing, Cenzic is dedicated to empowering corporations, universities, and government agencies with the solutions they need to keep their applications safe from hackers," said Mandeep Khera, vice president of marketing at Cenzic. "With all the buzz around Ajax and Web 2.0, we provide customers with a great solution to deal with those issues. However, once you cut through the buzz, a vast majority of the apps are still on Web 1.0 and there are thousands of vulnerabilities lingering including Cross-Site Scripting, SQL Disclosure, Session Hijacking to name a few. Customers need to worry about all these vulnerabilities in both their production and new applications. We are excited to be working with a knowledgeable organization like Toronto Catholic."

About Cenzic

Cenzic is the innovative leader of next-generation application security assessment and risk management solutions that quickly and accurately find more "real" application vulnerabilities in both legacy Web 1.0 and Web 2.0 applications. The Cenzic suite of application security solutions fit any companies' needs from remote, Software as Service (ClickToSecure®), for testing one or more applications, to a full enterprise-wide solution (Cenzic Hailstorm® Enterprise ARC) for effectively managing application security risks across an enterprise. Cenzic solutions, targeted at financial services, e-retail, high-tech, energy, healthcare and government sectors, are the most accurate, comprehensive, and extensible in the industry empowering organizations to stay on top of unrelenting application security threats.

Contact Information

  • Contact Information:
    Tami Casey
    Kulesa Public Relations for Cenzic
    (650) 340-1984
    Email Contact