SOURCE: Cenzic


April 20, 2009 08:00 ET

Cenzic and Armorize Agree to Strategic Relationship to Provide End-to-End Web Application Security Testing

Collaboration Allows Web Application Vulnerability Management at Both Dynamic and Source Code Levels

SANTA CLARA, CA--(Marketwire - April 20, 2009) - Cenzic Inc., the leading provider of application security vulnerability assessment and risk management solutions, today announced it has agreed to form a strategic partnership with Armorize Technologies, the industry leader in static source code analysis and verification technology. Together their solutions will offer unparalleled Web application security.

The joint technology combines black box (dynamic) testing and white box (source code) testing methods to analyze source code, pinpointing specific lines of vulnerable code, and to emulate external hacker activities to provide security analysis and testing throughout the entire development lifecycle.

"More than 80 percent of deployed Web applications are vulnerable and it is imperative that organizations take steps to validate security throughout the development lifecycle," said John Weinschenk, president and CEO for Cenzic. "Cenzic's goal is to provide best-in-breed Web application security technology, and the alignment with Armorize allows us to further our next generation security solutions. Armorize has a strong presence in Asia Pacific and we believe that this partnership will help both companies in that region."

"This joint effort will offer enterprises concerned with application assessment a wealth of benefits," said Wayne Huang, CEO of Armorize. "It will provide security personnel with multiple security perspectives before, during and after deployment, and allow them to use the findings from each solution to further fine-tune security testing. This serves as an excellent method of vulnerability verification, greatly increasing accuracy and reducing false positives. We are looking forward to offering this joint solution to our customers throughout Asia Pacific."

Armorize CodeSecure™ proactively identifies vulnerabilities in Web application source code in order to prevent hacker attacks. Delivered as either an enterprise appliance or as a hosted software service, this web-based solution integrates with Web application development processes identifying vulnerable code as it is being developed, offering prioritized code-specific guidance on remediation.

Cenzic Hailstorm provides automated continuous security assessment of custom and commercial Web applications throughout the software development lifecycle -- whether in development, QA, or operations -- to help find and remediate security vulnerabilities, guide enforcement of internal security policies and support regulatory compliance. With its dashboard views of Web applications, Hailstorm enables departments, business units, and security and compliance executives access to real-time actionable information and status across the enterprise.

About Armorize Technologies

Armorize Technologies is a software security company focused on web application security. Integrating the award-winning CodeSecure™, HackAlert™ and SmartWAF™ platforms, Amorize has developed Armorize Appsec Suite™ to provide flexible, fast and efficient application layer security at key points in the development life cycle. With deep roots in academia, the Armorize team garnered consecutive best paper nominations at the prestigious 2003 and 2004 International World Wide Web Conferences. Subsequent recognition for innovative technology and business practices include winning the Red Herring Asia 100 and Global Top 10 Innovators awards, and being invited to present at the Dow Jones Venture Wire Technology Showcase 2008.

With its headquarters in Santa Clara, CA, and its R&D center in the Nan Kang Software Park in Taipei, Taiwan, Armorize has a global customer base with clients from among finance, telecom, government and technology sector leaders. For more information, visit

About Cenzic

Cenzic is the next-generation Web application security assessment and risk management solutions leader. The Cenzic suite of application security solutions fits the need of any company from remote, Software as a Service (ClickToSecure®), for testing one or more applications, to a full enterprise-wide solution (Cenzic Hailstorm® Enterprise ARC) for effectively managing application security risks across an enterprise. Always an innovator, Cenzic has integrated Hailstorm with VMware to enable testing of production Web applications through virtualization -- making Cenzic the only company in the industry with a complete solution for assessing Web applications in all stages from development to production. In addition, Cenzic solutions, targeted at financial services, e-retail, high-tech, energy, healthcare and government sectors, are the most accurate, comprehensive and extensible in the industry, empowering organizations to stay on top of unrelenting application security threats.

Contact Information

  • Contact Information:
    Tami Casey
    Kulesa Faul for Cenzic
    (650) 340-1984
    Email Contact