Today RiskSense
announced a partnership with WhiteHat
Security for
the automation of web application security risk assessment, and
management. The integration of the RiskSense platform and WhiteHat Sentinel
Dynamic enables organizations to continuously identify
vulnerabilities, assessing their business criticality
and prioritizing remediation.
"Reliable
detection, monitoring, and analysis of web applications composed of multiple
programming languages, frameworks, APIs, and application types is difficult
without automation," said Srinivas Mukkamala, co-founder and CEO for RiskSense.
"The integration of WhiteHat with the RiskSense platform combines WhiteHat's
industry-leading application security testing capabilities with our ability to
score threats based on their business risk so organizations can collaborate and
address the most critical problems before they can be exploited."
The RiskSense
platform transforms cyber security risk management into a collaborative and
real-time discipline. It uses machine learning algorithms to contextualize
internal intelligence gathered from security systems with external threat data
sources to identify potential cyber risks and assess their business criticality
to prioritize remediation actions for physical and virtual assets. RiskSense's
integration with WhiteHat Sentinel Dynamic enables RiskSense to consume outputs
on web application vulnerabilities from dynamic application security testing
(DAST) scans to assess and risk-score threats, and prioritize those that need
immediate attention.
"For years,
WhiteHat has been reporting on application vulnerabilities and remediation
rates in our annual stats report, and for years, these rates have remained
too high," said Craig Hinkley, CEO of WhiteHat Security. "Close to 50 percent of
applications remain vulnerable on every single day of the year, and remediation
rates range from an average of 129 days to 196 days. With this integration
between our platform, which provides the highest level of accuracy in the
industry, and the RiskSense platform, which offers the most advanced and
scalable solution for correlating and analyzing threat data, we're able to
deliver more comprehensive intelligence about threats and support faster
remediation decision-making."
WhiteHat Sentinel Dynamic
is part of the WhiteHat Application Security Platform, a Software-as-a-Service
platform that provides the full complement of application security services for
DevSecOps. Sentinel Dynamic continuously scans websites as they evolve,
providing automatic detection and assessment of code changes and alerting for
newly discovered vulnerabilities. WhiteHat's Threat Research Center works to
validate every vulnerability and eliminate false positives so users can focus
on improving the overall security of their organization.