Admissions, Registration, Grades among Sites Tested for Vulnerabilities with Cenzic Hailstorm
Santa Clara, Calif. – May 6, 2009 -- Cenzic Inc., the leading provider of Web application security assessment and risk management solutions, today announced that the University of Cincinnati has implemented Cenzic Hailstorm to safeguard sensitive data of students, faculty and staff. With Cenzic’s solution, the University is able to proactively scan all IT managed Websites campus wide, identifying vulnerabilities and ensuring remediation. In addition, the University is also implementing regular testing into its Software Development Lifecycle (SDLC) including the critical QA and development phases.
Founded in 1819, the University of Cincinnati is Ohio’s premier urban research university, enrolling more than 37,000 students. By implementing Hailstorm, the University has taken a major step toward avoiding costly security breaches and hacker attacks, which have plagued a number of educational institutions – as they become prime targets for cyber criminals and their malicious activities, which range from identity and data theft, to unauthorized changes made to academic standings.
“We have found several vulnerabilities while testing, so it is absolutely essential that our Web applications are secure upon deployment and thereafter,” said Kim Logan, information security officer, CISSP at the University of Cincinnati. “We chose Cenzic Hailstorm, because it had the least amount of false positives compared to any other solution we tested, and excels in the areas of assessment configuration, traversal definition, reporting and SmartAttack customization. It’s also extremely user friendly, which is a big plus.”
“Cenzic continuously strives to address the security challenges faced in the education market, as we’ve seen a steady increase in the number of targeted Web attacks against colleges and universities over the past few years,” said John Weinschenk, CEO of Cenzic. “The University of Cincinnati is a great example of an organization choosing to be proactive rather than scramble after a breach.”
As the University looks to the future, they are working to ensure that Information Security is seen as an enabler and active participant throughout the Web application lifecycle. Hailstorm takes us a long way towards that vision and it will be used by both the development and Q.A. teams to ensure applications that the university builds and deploys are as safe as possible said Kevin McLaughlin, AVP of Information Security, CISM, CISSP, GIAC, PMP.
About Cenzic
Cenzic is the next-generation Web application security assessment and risk management solutions leader. The Cenzic suite of application security solutions fits the need of any company from remote, Software as a Service (ClickToSecure®), for testing one or more applications, to a full enterprise-wide solution (Cenzic Hailstorm® Enterprise ARC) for effectively managing application security risks across an enterprise. Always an innovator, Cenzic has integrated Hailstorm with VMware to enable testing of production Web applications through virtualization -- making Cenzic the only company in the industry with a complete solution for assessing Web applications in all stages from development to production. In addition, Cenzic solutions, targeted at financial services, e-retail, high-tech, energy, healthcare and government sectors, are the most accurate, comprehensive and extensible in the industry, empowering organizations to stay on top of unrelenting application security threats.
