GovShield™: Web Security for Government Agencies

Cenzic’s GovShield security program enables government agencies to minimize Website security risk, attain compliance, and better protect brand reputation.

Cenzic’s flexible product model (software and SaaS products) helps federal entities find and fix vulnerabilities (security defects) in Web applications before they are exploited by hackers. Unlike network security and SSL solutions, Cenzic tests at the Web application level where over 75% of attacks occur.

Our products truly emulate a hacker by using a patented, non-signature based approach. Think of us a “hacker in a box”.

By using Cenzic, you’ll attain compliance assurance, but more importantly, you’ll gain the peace of mind that you are secure. Government agencies must comply with a long list of regulations for managing security and IT risk, including FISMA, NIST 800-53, and Section 508 accessibility initiatives.

Cenzic has mapped these requirements to vulnerabilities that are most common in Web applications. By scanning your Web applications with Cenzic, you’ll determine how well they meet the regulation requirements. And if problems are found, Cenzic provides detailed information on how to remediate discovered vulnerabilities.

After scanning your Web applications, data will be populated into a standardized, Web-enabled dashboard. From this platform, you can “slice and dice” the data in a variety of ways to generate reports with ease. See example reports below for both FISMA and NIST compliance results.

An example of a Cenzic-generated FISMA Compliance report summary.

An example of a Cenzic-generated NIST Compliance report summary.

One of the biggest benefits of using Cenzic is our Web-enabled, drillable dashboard. This standardized platform provides a high-level view of your entire company risk profile. It enables you to automatically see:

• How many Web applications do I have?
• Which ones are most at risk?
• How productive are each of my team members?
• What’s been tested and what needs fixing?

As the screen shot below illustrates, Cenzic’s Web-enabled, drillable dashboard provides the entire organization with one standardized platform to mange its Web security risk. See a summary of results including a prioritized listing of vulnerabilities bas on our quantitative risk scoring system (HARM) to show what needs fixing first.

Cenzic’s government business has grown at such an exponential rate, we’ve hired a managing director for federal business. His team handles government clients including: the Department of Defense, the Army, the Navy, the U.S. Supreme Court and the Internal Revenue Service, and many others we are not allowed to share publically.

GovShield Partner Program

Cenzic wants to sign new government system integrator partners to resell its software and SaaS products. As a partner of Cenzic, you’ll get the following:

• A turn-key Web application security solution to sell to your clients in this hot, new technology area,
• Datasheets to send to your clients that outlines your new product offerings,
• Promotion on Cenzic Website, blog, Twitter, and Facebook profiles, and
• Comprehensive training on the Cenzic product suite.