Easier Enterprise Application Security Management with NTOEnterprise 2.0

Today, we announced our latest product innovation, NTOEnterprise 2.0.

NTOEnterprise enables organizations to build and manage a true enterprise security program across thousands of web applications. It enables you to plan, control and measure scans and look across all application scan data to determine if your security posture is improving or not. NTOEnterprise will enable you and your team to assess and prioritize areas of greatest risk across the enterprise.

NTOEnterprise can be used as software or via SaaS through NTOSpider On-Demand.

Over the past year, we have spent time with our customers to understand how their programs work and how our software could truly helps them orchestrate their enterprise security program.

What’s New in NTOEnterprise 2.0?

Centralized Management Console
The new centralized dashboard provides a consolidated view of web application scans that includes:

  • Active vulnerabilities by vulnerability type
  • Six month vulnerability trending chart
  • Recent completed scans
  • Scans in progress
Enterprise Scan Management
The enhanced user interface enables users to initiate, schedule and configure application scans through a simple user interface. Users can now configure application scans and review in-progress scans, recent scans, scheduled scans and configuration settings, currently scheduled from one consolidated interface. Scans can be scheduled to run at regular monthly or quarterly intervals to provide ongoing monitoring of the your organization’s application security issues.
Blackout Management
Users now have an improved ability to define when scans can’t happen and when they can with improved blackout functionality. Only administrators can define blackout periods and the defined blackouts trump scheduled scanning so users can feel confident that business operations won’t be impacted.
Organize with Asset Tagging
New asset tags facilitate flexible custom reporting and a graphical view of the security posture across all enterprise applications. Organizations can define (customize) their own tags to view applications and vulnerabilities from different vantage points. Organizations can tag by location, team or business functionality such as which applications store credit card data or Personally Identifiable Information (PII). In addition, organizations can define trending data to show vulnerability trends over time.

Custom & Graphical Report Generation
Custom report generators allow users to define filters to quickly find and analyze vulnerability information from their scans. The custom reports and charts provide fantastic presentation data for management.

Test Management Software Integration
NTOEnterprise is now capable of creating tickets for each discovered vulnerability into popular issue management systems. Supported systems: RSA Archer, HP Quality Center, and Atlassian’s JIRA.

Improved Infrastructure
NTOEnterprise’s back-end infrastructure has been enhanced to optimize user experience and performance.

We invite you to find out more about NTO Enterprise 2.0 or please feel free to contact us to learn more or see a demo.

 

Last updated by at .

About Dan Kuykendall

Dan Kuykendall is the CTO and Co-CEO at NT OBJECTives. Dan is a founder of NT OBJECTives and has been with the company for more than 10 years. He is responsible for the strategic direction and development of products and services and works closely with technology partners to make sure integrations are both deep and valuable. As a result of Dan’s dedication to security, technology innovation and software development, NTO application security scanning software is often recognized as the most accurate because of its sophisticated automation techniques. Dan joined NT OBJECTives from Foundstone, where he was responsible for the portal interface to the company’s flagship product, FoundScan. Prior to Foundstone, Dan was the founder of the Information Security team in the United States branches of Fortis. Dan is a regular blogger on web application security issues on ManVsWebApp.com and co-hosts An Information Security Place Podcast. His has presented on the topics of mobile and application security at many of the top security industry conferences such as ISSA (2011), B-Sides (2012-2013), OWASP AppSecUSA (2012), HouSecCon (2010-2012), ToorCon (2013) and THOTCON (2013). Dan has been involved with Web Application Security Consortium and is a regular contributor to many open source development projects including founding the RPM Builder, phpGroupWare and podPress projects. Connect with Dan on Google+

Leave a Reply

Your email address will not be published. Required fields are marked *