2014 Digital Yearbook of Homeland Security Awards

More documents

Recommendations

Info

GSN 2014 Digital Yearbook of Homeland Security Awards Recipients Vendors of IT Security Products and Solutions Applied Visions, Inc. / Secure Decisions Division – 2014 Winner Awards Category: –––––––––––––––––––––––––––––––––––––––– Best Compliance/Vulnerability Assessment Solution Name of Nominated Product, Service, or Program: –––––––––––––––––––––––––––––––––––––––– Code Dx ® Reason this entry deserves to win: –––––––––––––––––––––––––––––––––––––––– Corporate and government enterprises are all potential victims of cyber-attacks that can adversely impact a company’s bottom line, damage public reputation, compromise sensitive government data, and diminish the public trust. Industry experts and the Department of Homeland Security (DHS) have traced most compromises to poorly written software. 70-80% of security breaches occur because of poorly written code containing numerous security vulnerabilities. Consequently, software development and acquisition organizations are under increased pressure to find and fix software vulnerabilities before they are deployed. DHS, NASA, DoD and commercial businesses have begun to use static application security testing (SAST) tools to find software vulnerabilities during the development cycle and as part of the acquisition process. One problem, however, is that no single source code analysis tool finds most of the vulnerabilities in an application. Different tools identify different vulnerabilities. Benchmark tests by NIST and NSA reveal that, on average, a single static analysis tool will detect only 14% of all of the software weaknesses in code. Consequently, one needs to use multiple source code analysis tools to find a majority of the vulnerabilities. A second problem is that each tool outputs its results in a different format with different severity scales, making it difficult to combine the results and present them in a unified report. A third problem is related to expense: each commercial tool added to the vulnerability analysis adds significant cost; and each open-source SAST tool requires additional resources to find and configure them. Code Dx ® finds, prioritizes, and visualizes software vulnerabilities – fast and afford- 38
ably. Code Dx ® makes it easy for software developers and security analysts to start checking their software for vulnerabilities without a significant investment of time or money. It embeds, automatically selects, and runs the appropriate open-source static application security testing (SAST) tools for each language in a software code base. It also adds in results from commercial analysis tools and manual code analyses, combines these with the results of the open-source tools, and unifies the results into a common severity scale and display. Its visual analytics help to triage and prioritize software vulnerabilities so that the most important vulnerabilities are fixed first, and false positives are removed from future vulnerability scans. Code Dx provides advanced collaboration and reporting tools to ensure expeditious communication of findings and remediation recommendations. Compliance reports can be customized to show which vulnerabilities are potential violations of regulations such as PCI or HIPAA. Code Dx removes the most prominent barriers to finding and fixing software vulnerabilities: time to get started, complexity, and expense. Its entry point of $2,500 for an annual subscription makes it affordable even for small businesses. 39 Link to Web Page of Nominated Organization: –––––––––––––––––––––––––––––––––––––––– http://www.codedx.com Link to additional information on product, service or program, with brief description: –––––––––––––––––––––––––––––––––––––––– Code Dx finds, prioritizes, and visualizes software vulnerabilities fast and affordably: http://securedecisions.com/products/codedx/ Name and organization of nominating contact for this entry, including name, title, organization: –––––––––––––––––––––––––––––––––––––––– Dr. Anita D’Amico / Director Secure Decisions Nominating contact’s office telephone and cell phone: –––––––––––––––––––––––––––––––––––––––– Applied Visions, Inc. Secure Decisions Division office: (631) 759-3909 cell: (516) 702-7706 Nominating contact’s email address: –––––––––––––––––––––––––––––––––––––––– Anita.Damico@SecureDecisions.com
Page 1 and 2: The GSN 2014 Digital Yearbook of Ho
Page 3 and 4: TABLE OF CONTENTS 4 6 8 10 12 16-37
Page 5 and 6: automated testing of a network’s
Page 7 and 8: • Was named one of the city’s b
Page 9 and 10: and legacy systems are retired, sav
Page 11 and 12: Winners in the 2014 Homeland Securi
Page 13 and 14: fully so, countering biological thr
Page 15 and 16: a recognized leader in “digitizat
Page 17 and 18: Link to Web Page of Nominated Organ
Page 19 and 20: and then aggregates, normalizes, an
Page 21 and 22: Cyber Defense Magazine Names RiskVi
Page 23 and 24: uilding rich user profiles based on
Page 25 and 26: Offering the lowest TCO on the mark
Page 27 and 28: 3. Provisioning 2.0 - RSA IMG is en
Page 29 and 30: Peer platform. This innovative appr
Page 31 and 32: Suspect Search takes into account t
Page 33 and 34: ing closely with and listening to i
Page 35 and 36: Department of Defense, with the abi
Page 37: capacity to analyze what activity h
Page 41 and 42: GSN 2014 Digital Yearbook of Homela
Page 43 and 44: OTHER PRODUCTS Best Perimeter Prote
Page 45 and 46: such as HVAC, access control, utili
Page 47 and 48: Tell us about some of the recent ad
Page 49 and 50: party vendor access to restricted z
Page 51 and 52: afford to wait in line. This result
Page 53 and 54: onboarding process, AlertEnterprise
Page 55 and 56: esponse capability substantially an
Page 57 and 58: most top tier 1st agency responders
Page 59 and 60: WHAT SETS SUSPECT SEARCH APART Ther
Page 63 and 64: the terrain causes each of the boll
Page 65 and 66: look up schedules and other informa
Page 67 and 68: gym, and each of the digital PTZs a
Page 69 and 70: source. With the pivCLASS portfolio
Page 71 and 72: Winners in the 2014 Homeland Securi
Page 73 and 74: da. A similar accident could occur
Page 75 and 76: GSN Announces the 2015 Airport/Seap
Page 77 and 78: engage in interactive dialogue via
Page 79 and 80: the perimeter,” said Cezary Jozwi
Page 83 and 84: phone or TETRA radio as the inciden
Page 85 and 86: more buses with the innovative mobi
Page 89 and 90:
The implementation of the Desktop A
Page 91 and 92:
Link to Web Page of Nominated Organ
Page 93 and 94:
Link to Web Page of Nominated Organ
Page 95 and 96:
• Live vehicle streaming of CCTV
Page 97 and 98:
these communities are down by 12%,
Page 99 and 100:
elationships across jurisdictional
Page 101 and 102:
impeding the flow of legal traffic,
show all

2014 Digital Yearbook of Homeland Security Awards

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?