WhiteHat Security Introduces Sentinel Standard Edition (SE)

SANTA CLARA, Calif., Dec. 4 /PRNewswire/ -- WhiteHat Security, the leading provider of website vulnerability management services, today introduced Sentinel Standard Edition (SE) as the latest addition to the WhiteHat Sentinel Service family. Sentinel SE is a cost-effective service that takes automated scanning to a new level, delivering an enterprise-class, ongoing website vulnerability scanning service with 100 percent verified, actionable results -- shifting the focus from finding vulnerabilities to fixing them. Companies no longer have to struggle with training a scanner, interpreting results or sifting through volumes of false positives.

Sentinel SE, built on WhiteHat's SaaS technology platform, tests for the 13 technical website vulnerabilities (including SQL Injection and Cross-site Scripting) as defined by the Web Application Security Consortium (WASC), making satisfying PCI 6.6 compliance easy.

WhiteHat extended the Sentinel product family to meet the growing demand from current and prospective customers that require a solid foundation of website security regardless of their size. From Fortune 500 companies with hundreds of websites to small start-ups with only a few, Sentinel SE offers a cost-effective option that delivers more accurate, easy-to-manage technical vulnerability information than traditional scanners alone. Sentinel SE is designed for less complex, lower-risk websites, where code changes are relatively infrequent.

Sentinel SE also provides compliance with section 6.6 of the PCI Data Security Standard, which mandates that all merchants and service providers that store, process or transmit cardholder data, institute a review of website code by "an organization that specializes in application security" or an application-layer firewall by June 30, 2008. Sentinel SE and Sentinel PE (Professional Edition) exceed the requirement by offering customers unlimited scanning during the annual subscription period.

"Many of our Fortune 500 Sentinel PE customers have hundreds of non- mission critical sites that need ongoing assessment as a best practice and to satisfy PCI 6.6 compliance," said Bill Pennington, vice president of services, WhiteHat Security. "It made sense for us to develop a complement to Sentinel PE that would effectively and accurately identify technical coding flaws. We quickly realized that this would also benefit smaller organizations with fewer websites and smaller budgets. Sentinel SE allows all of our customers to secure their sites without placing unnecessary strain on their resources."

WhiteHat Sentinel SE provides baseline website security with full API access and email support from the WhiteHat Security Operations Team. It is currently available for an annual subscription of $9,950 per Web application. WhiteHat Sentinel Premium Edition (PE) is also currently available for $24,000 per Web application per year. In addition to the features available with SE, Sentinel PE includes custom business logic testing, a dedicated operations team, and proof of concept testing for vulnerabilities to demonstrate exploitability. A comparison between Sentinel SE and PE can be found at http://www.whitehatsec.com/home/sentinel/selection.html.

About WhiteHat Security, Inc.

Headquartered in Santa Clara, California, WhiteHat Security is a leading provider of website vulnerability management services. WhiteHat delivers turnkey solutions that enable companies to secure valuable customer data, comply with industry standards and maintain brand integrity. WhiteHat Sentinel, the company's flagship service, is the only solution that incorporates expert analysis and industry-leading technology to provide unparalleled coverage to protect critical data from attacks. For more information about WhiteHat Security, please visit our website, http://www.whitehatsec.com.