DULLES, Va. and WALTHAM, Mass. -- Cigital, a consulting firm specializing in software risk management for the enterprise and Guardium, the database security company, today announced a referral partnership whereby the two companies will work together to make data security and compliance more easily attainable for their respective customers.
The partnership offers the best of both worlds -- experts from Cigital who can address critical software challenges such as integrating security across legacy and Web 2.0 applications, and Guardium's practical, appliance-based solution for real-time protection of sensitive corporate information such as cardholder data.
Cigital's client list includes Fortune 500 companies in hospitality, financial services, communications, insurance and e-commerce. The company leverages its consulting expertise to help organizations with critical security projects such as software reviews, best practices and automation for software testing, secure Software Development Lifecycle (SDLC) implementation, portfolio risk analysis, and software security training. As a result, Cigital's clients benefit from improved time-to-market, improved software security and quality in application development, assurance in software delivery, and successful attainment of IT governance and compliance.
Guardium's blue-chip customer base spans all major industries and geographies. Customer examples include a 6,000-store national retailer, a Tier-1 card issuer, a leading merchant acquirer and a major transaction processor. The company's technology protects against both external and internal threats by immediately identifying suspicious or unauthorized behavior based on continuous comparisons to baselines of normal activity, and generating policy-based actions such as alerts, account lock-outs and blocking. Unlike traditional logging approaches, the system monitors all database management system (DBMS) traffic at the network layer and on the database server itself, helping organizations rapidly address Payment Card Industry Data Security Standard (PCI DSS) requirements (including Requirements 3, 6, 7, 8 and 10) without impacting performance or requiring changes to databases or applications.