WhiteHat Rolls Out Sentinel SE

New addition to WhiteHat Sentinel family provides broad access to Web application security for enterprise and PCI 6.6 customers

SANTA CLARA, Calif. -- WhiteHat Security, the leading provider of website vulnerability management services, today introduced Sentinel Standard Edition (SE) as the latest addition to the WhiteHat Sentinel Service family. Sentinel SE is a cost-effective service that takes automated scanning to a new level, delivering an enterprise-class, ongoing website vulnerability scanning service with 100 percent verified, actionable results--shifting the focus from finding vulnerabilities to fixing them. Companies no longer have to struggle with training a scanner, interpreting results or sifting through volumes of false positives.

Sentinel SE, built on WhiteHat’s SaaS technology platform, tests for the 13 technical website vulnerabilities (including SQL Injection and Cross-site Scripting) as defined by the Web Application Security Consortium (WASC), making satisfying PCI 6.6 compliance easy.

WhiteHat extended the Sentinel product family to meet the growing demand from current and prospective customers that require a solid foundation of website security regardless of their size. From Fortune 500 companies with hundreds of websites to small start-ups with only a few, Sentinel SE offers a cost-effective option that delivers more accurate, easy-to-manage technical vulnerability information than traditional scanners alone. Sentinel SE is designed for less complex, lower-risk websites, where code changes are relatively infrequent.

Sentinel SE also provides compliance with section 6.6 of the PCI Data Security Standard, which mandates that all merchants and service providers that store, process or transmit cardholder data, institute a review of website code by “an organization that specializes in application security” or an application-layer firewall by June 30, 2008. Sentinel SE and Sentinel PE (Professional Edition) exceed the requirement by offering customers unlimited scanning during the annual subscription period.

"Many of our Fortune 500 Sentinel PE customers have hundreds of non-mission critical sites that need ongoing assessment as a best practice and to satisfy PCI 6.6 compliance," said Bill Pennington, vice president of services, WhiteHat Security. "It made sense for us to develop a complement to Sentinel PE that would effectively and accurately identify technical coding flaws. We quickly realized that this would also benefit smaller organizations with fewer websites and smaller budgets. Sentinel SE allows all of our customers to secure their sites without placing unnecessary strain on their resources.”

WhiteHat Security