You can now integrate Risk I/O with the Veracode static analysis tool Following our recent integration with Portswigger’s Burp web scanner, our development team has added another vulnerability assessment tool to Risk I/O. Integration with Veracode static analysis is now available! If you use Veracode to scan your applications for security flaws, you’ll be happy to learn that you can now plug it into Risk I/O to manage and monitor the vulnerabilities that Veracode identifies. You can also use Risk I/O to pull in scan data from other vulnerability assessment tools, and generate…
Security Management
-
Most Topular Stories
-
Now Serving Veracode Users
The Risk I/O Blog, by HoneyApps15 May 2012 | 9:37 am -
6 Ways FileXpress MFT Technology Delivers File Transfer Solutions
Data In Motion16 May 2012 | 1:20 pmAre you the conqueror of your IT department? Are you looking for a challenge to knock off your to do list? Well look no farther than the file transfers that go on in your organization and become the hero. Chances are that you’ll run into one of these issues: There is no efficient and repeatable process for enabling new external file transfers with business partners or clients There are too many file transfer solutions in your organization all doing the same job Your users frequently develop the need to send large files at unpredictable times Automating file transfers in…
-
The Risk I/O Blog, by HoneyApps
-
Now Serving Veracode Users
15 May 2012 | 9:37 amYou can now integrate Risk I/O with the Veracode static analysis tool Following our recent integration with Portswigger’s Burp web scanner, our development team has added another vulnerability assessment tool to Risk I/O. Integration with Veracode static analysis is now available! If you use Veracode to scan your applications for security flaws, you’ll be happy to learn that you can now plug it into Risk I/O to manage and monitor the vulnerabilities that Veracode identifies. You can also use Risk I/O to pull in scan data from other vulnerability assessment tools, and generate… -
Plowing Through Vulns At 100 MPH
7 May 2012 | 10:37 amWe’ve been hard at work making sure Risk I/O is a flexible and fast platform for managing vulnerabilities and defects for our customers. One of the most used features has always been bulk editing of assets. By prioritizing and tagging assets in large quantities, our customers are able to quickly create meta data describing their environment. This results in very customized prioritization, views and reporting of their vulnerabilities. With our latest production build, our customers can now apply this mass amount of meta data to their vulnerabilities as well. With a quick search and… -
Proving A Negative
19 Apr 2012 | 10:00 amJust a quick fun post. Happened to catch this episode of Arthur this morning during the kids breakfast and it sadly reminded me of our industry. One of the big problems in justifying security is proving a negative. In other words, we weren’t hacked so the controls I’ve implemented must be the right ones. Apparently ‘bad luck’ has the same challenge. -
My Keynote At IANS Security Forum
17 Apr 2012 | 9:00 amLast week I had the pleasure of delivering a keynote presentation at the IANS Twin Cities Security Forum. Having been involved and participated in IANS events in the past I knew what to expect. They always do a great job with their Security Forums with a very unique format. Probably what I like the most about these forums is the amount of candid information sharing that goes with them – something I’m a big advocate of and what a lot of my presentation was about. I posted the slides on Slideshare and embedded them below, however; due to the format of the talk there’s not a… -
Our Latest Integration
26 Mar 2012 | 9:00 amHot on the heels of launching role-based access control which allows you to control who has access to what in Risk I/O (all the way down to the vulnerability level), we have added integration with a new vulnerability assessment tool. (Drum roll please…) We are happy to announce that integration with the Burp Scanner is now available in Risk I/O! For those not familiar with Burp, it was recently voted #1 in the web scanner category on SecTools. PortSwigger Web Security's Burp web scanner has become the latest vulnerability assessment integration available in Risk I/O. With this…
-
Data In Motion
-
6 Ways FileXpress MFT Technology Delivers File Transfer Solutions
16 May 2012 | 1:20 pmAre you the conqueror of your IT department? Are you looking for a challenge to knock off your to do list? Well look no farther than the file transfers that go on in your organization and become the hero. Chances are that you’ll run into one of these issues: There is no efficient and repeatable process for enabling new external file transfers with business partners or clients There are too many file transfer solutions in your organization all doing the same job Your users frequently develop the need to send large files at unpredictable times Automating file transfers in… -
Security and Compliance Risks with FTP
2 May 2012 | 12:09 pmWe’ve previously written about the shortcomings of file transfer protocol (FTP) and how organizations using FTP are putting themselves at risk for security and compliance issues. Though FTP is convenient and inexpensive, it can carry devastating consequences. Despite the warnings, 51 percent of organizations use FTP sites to send and exchange large files. I recently spoke with Ericka Chickowski for a Dark Reading article, “FTP Ubiquitous and Dangerously Noncompliant,” to comment on security and audit issues with FTP, and shared it is not uncommon for our team to receive requests from… -
5 Capabilities Enhancing Server-to-Server File Transfer
4 Apr 2012 | 2:32 pmIn the last post we looked at key use cases for server-to-server file transfer, where existing solutions tend to fall down, and the evolving requirements that support IT’s need to both maintain a reliable data infrastructure and respond quickly to new business initiatives. In this post, we’ll look briefly at the modern technology in managed file transfer solutions that drive the ability to meet those evolving requirements. Underlying the MFT solutions that support reliable and automated point-to-point transfers between servers are a core set of capabilities that are missing in older file… -
5 factors compelling enhanced server-to-server file transfer
16 Mar 2012 | 12:06 pmRoutine, scheduled and automated file transfers between servers occur in a wide range of use cases in just about every organization. In this post, we will begin a two part series and look at those use cases and the top five factors compelling enhanced server-to-server file transfer. In the next blog post we will look at the technology requirements to improve server-to server file transfer. The use cases for automated server-to-server file transfers include: The movement of bulk/batch data from one application to another The deployment of web application updates from a staging system to… -
File Transfer Governance? What’s that?
28 Feb 2012 | 5:24 pm“File Transfer Governance” isn’t a term you hear very often. But it relates to the kinds of rules you deal with in everyday life. Rules are guiding principles for everything. There are rules to govern the way you conduct yourself at your job, at the gym, as you participate in hobbies and as a citizen. As you go about life, you ask yourself questions to determine if you’re complying with the rules. The same is true in business. In respect to transferring files, it is critical that organizations are in compliance with the standards – or rules – of their company and any industry…
