• Support Plus   |   Contact a Representative   |   Contact WhiteHat

• Website Risk Management
  • Asset Identification
  • Vulnerability Management
  • Reporting/Communication
  • Protection
• Sentinel Services
  • Cost-effective Solution
  • Benefits
  • Core Features
  • Unique Methodology
  • Selection Guidelines
  • Sentinel Premium Edition
  • Sentinel Standard Edition
  • Sentinel Baseline Edition
  • Sentinel for QA
  • PCI Compliance
  • Integration – via XML API
  • Certification Program
  • How Sentinel Works
  • WAF Integration
• Support Plus
  • Gold Service Level
  • Silver Service Level
  • Standard Service Level
  • Service Levels
• Education Services
  • Onsite Training
  •    Guidelines
  •    Building Secure Web Applications
  •    Adv. Secure Coding for Java
  •    Adv. Secure Coding for .NET
  • e-Learning
  •    Intro to Web App Security
  •    Secure Coding for Java
  •    Secure Coding for .NET
  •    Threat Modeling
• Events & News
  • News Coverage
  • Press Releases
  • Interviews
  • Awards
  
  
  
  • Sentinel Videos
• Resources
  • Whitepapers
  • Webinars & Presentations
  • Jeremiah Grossman Blog
  • Website Statistics Report
  • Website Security Glossary
• Partners
  • Strategic Partners
  • Partner Application Form
  • Partner Portal Login
• About WhiteHat Security
  • Leadership Team
  • Board of Directors
  • Success Stories
  • Careers
  • Contact Us
  • Support

• About WhiteHat Security
• Leadership Team
• Board of Directors
• Success Stories
• Careers
• Contact Us
• Support

Web Application Success Stories

National Instruments Tests Its Website Security with WhiteHat Sentinel
E-commerce sites are one of the choice attack targets because they are treasure troves of credit card data. At one of the largest online flower retailers, every month, or even week, can bring a new holiday or event that sends consumers flocking to its sites. That means frequent code updates that can lead to vulnerabilities. This organization needed to decrease the costs and increase the efficiency of its website security program. New PCI website security requirements also drove the search for a vendor that could quickly help them meet their compliance objectives. And, the security team needed to create an improved audit trail for its executive and technology management. 

With WhiteHat Security, the company was able to meet and exceed its goals. WhiteHat Sentinel exceeded all PCI requirements for website security outlined in sections 6.6, 11.2 and 11.3 of the standard. By replacing an inefficient vulnerability assessment tool with WhiteHat Sentinel, the customer achieved comprehensive, scalable coverage on its business-critical websites, while streamlining costs.  Now, they have consistent, repeatable assessments with a proven methodology for a fixed price.  And finally, management has seen improved audit accuracy thanks to Sentinel’s vulnerability verification, auto-retest functionality and simplified, customized reporting.

“At the end of the day, the biggest asset we have is our customer information, and that information must be protected. WhiteHat’s security features keep us out of trouble. We use Sentinel to be sure there are no [security] holes in our processes.”

—Josh Sokol, information security program owner, National Instruments

E-commerce: Security Picture is Rosy at Online Flower Purveyor
E-commerce sites are one of the choice attack targets because they are treasure troves of credit card data. At one of the largest online flower retailers, every month, or even week, can bring a new holiday or event that sends consumers flocking to its sites. That means frequent code updates that can lead to vulnerabilities. This organization needed to decrease the costs and increase the efficiency of its website security program. New PCI website security requirements also drove the search for a vendor that could quickly help them meet their compliance objectives. And, the security team needed to create an improved audit trail for its executive and technology management. 

With WhiteHat Security, the company was able to meet and exceed its goals. WhiteHat Sentinel exceeded all PCI requirements for website security outlined in sections 6.6, 11.2 and 11.3 of the standard. By replacing an inefficient vulnerability assessment tool with WhiteHat Sentinel, the customer achieved comprehensive, scalable coverage on its business-critical websites, while streamlining costs.  Now, they have consistent, repeatable assessments with a proven methodology for a fixed price.  And finally, management has seen improved audit accuracy thanks to Sentinel’s vulnerability verification, auto-retest functionality and simplified, customized reporting.

“At the end of the day, the biggest asset we have is our customer information, and that information must be protected. WhiteHat’s security features keep us out of trouble. We use Sentinel to be sure there are no [security] holes in our processes.”

—vice president, online retailer

Fortune 500 Healthcare: The Prescription for Comprehensive, Affordable Website Security

A Fortune 500 healthcare provider was drowning in the fees for quarterly one-time assessments of its most critical websites.  Security and compliance were a corporate priority, but at the same time, executive management had handed down a mandate to reduce costs. In addition, the security team wanted to add more websites to the assessment list to gain more insight into their overall security posture. How could they achieve scalability, consistency, complete coverage and stay within budget?

Enter WhiteHat Security. By replacing infrequent consultant assessments with WhiteHat Sentinel’s scalable SaaS assessment platform, the company was able to save $500,000 in the first year.  Sentinel’s Web management interface and broad-based coverage enabled all levels of the organization to have greater visibility into the real state of their website security.  With Sentinel on board, the company now has a Web application assessment methodology that has given the team a new level of confidence in their website risk management program.

“I am very pleased with WhiteHat Sentinel and the entire WhiteHat Security Operations team. 
Everyone is doing a fantastic job.”

SaaS Vendor: Putting Defense-in-Depth to Work for Human Resources
Protecting the confidentiality of employee data is one of a company’s biggest responsibilities.  Trusting the security of that data to an outside vendor can feel like a big risk.  That is why it is so important for SaaS vendors or any third-party service provider to maintain rigorous security standards to earn that trust.  For one vendor, that meant an overhaul of legacy vulnerability management solutions, extensive vulnerability coverage and a real-time mitigation plan.

After struggling with tools that were a drain on the security team’s time and still did not identify the full range of website vulnerabilities, the company turned to WhiteHat. WhiteHat Sentinel delivered consistent assessment frequency and full coverage of all technical and logical vulnerabilities, enabling the security team to focus on remediation.  Ideally, the company wanted to institute measures to block attacks without waiting for development fixes.  Having invested in WhiteHat partner Imperva’s SecureSphere Web application firewall (WAF), the security team was impressed with Sentinel’s ability to integrate seamlessly with the WAF.  Now, they have closed-loop vulnerability detection and mitigation, in full control of the security team. 

“If Sentinel weren’t available, I wouldn’t have time to do anything other than vulnerability assessments. Our high security standards and partnership with WhiteHat ensure the security of our customers’ sensitive data, and really are helping to set the standards for the industry as a whole.”

– information security architect
 SaaS Vendor