F5 has partnered with Cenzic and WhiteHat Security to help customers try vulnerability assessment services, with no commitment
Application Delivery Networking firm F5 Networks has launched a new programme that offers organisations free application vulnerability assessment scans.
For the new programme, F5 has partnered with two dynamic application security testing (DAST) firms, Cenzic and WhiteHat Security, to help customers try vulnerability assessment services.
The new F5 programme is designed to help enterprises accelerate their adoption of web application security practices with an automated, accurate application to protect business assets.
F5 Professional Services is introducing the BIG-IP ASM Vulnerability Mitigation Assessment service to support customers who need assistance in scoping their web application security status and to establish a roadmap to mitigate exposures.
The new services application delivers a vulnerability mitigation assessment report that outlines the recommended approach to remediate vulnerabilities identified by the Cenzic Cloud or WhiteHat Sentinel assessments.
Integrating DAST vendor’s XML API and F5’s BIG-IP Application Security Manager (ASM) v11.2 will enable IT staff to test and verify application vulnerabilities, automatically mitigate vulnerabilities with a single click and verify the efficacy of the mitigation by leveraging the DAST vendor product’s testing infrastructure.
F5 Security and Strategic Solutions executive vice-president Manny Rivelo siad, "With this offering of free vulnerability scans, F5 is making it easier to build the business case for enterprises to adopt a web application security plan and ensure their applications are safe and their brand is protected."
Cenzic CEO John Weinschenk said it is the first F5 partner to have a single-click application testing platform that can be initiated directly from the BIG-IP ASM GUI, enabling customers to patch vulnerabilities almost instantaneously without waiting for days.
"Further, with vulnerability scans provided by Cenzic that are tightly integrated directly from ASM, enterprises can both simply trial and provision a complete web application security solution that allows them to review assessment results and conversion of the detected vulnerabilities into ASM blocking policies," Weinschenk said.