SDN Journal Authors: TJ Randall, Yeshim Deniz, Liz McMillan, Elizabeth White, Pat Romanski

News Feed Item

SPI Dynamics Announces Compliance Pack to Relieve the Burden of Achieving Legal and Regulatory Compliance for Web Applications and Web Services

SPI Dynamics Announces Compliance Pack to Relieve the Burden of Achieving Legal and Regulatory Compliance for Web Applications a

ATLANTA, Nov. 1 /PRNewswire/ -- S.P.I. Dynamics Incorporated, the experts in Web application security, announces the availability of the SPI Dynamics Compliance Pack, which helps customers address legal and regulatory compliance for Web applications and Web services. The Compliance Pack relieves the burden of achieving legal and regulatory compliance for Web applications through a combination of comprehensive application security assessments, customizable security policies and detailed compliance reporting. SPI Dynamics software testing products WebInspect(TM), QAInspect(TM) and the Assessment Management Platform (AMP(TM)) all include the new Compliance Pack.

"Many organizations have a difficult time keeping up with compliance efforts due to resource and budget constraints. It is a tremendous amount of work," said Erik Peterson, vice president of product management for SPI Dynamics. "By providing both detailed reporting capabilities and customizable policies, the SPI Dynamics Compliance Pack significantly reduces the work effort required to understand and address compliance issues in Web applications and Web services."

Laws and regulations usually include rules that require organizations to secure their Web applications. Some of the most common rules are to protect personal information, prevent denial of service attacks, control user access to sensitive data and disclose privacy policies. SPI Dynamics' comprehensive security software testing products include security assessment policies and reports designed for specific laws and regulations (see complete list below). SPI Dynamics' products run automated security checks against these requirements and produce reports tailored to each law and regulation's language and categorization. These policies are customizable so organizations can develop their own tests in accordance with the laws and regulations to which they must adhere. Existing SPI Dynamics customers will receive the Compliance Pack automatically through SmartUpdate(TM), which is included in all SPI Dynamics' products and provides automatic policy updates and the latest Web application vulnerability checks from SPI Labs research and development. SPI Dynamics will continue to add laws and regulations to the Compliance Pack and update existing laws and regulations as they change.

The Compliance Pack addresses the following legal and regulatory initiatives:

- 21CFR11 - Basel II - California Online Privacy Protection Act - California SB1386 - Canada Personal Information Protection and Electronic Documents Act (PIPEDA) - Children's Online Privacy Protection Act (COPPA) - Data Privacy Directive (EU 1995/46/EC) - Directive on Privacy and Electronic Communications (EU 2002/58/EC) - Director of Central Intelligence Directive 6/3 - Federal Information Security Management Act (FISMA) - Gramm-Leach Bliley Act (GLBA) - Health Insurance Portability & Accountability Act (HIPAA) - ISO 17799 - Japan Personal Information Protection Act - NIST 800-53 - North America Electric Reliability Council (NERC) - OWASP Top 10 - Payment Card Industry (PCI) Data Security Standard - Safe Harbor - Sarbanes-Oxley Act - UK Data Protection Act

SPI Dynamics' Web application security assessment and software testing products are based on the industry's most robust Web application vulnerability database. In addition, these products offer proactive enterprise-wide security risk management and legal and regulatory compliance to cross-reference and encourage cooperation among the activities of developers, QA and security professionals in their efforts to find and fix Web application security issues to enable the production of more secure software.

For more information on SPI Dynamics' offerings, please visit http://www.spidynamics.com/.

About S.P.I. Dynamics Incorporated Start Secure. Stay Secure. Security Assurance Throughout the Application Lifecycle.

SPI Dynamics' suite of Web application security products help organizations build and maintain secure Web applications, preventing attacks that would otherwise go undetected by today's traditional corporate Internet security measures. The company's products enable all phases of the software development lifecycle to collaborate in order to build, test and deploy secure Web applications. SPI Dynamics' internal research and development group, SPI Labs, is widely recognized as one of the leading authorities in Web application security. Founded in 2000 by security specialists, SPI Dynamics is privately held with headquarters in Atlanta, Georgia. For more information, visit http://www.spidynamics.com/ or call (678) 781-4800.

WebInspect, QAInspect, AMP, and SmartUpdate are trademarks of S.P.I. Dynamics Incorporated. Product or service names mentioned herein are the trademarks of their respective owners.

S.P.I. Dynamics Incorporated

CONTACT: Michelle Schafer of Merritt Group, +1-703-390-1530, or cell,
+1-703-403-6377, or [email protected], for S.P.I. Dynamics; or Ashley
Vandiver of SPI Dynamics, +1-678-781-4841, or cell, +1-404-432-8657, or
[email protected]

Web site: http://www.spidynamics.com/

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

CloudEXPO Stories
With the introduction of IoT and Smart Living in every aspect of our lives, one question has become relevant: What are the security implications? To answer this, first we have to look and explore the security models of the technologies that IoT is founded upon. In his session at @ThingsExpo, Nevi Kaja, a Research Engineer at Ford Motor Company, discussed some of the security challenges of the IoT infrastructure and related how these aspects impact Smart Living. The material was delivered interactively to engage with the audience.
CloudEXPO has been the M&A capital for Cloud companies for more than a decade with memorable acquisition news stories which came out of CloudEXPO expo floor. DevOpsSUMMIT New York faculty member Greg Bledsoe shared his views on IBM's Red Hat acquisition live from NASDAQ floor. Acquisition news was announced during CloudEXPO New York which took place November 12-13, 2019 in New York City.
Atmosera delivers modern cloud services that maximize the advantages of cloud-based infrastructures. Offering private, hybrid, and public cloud solutions, Atmosera works closely with customers to engineer, deploy, and operate cloud architectures with advanced services that deliver strategic business outcomes. Atmosera's expertise simplifies the process of cloud transformation and our 20+ years of experience managing complex IT environments provides our customers with the confidence and trust that they are being taken care of.
In his session at 23rd International CloudEXPO, Raju Shreewastava, founder of Big Data Trunk, will provide a fun and simple way to introduce Machine Leaning to anyone and everyone. Together we will solve a machine learning problem and find an easy way to be able to do machine learning without even coding. Raju Shreewastava is the founder of Big Data Trunk (www.BigDataTrunk.com), a Big Data Training and consulting firm with offices in the United States. He previously led the data warehouse/business intelligence and Big Data teams at Autodesk. He is a contributing author of book on Azure and Big Data published by SAMS.
ShieldX's CEO and Founder, Ratinder Ahuja, believes that traditional security solutions are not designed to be effective in the cloud. The role of Data Loss Prevention must evolve in order to combat the challenges of changing infrastructure associated with modernized cloud environments. Ratinder will call out the notion that security processes and controls must be equally dynamic and able to adapt for the cloud. Utilizing four key factors of automation, enterprises can remediate issues and improve their security posture by maximizing their investments in legacy DLP solutions. The factors include new infrastructures opening up, public cloud, fast services and appliance models to fit in the new world of cloud security.