StillSecure Redefines Vulnerability Management With Dynamic Vulnerability Assessment

Market Wire, June, 2008

StillSecure®, provider of secure network infrastructure solutions, today announced new Dynamic Vulnerability Assessment(TM) (DVA(TM)) technology available in StillSecure VAM®. DVA allows organizations to " scan-on-connect ," which means that all devices are scanned for vulnerabilities and compliance levels as they connect to the network.

DVA is a paradigm shift that takes into account the latest security challenges associated with end user activity. DVA augments traditional point-in-time vulnerability management by scanning devices as they connect to the network -- including endpoints, servers, printers, etc. -- to provide ongoing, end-to-end monitoring, remediation, and reporting on all devices touched by end users.

Traditional point-in-time vulnerability scans are resource intensive so they are generally conducted during off-peak hours when users aren't connected. Using new DVA technology, VAM has been optimized to run in the background which makes vulnerability scans less intrusive. DVA acts as a watchdog and conducts scans as devices connect to the network. Security POV, VAM's advanced reporting module, reports on all vulnerability data -- whether gathered through DVA scans or point-in-time scans -- for in-depth compliance reporting.

According to Gartner, "VA is an essential component of an effective security program. VA initially provides discovery and security baseline data, and periodic rescanning provides updated data for vulnerability management, trending and compliance reporting... IT security organizations require a network-based approach that can accurately discover and evaluate vulnerabilities on managed and unmanaged systems."(1)

"The point in time when vulnerability data is collected should be a key consideration. The value of the data depends upon the number of devices that are on the network when the scan takes place," said Alan Shimel, Chief Strategy Officer at StillSecure. "As the vulnerability management industry advances, StillSecure is developing new technology like DVA that helps organizations with security compliance ."

Pricing and Availability

StillSecure VAM is available immediately from StillSecure or through any of its authorized resellers. VAM is available on an annual, fixed-cost subscription basis or through a purchase-plus-maintenance model that includes product upgrades, rule updates, and engineer-delivered customer support. For a VAM trial contact StillSecure sales at sales@stillsecure.com .

About StillSecure

StillSecure specializes in commercial and open source secure network infrastructure solutions. Products include network access control (NAC), intrusion detection/prevention (IDS/IPS), vulnerability management and a unified networking/security platform. By converging networking and security, StillSecure provides innovative, intuitive and affordable solutions to operate secure networks. Established in 2000, StillSecure customers range from midsize organizations to the world's largest enterprises with a strong emphasis in government, financial services, education, and healthcare. For more information visit http://www.stillsecure.com or call 303-381-3830.

(1) Gartner, Inc. "MarketScope for Vulnerability Assessment" by Kelly M. Kavanagh, Mark Nicolett and John Pescatore, May 23, 2008

Contact: Sonya Caprio Director of Marketing StillSecure 303-381-3843 scaprio@stillsecure.com