APPSEC PERFORMANCE PACKAGE | DATASHE E T

APPSEC PERFORMANCE PACKAGE

Assess. Secure. Scale. Repeat.

Know your program risks, secure more Benefits of the AppSec
applications in less time, with less in- Performance Package
house resources. ✓ Optimized web application
security delivery
It can be challenging to develop and manage an application
security program. Not only from a planning and a resource ✓ Faster go-to-market timelines
allocation perspective, but also because it is easy to get mired
✓ Increased visibility into the
in day-to-day tactical operations and lose sight of the big picture application
strategy. Whether you are creating your first AppSec program or
expanding rapidly and need some expert program management ✓ Improved compliance
to move security left in your software development lifecycle, we ✓ Secure policy framework for web
can help. applications

WhiteHat Security is the leading advisor for application security
with the most comprehensive platform powered by artificial and
human intelligence. WhiteHat Sentinel, supported by WhiteHat
Security Program Management, can help bridge the gap
between your security and development teams, allowing them
to deliver secure applications at the speed of digital business.
This Performance Package includes:
• NTT Software Security Assurance Assessment
• WhiteHat Sentinel Standard Edition (SE) testing for
ten (10) web applications
• WhiteHat Program Management JumpStart service
✓ Reduced attack surface area
✓ Brand confidence
WhiteHat Security, an independent, wholly
owned subsidiary of NTT Ltd., and a five-time
leader in the Gartner Magic Quadrant for
Application Security Testing, is empowering
organizations to secure their digital futures
in an app-driven world by continuously
assessing the risk for software assets. We
are the predominant intelligence-driven
security partner, continuously supporting our
customers’ digital transformation journey.
1
APPSEC PERFORMANCE PACKAGE | DATASHE E T

NTT Software Security Assurance Assessment

A consultative advisory service that leverages extensive expertise, processes, and methodologies for assessing
cyber risks of application security across different levels of the software development lifecycle.

The service provides:

✓ A baseline current state rating by qualitatively rating capabilities using a common 0-3 maturity scale
✓ Recommendations for future target capability maturity state
✓ Help for clients to align business drivers and risk to determine current and future states
✓ An actionable roadmap to help plan, guide, and show progress and direction over the course of improvement
✓ Utilizing the OWASP Software Assurance Maturity Model (SAMM), we help organizations formulate and
implement a strategy for software security that is tailored to specific risks facing the organization

WhiteHat Sentinel SE Program Management Jumpstart Service

WhiteHat Sentinel Dynamic is an industry
leading DAST solution offering best-in-class
scanning and customer driven services.
The AppSec Performance Package bundle
includes testing for ten (10) web applications
with form training, and authentication.
The service provides:
✓ Continuous Assessment
✓ Vulnerability Verification
Designed to ensure successful creation and adoption of an
application security program within your organization, the
Program Management Jumpstart Service can help bridge
the gap between your security and development teams. A
designated professional services team member is assigned to
deliver expert program implementation guidance for up to 8
hours per week during the 90-calendar day engagement period.
The service provides:
✓ Initial kickoff calls

✓ On Demand Retests ✓ Developer onboarding calls / training

✓ Access to WhiteHat Security Engineers ✓ Establishing goals and developing an initial 30,60,90 day plan

✓ WhiteHat Security Index (WSI) ✓ Delivering a project implementation plan

✓ Flexible Reports, Analytics and Peer ✓ Monthly progress reviews

Benchmarking ✓ Escalated support during 90-day engagement period
✓ Full Configuration and Form Training ✓ Expert guidance on application security best practices
✓ Authenticated Scanning ✓ Authenticated Scanning

Learn more about WhiteHat Sentinel Learn more about WhiteHat Professional Services here.
features here.

2
APPSEC PERFORMANCE PACKAGE | DATASHE E T

Application Security Testing Tool Inhibitors

Source: 451 Research’s Voice of the Enterprise: Information Security, Vendor Evaluations 2019

Lack of staff expertise 37%

Company culture 26%

Solution complexity 25%

Inadequate budget 25%

Complexity in setting up 24%

Solution usability 23%

Inadequate staffing 20%

Poor support 16%

Other (please specify) 7%

None 14%

“Having information security professionals running point-in-time scans and

attempting to advise developers on their code is a difficult proposition
even when information security teams have coding expertise – which, in
most cases, they don’t.”

- 451 Research - Pathfinder Report, 2019

Actionable Results
Our consultants seamlessly implement the agreed controls to ensure that any vulnerability exposed during the
Assessment and Analysis phases is mitigated against in a structured and unobtrusive manner. The goal of the
AppSec Performance Package is not only to address isolated issues, but to transform the underlying maturity of
web application security.

The AppSec Performance Package delivers everything you need to assess your software risks,
secure your apps, and optimize your resources – fast.

Contact Us
To learn more about how our AppSec Performance Package can help you establish the right testing and
application security controls for your business, please contact us here.

WHITEHAT SECURITY, INC. 1741 Technology Dr. #300, San Jose, CA 95110 • 1.408.343.8300 • www.whitehatsec.com
© 2021 WhiteHat Security, Inc. All rights reserved. WhiteHat Security and the WhiteHat Security logo are registered
trademarks of WhiteHat Security, Inc. All other trademarks are the property of their respective owners.