Free Trial callout
Software Portfolio Managment Identify, classify and track applications by business criticality and security policy online with SecurityReview for Application Risk Management. Software Portfolio ManagementVeracode's SecurityReview service integrates a comprehensive software portfolio management system enabling IT and Software Development managers to identify, classify and track applications by business criticality and security policy. What once resided in fragmented excel spreadsheets can now be actively managed from a centralized platform across the enterprise.
Identify & TrackSecurityReview guides application owners through a series of meta-data related questions that help identify applications with higher risk. Metrics include origin, business impact, data sensitivity, version and development or deployment status. Organizations can quickly track and report on which applications require remediation.Set Security PolicyBased on an internal policies and regulatory compliance requirements, security policy can be defined for individual or groups of applications to set measurable acceptance and deployment security criteria. Security policy can be based on market standards such as PCI, OWASP Top 10, SANS Top 25, Veracode Security Ratings or customized security thresholds. Classify Business CriticalitySecurityReview provides a simple method for assigning business criticality based on industry standard application assurance guidelines developed by NIST. Applications are grouped into easy to understand criticality levels from Low to Very High. Using this methodology, Veracode makes recommendations on testing methods and acceptance criteria enabling organizations to create a uniform standard across the enterprise. |
