IDG News Service - Business management software company Watchfire Corp. will buy Sanctum Inc., which makes Web application testing products, for an undisclosed amount, Watchfire said.
Watchfire, in Waltham, Mass., will add Sanctum's technology for spotting vulnerabilities in Web applications to its WebXM enterprise management platform, which allows customers to track Web application compliance to corporate security policies and regulations, according to executives from both companies.
Watchfire bought Sanctum's products and intellectual property in the deal, including the AppScan Web application testing software and AppShield application firewall. Watchfire, with 190 employees, will take on more than 75 Sanctum employees, including a research and development hub in Israel, which will be added to Watchfire's other development center in Ottawa, said Mike Weider, founder and chairman of Watchfire.
Some employees will be let go because of the acquisition, and the fate of employees at Sanctum's Santa Clara, Calif., headquarters is still being worked out, though Watchfire plans to maintain "some presence" there, Weider said.
Watchfire plans to marry the AppScan technology to WebXM and expects to release a version of the combined product by November. The merged product will give executives a dashboard, or centralized console, from which to view all of their company's Web sites and software development projects and assess their security posture. CIOs and vice presidents will be able to quickly assess progress in implementing privacy protections or complying with regulatory requirements, Weider said.
The top-down reviews by management will put more pressure on developers to focus on security, compared with developer-controlled and initiated security scanning tools, he said.
"The way security assessments are done now at the development level, there's no way to know, across an enterprise, how a company is doing at a point in time. If a developer chooses not to use scanning tools, then vulnerabilities can sneak into the development environment," he said.
Sanctum's AppScan and AppShield product will retain their names and continue to be sold separately. AppScan will also be turned into a module for WebXM that can be used to crawl over product Web applications and feed vulnerability information back to the WebXM dashboard. The AppShield product will be used to remediate security issues that are discovered, said Steve Orrin, chief technology officer at Sanctum.
The two similar-size companies already compete in some areas and share some customers, especially in the financial services industry. However, Watchfire believes that Sanctum's strong technology and good relations with companies that make integrated development environments will compensate for the overlap. At the same time, Watchfire will be able to introduce Sanctum technology into markets such as government, technologyand pharmaceuticals, in which it has made inroads, Weider said.
The acquisition of Sanctum is expected to close within 30 days, Weider said.
- Best iPhone, iPad Business Apps for 2014
- 14 Tech Conventions You Should Attend in 2014
- 10 Desktop Apps to Power Your Windows PC
- How to Add New Job Skills Without Going Back to School
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- The 12 PCI DSS 3.0 requirements addressed by Peer 1 Hosting This handy quick reference outlines the 12 PCI DSS 3.0 requirements, who needs to be compliant and how Alert Logic solutions address the...
- Defense Throughout the Vulnerability Life Cycle This whitepaper provides insight into how to leverage threat and log management technologies to protect your IT assets throughout their vulnerability life cycle.
- Mobile Policy Checklist Here's what to consider when putting together a mobile policy designed to support a highly productive workforce.
- Securing BYOD Mobile computing is becoming so ubiquitous that people no longer bat an eye seeing someone working two devices simultaneously. Individuals and organizations are...
- Live Webcast On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy...
- Live Webcast Endpoint Backup & Restore: Protect Everyone, Everywhere Arek Sokol from the bleeding-edge IT team at Genentech/Roche explains how he leverages cross-platform enterprise endpoint backup in the public cloud as part...
- Streamline Software Asset Management, Compose a software Management Symphony Keeping track of your organization's software is easy with effective software management solutions from CDW. View the videos in our software solutions channel
- Druva inSync: Endpoint Data Protection & Governance CLICK HERE to watch this video about protecting corporate data on laptops and mobile devices, sponsored by Druva. All Security White Papers | Webcasts