Application Security, Inc.’s DbProtect™ Integrated with McAfee ePolicy Orchestrator

NEW YORK and LAS VEGAS--(BUSINESS WIRE)--Application Security, Inc., the leading provider of database security solutions for the enterprise, today announced that its flagship solution, DbProtect is now integrated with McAfee’s industry-leading ePolicy Orchestrator® (ePO™) software, McAfee’s centralized security and compliance management platform. As part of this integration, Application Security, Inc. will deliver improved benchmark performance for enterprise data protection and compliance to joint customers.

“The combination of Application Security, Inc. and McAfee solutions will add safeguards against persistent threats, while also simplifying and automating key data compliance requirements to reduce costs and increase return on investment.”

The integrated solution allows McAfee ePO software to deploy DbProtect agents resulting in a seamless link between DbProtect’s real-time database vulnerability and activity monitoring, and McAfee’s incident response capabilities. The integration of DbProtect allows ePO administrators to view and report on comprehensive database vulnerabilities, threats and events while also providing customers with streamlined auditing and compliance capabilities.

“We welcome Application Security, Inc. as a McAfee Compatible partner in the Security Innovation Alliance and believe that integration with DbProtect will provide organizations with improved levels of defense against threats to the database,” said Joe Gottlieb, vice president of corporate strategy and technology alliances at McAfee. “The combination of Application Security, Inc. and McAfee solutions will add safeguards against persistent threats, while also simplifying and automating key data compliance requirements to reduce costs and increase return on investment.”

“Given the vast quantity of sensitive data in most enterprise environments and the mounting monitoring and compliance requirements organizations face, it is more critical than ever that they establish firm controls where data lives – in the database,” said Eric T. Gonzales, co-founder and director of business development and strategic partnerships, Application Security, Inc. "As leaders in our respective areas of IT security, Application Security, Inc. and McAfee together offer a comprehensive, best-of-breed, data-centric solution that offers global enterprises unparalleled protection at the database level – bridging the gap between database security and system security. Our integrated solution dramatically reduces risk for firms that are grappling with escalating compliance requirements, more sophisticated and targeted attacks, and increasing costs associated with data breaches. Quickly discovering, remediating, and monitoring vulnerabilities provides organizations the controls they desperately need to support today’s security and compliance requirements.”

A Brief Summary of the Integrated Solution

• McAfee ePO software deploys DbProtect agents on assets managed by ePO software. DbProtect agents report significant database audit and threat events to ePO software, including buffer overflows, password attacks, accessing OS resources, privilege escalation, web application attacks and more.
• DbProtect agents report significant database vulnerabilities to ePO software, spanning access control, application integrity, identification/password control, OS integrity, denial of services, mis-configurations, weak passwords, and more.
• Database vulnerabilities, alerts, and events are stored in the ePO database along with feed reports such as database vulnerabilities by threat category, threat type, or database type, and other custom reports and dashboards.
• Granular, root-cause analysis of database events are performed in the DbProtect console.

Application Security, Inc. Presentations at McAfee FOCUS ‘08

Application Security, Inc. will present at two sessions during the McAfee FOCUS ‘08 Security Conference on October 22. Josh Shaul, director of technical strategy at Application Security, Inc., will join McAfee executives and other SIA partners to speak on a panel titled “Elements of a Solid IT Governance, Risk, and Compliance Program.” The panel will highlight compliance tools currently available and provide relevant customer feedback. In addition, Josh will deliver a presentation entitled “Forensics in the Fight Against Cyber Crime,” which will explore the expanding role of forensic technology in data security.

Full session details follows:

Session I: “Elements of a Solid IT Governance, Risk and Compliance Program”

• WHO: Josh Shaul, director, technical strategy, Application Security, Inc.
• WHAT: Agiliance; Application Security, Inc.; HP; McAfee; and Q1 Labs: Panel - Elements of a Solid IT Governance, Risk and Compliance Program
• WHEN: Wednesday, October 22, 2008, 10:30 a.m.
• WHERE: McAfee FOCUS ‘08 Security Conference, MGM Grand, Las Vegas, Nev.
• URL: McAfee FOCUS 08 Security Conference

Session II: “Forensics in the Fight Against Cyber Crime”

• WHO: Josh Shaul, director, technical strategy, Application Security, Inc.
• WHAT: AccessData and Application Security, Inc.: “Forensics in the Fight Against Cyber Crime”
• WHEN: Wednesday, October 22, 2008, 2:45 p.m.
• WHERE: McAfee FOCUS ‘08 Security Conference, MGM Grand, Las Vegas, Nev.
• URL: McAfee FOCUS 08 Security Conference

About Application Security, Inc.

Application Security, Inc. (www.appsecinc.com) is the leading global provider of database security solutions for the enterprise. Application Security, Inc.’s products – the industry’s only complete database security solution – proactively secure databases in the most demanding environments around the world. Application Security, Inc. delivers up-to-date database protection that minimizes risk and allows organizations to confidently connect with customers, partners, and suppliers. The company was named to Inc. Magazine’s 2007 (Inc. 500) and 2008 list of America’s Fastest Growing Private Companies, and was also named to the 2008 Deloitte Technology Fast 50 by Deloitte & Touche.

DbProtect is a trademark of Application Security, Inc. All other product names, service marks, and trademarks mentioned herein are trademarks of their respective owners.