This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Corporate Supporter Bios
From OWASP
Revision as of 18:06, 10 May 2012 by Kelly Santalucia (talk | contribs)
Disclaimer: Corporate Supporter Bios are not endorsements and reflect the message of the supporter only.
| Company | Member Since | Company Description | Contact |
|---|---|---|---|
 |
Acunetix is a leading provider of web security solutions and a pioneer in the development of web application security scanning technologies. Its engineers focused on web security as early as 1997 and developed an engineering lead in website analysis and vulnerability detection. The company was established in 2004 to combat the alarming rise in web attacks. In July 2005, the company announced the release of Acunetix Web Vulnerability Scanner (WVS) - a heuristic tool designed to replicate a hacker's methodology to find dangerous vulnerabilities, such as SQL injections and Cross-Site scripting, before hackers do. Acunetix WVS brings an extensive feature-set of both automated and manual penetration testing tools, enabling security analysts to perform a complete vulnerability assessment, and repair detected threats, with just the one product. The Acunetix development team consists of highly experienced security developers, all with extensive development experience in network security scanning software prior to working on Acunetix WVS. The management team is backed by years of experience in marketing and selling security software.Acunetix WVS includes many innovative features:Innovative AcuSensor Technology that allows accurate scanning with low false positives, by combining black box scanning techniques with feedback from its sensors placed inside the source code.An automatic JavaScript analyzer allowing for security testing of Ajax and Web 2.0 applications. Industry’s most advanced and in-depth SQL injection and Cross site scripting testing. Visual macro recorder makes testing web forms and password protected areas easy.Multi-threaded and lightning fast scanner able to crawl hundreds of thousands of pages without interruptions.Acunetix WVS understands complex web technologies such as SOAP, XML, AJAX and JSON.Acunetix Customers include the London Stock Exchange, Cisco, NASA, US Air Force, US Army PriceWaterhouseCoopers, KPMG, Deloitte, Sony, Bank of China, HSBC, Barclays, Deutsche Bank, The Pentagon, Nokia, Fujitsu, Skype, California Department of Justice, US Geological Service and many more. You can find us on Facebook at http://www.facebook.com/Acunetix. | www.acunetix.com | |
 |
Adobe is changing the world though digital experiences. We help our customers develop and deliver high-impact experiences that differentiate brands, build loyalty, and drive revenue across every screen, including smartphones, computers, tablets and TVs. Adobe content solutions are used daily by millions of companies worldwide—from publishers and broadcasters, to enterprises, marketing agencies and household-name brands. Building on our established design leadership, we enable customers not only to make great content, but to manage, measure and monetize it for maximum impact. | www.adobe.com | |
 |
Amazon.com, a Fortune 500 company based in Seattle, opened on the World Wide Web in July 1995 and offers Earth's Biggest Selection, where customers can find and discover anything they might want to buy online. The brightest minds come to Amazon to develop technology that improves the lives of shoppers and sellers around the world. Pioneering technical challenges of unprecedented scale and complexity, Amazon also provides developers access to Amazon's own back-end platform and in-the-cloud infrastructure. Examples include Amazon Elastic Compute Cloud, Amazon Simple Storage Service, Amazon SimpleDB, Amazon Simple Queue Service, Amazon Flexible Payments Service, and Amazon Mechanical Turk. | www.amazon.com | |
 |
Accuvant LABS is the world's best and most respected attack and penetration team. Since 2002, Accuvant LABS has provided penetration testing, application and enterprise security assessments, vulnerability research and training to more than 2,000 clients across industry verticals. Experts from the team have won numerous awards and been featured by broadcast outlets and publications such as Ars Technica, Associated Press, BNN, CNN, Forbes, The New York Times, and The Wall Street Journal, among others, and regularly speak at top tier information security conferences. | www.accuvant.com | |
 |
Aspect Security Founded in 2002, we are consulting firm focusing exclusively on application security. We help to ensure that the software that drives business is protected against hackers. Aspect’s Security Engineers analyze, test and validate approximately 5,000,000 lines of code a month, most of which are critical to the national infrastructure. Our work unearths over 10,000 vulnerabilities every year across a wide range of technologies and architectures. Our recommendations dramatically improve our clients’ security posture. We support a worldwide clientele with critical applications in the government, defense, financial, healthcare, services and retail sectors. Our educational division has taught tens of thousands of people around the world how to build, test and deploy secure applications making us a leader in application security training. Flexible delivery options include instructor-led training either in-person or via webcast, or, on-demand through our innovative eLearning curriculum. Aspect Security’s principals are pioneers in the field having started one of the world’s first application security practices in 1998. They conceived of several industry-leading standards such the OWASP Top Ten, WebGoat, the Application Security Verification Standard (ASVS), Risk Rating Methodology and Enterprise Security API (ESAPI). These free and open materials are downloaded over 50,000 times a month. We are a founding member of the Open Web Application Security Project (OWASP) in support of educating organizations about the ever-changing threat landscape and how to properly build and secure applications. Headquartered in Columbia, MD, our personnel is located throughout the United States serving our worldwide clientele. | www.aspectsecurity.com | |
 |
Bayshore Networks is the leading provider of high-end information assurance and security products for the defense industrial base, government and critical infrastructure organizations and commercial enterprise. Trusted by the worldʼs top defense contractors and developed exclusively in the United States, Bayshoreʼs flagship product SingleKey™ is a multi-protocol application firewall that secures all links and applications behind the DMZ. SingleKey blocks Advanced Persistent Threat (APT) actors and insider threats, mitigates vulnerabilities in SCADA industrial control systems and protects mission-critical applications. Bayshoreʼs threat management and analytics platform, SingleView™, manages and controls multiple SingleKeys in a highly distributed environment and provides real-time situational awareness and big data analytics about the highly sensitive digital assets of our defense and government customers. For more information follow Bayshore Networks on Twitter @bayshorenet | www.bayshorenetworks.com | |
 |
Best Buy Co., Inc.(NYSE: BBY) is a leading multi-channel global retailer and developer of technology products and services. Every day our employees - 180,000 strong - are committed to helping deliver the technology solutions that enable easy access to people, knowledge, ideas and fun. We are keenly aware of our role and impact on the world, and we are committed to developing and implementing business strategies that bring sustainable technology solutions to our consumers and communities. For information about Best Buy, visit www.bby.com and to shop at Best Buy, visitwww.bestbuy.com | www.bby.com | |
 |
Cigital, Inc. is the leading software security consulting firm in the world. Established in 1992, Cigital plans and implements initiatives that help organizations ensure their applications are secure and reliable while also improving how they build and deploy software. Our recognized experts apply a combination of proven methodologies, tools, and best practices to meet each client’s unique requirements. Cigital is headquartered outside Washington, D.C. with regional offices in the U.S., Europe, and India. | www.cigital.com | |
 |
DBAPPSecurity, Inc. OWASP global partner. A well known company focused on WEB Application security and Data security. They have hundreds of customers including many fortune 500, which cover the field like Financial, Telecom, Energy, Government etc. The products include WEB application vulnerability scanner, Database vulnerability scanner, WEB application firewall, Database Auditor and Log Auditor. They have very competitive solution for Data leakage, WEB defense, Compliance, and Cloud security. They also have well known security research team. | www.DBAppSecurity.com | |
 |
Denim Group is a custom software development firm skilled in large-scale development projects across multiple platforms, languages and applications. What makes Denim Group unique is that the company brings significant core competencies in software security to the table, offering an innovative blend of secure software development, testing and training capabilities that protect a company’s biggest asset, its data. Denim Group customers span an international client base of commercial and public sector organizations across the financial services, banking, insurance, healthcare and defense industries. Its depth of experience building large-scale software development systems in a secure fashion has made the company's leaders recognized experts in their fields. Denim Group has been recognized as one of the 5,000 Fastest Growing Company's by Inc. Magazine several years in a row, and has won multiple awards including its recent accolades as one of the best places to work in San Antonio. | www.denimgroup.com | |
 |
Dreamlab Technologies AG Dreamlab Technologies is a leading company in developing and implementing individual solutions for integral security concerning your information, your organizations and your systems. Being a performance oriented and reliable partner, we advise you independently and neutrally, we work objectively verifiable, based on open standards, and we pass on our knowledge in an integral and integrable way. Integral security stands for security as an overall package. For example, besides IT it also contains processes, ways of communication and structural measures. Integral information security is an important prerequisite in order to responsibly lead an organization. | www.dreamlab.net | |
 |
FICO (NYSE:FICO) delivers superior predictive analytics solutions that drive smarter decisions. The company's groundbreaking use of mathematics to predict consumer behavior has transformed entire industries and revolutionized the way risk is managed and products are marketed. FICO's innovative solutions include the FICO® Score — the standard measure of consumer credit risk in the United States — along with industry-leading solutions for managing credit accounts, identifying and minimizing the impact of fraud, and customizing consumer offers with pinpoint accuracy. Most of the world's top banks, as well as leading insurers, retailers, pharmaceutical businesses and government agencies rely on FICO solutions to accelerate growth, control risk, boost profits and meet regulatory and competitive demands. FICO also helps millions of individuals manage their personal credit health through www.myFICO.com. Founded in 1956, FICO introduced analytic solutions such as credit scoring that have made credit more widely available, not just in the United States but around the world. We have pioneered the development and application of critical technologies behind decision management. These include predictive analytics, business rules management and optimization. We use these technologies to help businesses improve the precision, consistency and agility of their complex, high–volume decisions. | www.fico.com | |
 |
FishNet Security is the No. 1 provider of information security solutions that combine technology, services, support, and training. We are the only nationally focused information security solutions provider with a full suite of professional services in Information Assurance, Security Integration, 24x7 Support, Managed Services, and Training. Since 1996, we have been providing our clients with solutions to help them effectively manage risk, meet compliance requirements, and reduce cost, while maximizing security effectiveness and operational efficiency.Our commitment to information security excellence is unparalleled. We distinguish ourselves with the most comprehensive offering available in the market and a track record of delivering quality solutions to over 5,000 clients nationwide, FORTUNE 500 companies and global institutions alike. We serve customers in various industries, such as financial services, healthcare, government, retail, and technology.FishNet Security provides consulting services in a broad base of relevant information security domains. We have mature and established consulting practices that focus on the following: PCI Compliance, Governance, Risk, and Compliance, Incident Management, Security Assessment, Application Security, Network Security, Data Security and Privacy, Enterprise Mobility, and Identity and Access Management. Our Professional Services team is powered by experienced consultants that possess numerous certification designations, including CISSP, CISM, CISA, ISO Lead Auditor, PCI QSA, PCI PAQSA, NSA-IAM, and countless product-focused certifications. We actively grow, recruit, and retain the industry’s best security talent. We differentiate our services by providing security solutions that combine business acumen, technical expertise, real-world experience, and outstanding customer service. Our thought leadership is greatly valued by the security community and frequently featured in many publications and national conferences. Our company has experienced tremendous growth in the last few years and we expect to continue growing at that same pace. We will remain at the forefront in providing security solutions to our customers and enabling them to conduct their business successfully and securely. | www.fishnetsecurity.com | |
 |
Gotham Digital Science (GDS) is an international security services company specializing in Application and Network Infrastructure security, and Information Security Risk Management. GDS clients number among the largest financial services institutions and software development companies in the world. GDS security specialists work with clients to assess risk and then design, build, and maintain secure applications, networks, and processes. With offices located in New York City and London, GDS seamlessly and efficiently assists clients with operations on both sides of the Atlantic. GDS is a member of CREST, the Council of Registered Ethical Security Testers, as well as a member of the UK Government CHECK scheme, allowing GDS to provide security assurance services to Her Majesty's Government and UK Critical National Infrastructure on systems processing protectively marked information. | www.gdssecurity.com | |
 |
HP Enterprise Security: HP is a leading provider of security and compliance solutions for modern enterprises that want to mitigate risk in their hybrid environments and defend against advanced threats. Based on market leading products from ArcSight, Fortify, and TippingPoint, the HP Security Intelligence and Risk Management (SIRM) Platform uniquely delivers the advanced correlation, application protection, and network defense technology to protect today’s applications and IT infrastructures from sophisticated cyber threats. | www.hpenterprisesecurity.com | |
 |
IBM's security portfolio provides the security intelligence to help organizations holistically protect its people, infrastructure, data and applications. IBM offers solutions for identity and access management, database security, application development, risk management, endpoint management, network security and more. IBM operates the world's broadest security research and development organization and delivery organization. This comprises nine security operations centers, nine IBM Research centers, 11 software security development labs and an Institute for Advanced Security with chapters in the United States, Europe and Asia Pacific. IBM monitors 13 billion security events per day in more than 130 countries and holds more than 3,000 security patents. | www.ibm.com/security | |
 |
IOActive Established in 1998, IOActive is an industry leader that offers comprehensive computer security services with specializations in smart grid technologies, software assurance, and compliance. Boasting a well-rounded and diverse clientele, IOActive works with a majority of Global 500 companies including power and utility, game, hardware, retail, financial, media, router, travel, aerospace, healthcare, high-tech, social networking, and software development organizations. As a home for highly skilled and experienced computer security professionals, IOActive attracts consultants who contribute to the growing body of security knowledge by speaking at such elite conferences as BlackHat, Defcon, BlueHat, CanSec, Syscan, WhatTheHack, and 21c3. | www.ioactive.com | |
 |
NetIQ is an enterprise software company with relentless focus on customer success. Customers and partners choose NetIQ to cost-effectively tackle information protection challenges (driven by regulatory requirements such as PCI DSS, HIPAA/HITECH, SOX, NERC and others) and manage the complexity of dynamic, highly-distributed business applications. Our portfolio includes scalable, automated solutions for Identity, Security, Resource, and Service Management that help organizations securely deliver, measure, and manage computing services across physical, virtual, and cloud computing environments. | www.netiq.com | |
 |
NetSPI is a privately held information-security consulting company founded in 2001. By using its consulting team's deep security knowledge and its CorrelatedVM vulnerability management & reporting solution, the company is a trusted advisor to large enterprises. NetSPI provides a range of assessment and advisory services designed to analyze and mitigate risks and ensure compliance with relevant regulations and industry standards. Clients include large financial services firms, retailers, healthcare organizations and technology companies. | www.netspi.com | |
 |
Oracle With more than 380,000 customers—including 100 of the Fortune 100—and with deployments across a wide variety of industries in more than 145 countries around the globe, Oracle offers an optimized and fully integrated stack of business hardware and software systems that helps organizations overcome complexity and unleash innovation. Oracle engineers hardware and software to work together in the cloud and in your data center–from servers and storage, to database and middleware, through applications. Security is a key priority at Oracle. Encompassing every phase of the product development lifecycle, Oracle Software Security Assurance is Oracle's methodology for building security into the design, build, testing, and maintenance of its products. Oracle's goal is to ensure that Oracle's products, as well as the customer systems that leverage those products, remain as secure as possible. | www.oracle.com | |
 |
Praetorian is an information security provider and research center that provides risk assessment, penetration testing, secure software development, computer forensics, and security education services. Our mission is to help our clients understand and minimize their overall risk and liability. Through our assessment services, your organization can obtain an accurate, independent security evaluation. Through our advisory offerings, we can help your organization build, define, communicate, and enforce a comprehensive security strategy. As an independent security firm, Praetorian builds its reputation on our expertise, integrity, professionalism, and client satisfaction. As a boutique firm, Praetorian must distinguish itself by the quality of its service and the technical prowess and business acumen of its consultants. Subsequently, Praetorian only considers the top five percent from the security industry for employment. Our consultants come from a wide range of backgrounds and specialties. All consultants come from a computer science or engineering discipline and many consultants have obtained masters and doctorates. Our team members include published authors, open source developers, industry researchers, and conference presenters. | www.praetorian.com | |
 |
Protiviti is a global business consulting and risk consulting firm composed of experts specializing in risk, advisory and transaction services. The firm helps solve problems in finance and transactions, operations, technology, information security & privacy, litigation, governance, risk, and compliance. Protiviti's highly trained, results-oriented professionals provide a unique perspective on a wide range of critical business issues for clients in the Americas, Asia-Pacific, Europe and the Middle East. Protiviti has more than 70 locations worldwide and is a wholly owned subsidiary of Robert Half International Inc. (NYSE: RHI). Founded in 1948, Robert Half International is a member of the S&P 500 index. For additional information about Protiviti, Contact Rocco Grillo at [email protected] / 212.603.8381 | www.protiviti.com | |
 |
Qualys, Inc. is the pioneer and leading provider of information security and compliance cloud solutions with 5,500+ customers in 85 countries, including 51 of the Forbes Global 100. The QualysGuard Cloud Platform and integrated suite of applications helps businesses simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand and automating the full spectrum of auditing, compliance and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including BT, Dell SecureWorks, Fujitsu, IBM, NTT, Symantec, Verizon, and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA). | www.qualys.com | |
 |
Redspin is a leading provider of penetration testing, web application security assessments, and IT compliance audits. For over a decade. Redspin has helped organizations secure their IT infrastructure, harden web applications, protect critical data, maintain compliance and reduce overall risk.Redspin brings a "real world" perspective to each client engagement, gained from the thousands of security assessments we've conducted since our founding in 2001. Whether you're a Fortune 1000 enterprise or small-to-medium size business, Redspin presents our findings, analysis and recommendations within your business context, informed by our deep domain knowledge and industry-specific experience in healthcare, banking, financial services, retail, energy, technology, and hospitality/casinos. | www.redspin.com | |
 |
Stack Exchange In 2008, Jeff Atwood and Joel Spolsky created a site called Stack Overflow and brought together millions of computer programmers from around the world to help each other with detailed technical questions. Stack Overflow quickly became a cherished resource for programmers and IT professionals from many different backgrounds, including security. When the Stack Exchange company was formed to apply the Stack Overflow formula to other fields, IT Security was one of the first sites proposed. A beta version opened in November of 2010, and the site launched in July of 2011 - today, it's a growing community of 7 thousand registered users with over 3 thousand expertly-answered security questions under their belts. The site continues to expand into wider security areas such as elements of physical security, audit and emerging technologies, and is attracting a strong core of security professionals. Key themes and popular questions are also discussed on the Security Stack Exchange blog[1] and in the site's chat room "The DMZ" 2].1:http://blog.security.stackexchange.com 2: http://chat.stackexchange.com/rooms/151/the-dmz | www.stackexchange.com | |
 |
Symantec was founded in 1982 by visionary computer scientists. The company has evolved to become one of the world’s largest software companies with more than 18,500 employees in more than 50 countries. We provide security, storage and systems management solutions to help our customers – from consumers and small businesses to the largest global organizations – secure and manage their information-driven world against more risks at more points, more completely and efficiently than any other company. | www.symantc.com/about/profile | |
 |
Trustwave is a global leader in providing on-demand data security and payment card industry compliance management solutions to businesses and organizations throughout the world. Trustwave SpiderLabs has helped thousands of businesses and organizations throughout the world secure data, optimize network assets and mitigate the risk of data loss through shortfalls in application security controls. SpiderLabs offer "white hat" or "ethical hacking" services such as penetration testing (application, network, wireless and social engineering) to identify any weaknesses in your current environment that can be exploited by hackers and also offers incident response and forensics services worldwide. Trustwave is headquartered in the United States in Chicago, Ill. with offices throughout Africa, Asia, Australia, Europe, North America and South America | www.trustwave.com | |
 |
WhiteHat Security is the leading provider of website risk management solutions that protect critical data, ensure compliance and narrow the window of risk. WhiteHat Sentinel, the company’s flagship product family, is the most accurate and cost-effective website vulnerability management solution available, delivering the visibility, flexibility, and control that organizations need to prevent website attacks. | www.whitehatsec.com |
