FFIEC News

Ounce Labs to Demonstrate its Software Risk Analysis Aolution at ISACA IT Governance and Compliance Conference

(Nov 06, 2007)-- Ounce Labs announced that it will be participating in the upcoming ISACA IT Governance and Compliance Conference taking place in Boston on November 14 - 16, 2007 at the Hyatt Regency in Boston, Mass. The conference is designed to create an environment for attendees where information, experience, skills and knowledge are exchanged to establish a baseline and identify best practices for IT governance.

Ounce will be demonstrating its industry leading software risk analysis solution, Ounce 5, which includes recently added functionality designed to enable compliance with the Payment Card Industry (PCI) Data Security Standard, the Open Web Application Security Project (OWASP) Top 10 2007 and mapping to the Common Weakness Enumeration (CWE) vulnerability database.

Ounce 5 enables organizations to radically reduce the potential for security breaches by making it possible to identify, prioritize and eliminate application vulnerabilities across their entire software portfolio. These often-overlooked software vulnerabilities are what cyber-criminals use to gain access to customer data and other confidential business information.

"Compliance regulations and IT governance initiatives provide organizations with a measurable blueprint for network and data security," said Claudia Dent, Senior Vice President of Product Management. "Industry events like ISACA's IT Governance and Compliance Conference help attendees to further understand why discovering and remediation of application vulnerabilities needs to be among their company's security and governance best practices."

With Ounce Labs, organizations strengthen application security, protect confidential information and verify compliance with both internal policies and industry mandates such as PCI, FISMA, HIPAA and others.

Share or bookmarklet this web page at: