Vaunted Security Enterprise Manager for HPE Fortify SSC

|Welcome to Vaunted Security

Enterprise Manager with CentralView™ for HPE Fortify Software Security Center (SSC) and HPE Fortify-on-Demand (FoD)

Managing the Risk from Application Security Vulnerabilities

We created Enterprise Manager with CentralView™ for HPE Fortify at Vaunted Security to be able to:

* Manage multiple SSC servers from a central console
* Aggregate audited application scan results from those multiple SSC servers, using the published RESTful API, to a single HPE Fortify SSC server
* Easily perform software, hardware, database or application server upgrades for SSC servers

From many-to-one, Enterprise Manager with CentralView™ introduces a new paradigm of management for multiple instances of HPE Fortify SSC from a centralized management console as well as the ability to aggregate the audited application security scan results from those SSC servers to a single, CentralView™ SSC Server.

|Enterprise Manager with CentralView™

Enterprise Manager with CentralView™ for HPE’s Fortify Software Security Center (SSC) and Fortify-on-Demand (FoD)

An Enterprise solution for aggregating Application scan results from multiple HPE Fortify Software Security Center (SSC) servers and HPE Fortify-on-Demand (FoD). With Enterprise Manager with CentralView™, it is now possible to roll-up HPE Fortify SCA scan results from multiple HPE Fortify SSC servers, along with HPE FoD results, into one CentralView™ SSC instance, providing a CentralView™ of the security risk posture of the enterprise application landscape.

With Enterprise Manager with CentralView™, internal, outsourced, or geo-located application development teams can work in a decentralized, sandbox HPE Fortify SSC environment, writing code, scanning code, and remediating code, without affecting the results in the SSC CentralView™ server.

Utilize Enterprise Manager with CentralView™ for aggregating multiple HPE Fortify SSC instances and HPE FoD results – all into a single CentralView™.

By enabling decentralized, sandbox HPE Fortify SSC servers, development organizations can quickly triage and fix vulnerabilities by using HPE’s Fortify SSC static and dynamic analyzers, without impacting the trusted results of the CentralView™ server. Your Security and Development teams get a collaborative, work space and repository to work/triage together, using role-specific interfaces. Your developers get detailed reference information, describing problems and giving detailed instructions for finding and fixing identified vulnerabilities — in the programming language of the questionable code — which helps them learn about secure-coding practices.

Scheduled or on-demand, Enterprise Manager with CentralView™ will aggregate results from all sandbox HPE Fortify SSC servers and HPE Fortify-on-Demand into one, providing a CentralView™ into the risk profile of enterprise application landscape.

Download Datasheet

How does Enterprise Manager with CentralView™ work?

When managing a large farm of Software Security Center (SSC) servers in a distributed environment – it’s difficult to synchronize all of the vulnerability, trending and reporting data into a centralized pane of glass. Introducing CentralView™. CentralView™ inserts itself as a conduit, giving Administrators and Executives the ability to gather large amounts of data from a number of decentralized SSC servers. Administrators and security officers now have the ability to view the security posture of the entire Enterprise Application Landscape.

Quickly triage and fix vulnerabilities by using Fortify Software Security Center Server’s static and dynamic analyzers. Your security and development teams get a collaborative, web-based workspace and repository to work together using role-specific interfaces. Your developers get detailed reference information, describing problems and giving detailed instructions for fixing them—in the programming language of the questionable code—which helps them learn about secure coding practices.

|How It Works

A centralized application for rolling-up and managing multiple instances of HPE Fortify Software Security Center (SSC) and Fortify-On-Demand (FoD)

Enterprise Manager with CentralView™ for HPE Fortify enables dedicated application development teams or geo-located development teams who want to work in their own HPE Fortify SSC sandbox environment to write code, scan code, and remediate audited issues, without impacting the results in the CentralView™ HPE Fortify SSC server.

Enterprise Manager with CentralView™ for HPE Fortify provides management capabilities and data aggregation for multiple HPE Fortify SSC instances, including FoD, to a single CentralView™ HPE Fortify SSC server – all from a central console.

By enabling DevOps, sandbox HPE Fortify SSC servers for development teams, they will be able to quickly ‘find, fix, and fortify’ issues by using HPE Fortify SSC’s static and dynamic analyzers, without impacting the trusted results of your CentralView™ HPE Fortify SSC server. Your Security and Development teams utilize the native HPE Fortify SSC collaborative, web-based work-space and repository, working together, using role-specific interfaces. From HPE Fortify SSC, your Developers get detailed reference information, describing problems and giving detailed information around fixing identified vulnerabilities — in the programming language of the questionable code — which helps them learn about secure-coding practices.

|The Team

Leadership

Mark Feferman, CISSP, CSSLP, CISM is co-founder and Principal of Vaunted Security and serves as the company’s CEO. Mark holds a B.A. in Computer Science from The University of Texas at Austin

Steve York is co-founder and Principal of Vaunted Security and serves as the company’s CTO. Steve has over 35 years of enterprise software development. Steve holds a B.S. from Texas A&M University. When he is not writing software, he’s writing software.

Our Expertise

HPE Fortify Software Security Center (SSC)

Enterprise Manager for HPE Fortify SSC

CentralView™ Server for HPE Fortify SSC

DevOps and Agile Enablement for HPE Fortify SSC

|Contact Our Team

Interested in simplified enterprise management for HPE Fortify Software Security Center (SSC)?

Contact us!

Houston, TX. USA

info@vauntedsecurity.com

713.568.8897

http://vauntedsecurity.com