Login to your TrustKeeper Portal Account
Thank You. One of our sales specialists will be in touch shortly.
Speak with a Trustwave sales specialist to learn more.
Trustwave Managed Security Testing reveals your vulnerabilities and alerts you to the consequences of exploitation. Data security teams need to know what they’re protecting and what they’re protecting it from to make good risk management decisions and
technology investments. Security testing helps businesses identify their network-connected assets, learn how those assets are vulnerable to attack, and understand what could happen if those assets were compromised.
Businesses use Trustwave Managed Security Testing as a single platform for all of their managed vulnerability assessment, database security testing, network penetration testing, and application penetration testing needs.
A penetration test or "ethical hack" evaluates an application's or network's ability to withstand attack. During a penetration test, you authorize an expert (or "ethical hacker") armed with the same techniques as today's cybercriminals to hack into your
network or application. Such an exercise will open your eyes to vulnerabilities you didn't know existed and the effects of exploitation.
Vulnerability scanning evaluates a system for potential vulnerabilities or weak configurations, is largely automated and can only ever find a subset of security issues. Penetration testing, on the other hand, is a manual process performed by a human.
A penetration tester will use tools as a part of their work, but they apply their human ingenuity to exploit vulnerabilities and illustrate what an attacker might be capable of when targeting a particular system.
Managed Security Testing from Trustwave SpiderLabs® allows IT and information security teams to take a programmatic approach to vulnerability management through managed vulnerability scanning across databases, networks and applications, as well as, in-depth manual penetration testing of networks and applications.
Now more than ever, businesses realize the need for pro-active security testing, and budgets are increasing as a result. Still, planning for and procuring security testing presents a number of challenges:
Overview: Trustwave Managed Security Testing (2 mins)
Best Practices Scanning
As discovered in penetration testing
Trustwave SpiderLabs designed four levels of penetration testing to align with four levels of threats to your network. Depending on your budget and the business-value you assign to the assets you intend to test, you will choose one of the following levels of testing for applications or internal or external networks:
Data security leaders know that if security is an obstacle, the business will find ways around it. Trustwave's 2014 Security Pressures Report states that four out of five IT professionals report being pressured to roll out IT projects despite security concerns. Adapt quickly to change and keep up with business demands without leaving security considerations behind. Managed Security Testing's flex-spend model allows you to earmark budget for testing, and then consume testing funds at a moment's notice.
Many IT security professionals know that they will need security testing throughout the year, but not exactly how much. Managed Security Testing's pre-scoped scans and tests, cost transparency and flex-spend consumption model make planning easier and more precise. You define your security budget and then allocate it as you see fit. With quarterly payments, penetration testing becomes a predictable operating expense that can be built into your budgets.
Avoid lengthy negotiations and contracts held up in legal with Managed Security Testing's flex-spend model. Enroll a target in testing in minutes and schedule a test with just two weeks' lead time in fewer than five clicks.
Maintenance tests included with any penetration test will re-evaluate findings, wherever possible, to provide evidence of remediation and mitigation actions and support fulfillment of compliance requirements.
You'll know exactly what to expect from Managed Security Testing across your databases, networks and applications with clear pricing and pre-defined scoping. Consolidate management and reporting with a single pane of glass, rather than juggling multiple inconsistent report formats and tracking spreadsheets.
Standards, such as the PCI DSS, require vulnerability scanning and penetration testing of in-scope network environments and applications. Managed Security Testing helps fulfill PCI DSS requirements, such as 6.6 and 11.3, and provides ongoing evaluation of the security of your networks or applications to support HIPAA, Sarbanes-Oxley (SOX), FISMA and GLBA/FFIEC compliance efforts.
You identify your testing budget and allocate it as you see fit. Your account balance depletes with each database, network or application you enroll, and you can refill your account at any time.
Trustwave's online reporting portal delivers real-time access to detailed, actionable results. Unlike static reports, the portal makes it easy to take action on your information, track results, manage progress and remediate vulnerabilities from a single source.
Demo: Managed Security Testing (7 mins)
Illustrates how multiple vulnerabilities can be linked to execute a successful attack.
Discover vulnerability evidence, images and videos. Slideshow walkthroughs quickly explain vulnerabilities to key team members.
Stay on top of the latest changes in test status with instant email alerts.
Take advantage of multiple views of risk, remediation status, compromised data and status, across projects or tests. Historical views of test results allow for trend analysis and insight into your organization's security posture over time. Review personalized reports by risk, finding status, projects, custom fields, individual tests, and test types, and export in multiple formats including: PDF, Excel, XML, CSV and HTML.
Drills down to at-a-glance views of project, test status and vulnerability findings.
Verify security fixes have been correctly implemented with maintenance tests that re-evaluate any findings uncovered in prior tests where possible.
Delivers secure file storage for the safe exchange of test notes, documents and other files.
2016 Trustwave Global Security Report
2014 State of Risk Report
Why Move to an MSSP?
Ethical Hacking History
10 Reasons to Test, Not Guess
Trustwave Managed Security Services
Trustwave Managed Security Testing
Trustwave Managed Security Testing Description
Managed Security Testing for the financial services industry
Managed Security Testing - Penetration Testing
Trustwave Managed Security Testing - Enrollment Selection Guide
Trustwave Managed Security Testing Service Levels
IDC MarketScape: U.S. Emerging Managed Security Services 2016 Vendor Assessment
Security Testing Practices and Priorities: An Osterman Research Survey Report
Managed Security Testing Quick Tour
Managed Security Testing Walkthrough