REDWOOD SHORES, CA – November 9, 2011 - Sensage, Inc., the leading provider of advanced Security Information and Event Management (SIEM) and founder of Open Security Intelligence, today announced that its Sensage Event Data Warehouse has earned Common Criteria certification, an international security standard for IT Security products.
Recognized worldwide, Common Criteria certification provides Government agencies and security-conscious enterprises with independent assurance that products they purchase have been rigorously tested to meet security requirements for the most classified environments.
“This certification is another example of how Sensage continues to mature its offerings for proactive government agencies and enterprises dealing with the most challenging SIEM use cases,” explained Joe Gottlieb, President and CEO of Sensage. “Common Criteria certification allows government agencies and contractors to expand their Sensage deployments, knowing that the most advanced security features are in place, fully documented, and independently verified.”
Sensage achieved Common Criteria Evaluation Assurance Level (EAL) 2+ for its event data warehouse, which holds records of all system, network and device events, identity management and physical access systems, as well as data from web and email traffic. Sensage collects and correlates massive volumes of security events over long periods of time, making it available to security analysts responsible for complex threat investigations and situation awareness.
In order to facilitate prompt completion of the Common Criteria certification, Sensage partnered with Corsec Security, Inc., a consulting firm with over thirteen years of validation experience.
“The volatility of the emerging threat landscape is driving demand for solutions that help identify sophisticated patterns and trends from user and machine data,” said Matthew Appler, CEO and co-founder of Corsec Security. “By achieving Common Criteria certification, Sensage shows their continued commitment to deliver high value solutions that have been thoroughly vetted by international security standards.”
The audit included evaluation of the following Sensage functional categories:
For more details about the functions tested and certified, visit
http://www.sensage.com/content/security-certifications.
Common Criteria is an internationally recognized set of guidelines (ISO 15408), which define a common framework for evaluating security features and capabilities of Information Technology security products. The standard consists of several predetermined evaluation assurance levels, each one more stringent than the last. Common Criteria allows vendors to have their products tested against a chosen level by an independent third-party testing laboratory. Once completed, Common Criteria certifications are mutually accepted by 26 countries through the CCRA (Common Criteria Recognition Agreement), including the United States. Common Criteria certification of security products is mandated by the U.S. government for all federal purchases. A listing of Common Criteria Certified Products is available here:
http://www.cse-cst.gc.ca/its-sti/services/cc/cp-pc-eng.html
About Sensage
Sensage®, Inc. helps organizations collect, store, analyze and interpret complex information to identify new threats, improve cyber-security defenses, and achieve industry and regulatory compliance.
Sensage serves our customers’ most advanced Security Information and Event Management (SIEM), log management, Call Detail Record (CDR) retention and retrieval and Continuous Controls Monitoring (CCM) use cases. Hundreds of customers worldwide leverage patented Security Intelligence solutions from Sensage to effectively identify, understand and counteract insider threats, advanced persistent threats, cyber threats, fraud and compliance violations.
Combining powerful data warehousing with scalable, clustered multiprocessing and robust analytics, Sensage solutions handle all event data types, scale to petabytes, minimize storage costs and perform sophisticated data analysis. Sensage has achieved Federal Common Criteria and is the process for FIPS 140-2 Certification. Sensage partners include Cerner, Cisco, EMC, McAfee and SAP. For more information, visit www.Sensage.com, follow us on Twitter: @Sensage, and watch for us on www.youtube.com/Sensagetv.
About Corsec Security, Inc.
Corsec Security, Inc. specializes in helping companies navigate through the complex process of receiving FIPS 140 and Common Criteria (CC) certifications.
Corsec’s consulting, document creation, and project management services deliver unmatched expertise in achieving government validation efforts at a firm, fixed price. Corsec partners with companies around the world to achieve local and international certification and to add security functionality to a wide range of products.
Corsec minimizes the time, effort and money a vendor needs to invest in validation while ultimately maximizing the return on that investment. For further information, please visit www.corsec.com and follow us on twitter @CorsecSecurity.
# # #
