It is expected that Cenzic's branding will continue but become integrated with Trustwave services and products, and that existing Cenzic staff will simply become Trustwave employees.
Static application security testing (SAST) looks for security vulnerabilities in application code or binaries while the application is not running. Dynamic application security testing (DAST) focuses on continuous probing of running applications. “Cenzic’s highly automated and scalable security testing platform supercharges our ability to deliver integrated testing across a high volume of applications," said Robert McCullen, chairman and CEO at Trustwave. "This acquisition marks another milestone in Trustwave’s strategy to deliver comprehensive, automated and integrated security, compliance and threat intelligence solutions to the industry—all delivered through the cloud.”
"We believe the combination will create one of the industry's broadest, integrated security testing platforms designed to help businesses rapidly identify and address security weaknesses, thereby significantly helping to reduce threats and risks," Cas Purdy, vice president of corporate communications told eWeek.
Trustwave, founded in 1995 and headquartered in Chicago IL, has a history of organic growth coupled with acquisitions. In 2008, it acquired ControlPath; in 2009 it acquired Mirage Networks, and Vericept; BitArmor and Breach Security in 2010; M86 Security in 2012; and SecureConnect and AppSec in 2013. Although Trustwave filed for IPO in 2011, it remains a private company.
Now it has acquired Cenzic, a company founded in 2000 and headquartered in Campbell CA. Some of Cenzic's technology is licensed by other companies, including HP, IBM, NT OBJECTives and Whitehat Security. The company tests more than half a million online applications and helps secure trillions of dollars of commerce for Fortune 1000 companies, government agencies, universities and small and medium businesses, says Trustwave.
Last month Cenzic published a report that suggests 98% of applications have an average of 14 separate vulnerabilities.