Application Security, Inc. and NSSPlus Announce Joint Initiative to Standardize DoD Database Audits

Online, October 6, 2009 (Newswire.com) - NEW YORK and Falls Church, VA, October 5, 2009 â"€ Application Security, Inc., the leading provider of database security, risk and compliance (SRC) solutions for the enterprise, and Network Security Systems Plus, Inc. (NSSPlus), an Information Assurance (IA) and security engineering and consulting company, today announced a joint initiative to bring standardized technology and processes to DISA STIG (Defense Information Systems Agency Security Testing and Implementation Guide) database audits for the Department of Defense (DoD).

NSSPlus currently conducts IA, IA mitigation, Certification and Accreditation (C&A) and network security engineering support to the TRICARE Management Activity (TMA) in support of their IA and Department of Defense Information Assurance Certification Accreditation Process (DIACAP) program with Application Security, Inc.'s agentless database SRC audit solution, AppDetectivePro™.

For over five years, NSSPlus has used AppDetectivePro as their standard database audit solution for TMA and TMA contractor database audits. This partnership ensures that AppDetectivePro's coverage of the DISA STIG requirements remains unparalleled in the industry.

"Our key objective is to ensure successful audits of database systems within TRICARE, and to report those findings to the TRICARE Certifying Authority," said Felix Thomas, CEO and President, NSSPlus. "AppDetectivePro is the most comprehensive database SRC solution in the market and the only database audit solution we could standardize on for compliance with the DISA STIGs."

"Application Security, Inc.'s work with NSSPlus has been instrumental in establishing best practices for auditing DoD database systems via the DISA STIGs," said Josh Shaul, Vice President, product management, Application Security, Inc. "The goal of our collaboration is continuous compliance for DoD databases."

About Application Security, Inc.
Application Security, Inc. is the leading provider of agentless database security, risk and compliance (SRC) solutions for the enterprise. Application Security, Inc.'s agentless approach - AppDetectivePro for auditors and IT advisors, and DbProtect for the enterprise - delivers the industry's most scalable database SRC solution and is in use around the world in the most demanding environments by over 1,700 customers. The company was named to Inc. Magazine's 2007 (Inc. 500) and 2008 list of America's Fastest Growing Private Companies, and was also named to the 2008 Deloitte Technology Fast 50 by Deloitte & Touche.

For more information, please visit www.appsecinc.com.

DbProtect and AppDetetectivePro are trademarks of Application Security, Inc. All other product names, service marks, and trademarks mentioned herein are trademarks of their respective owners.