NetSPI Achieves High Adoption Rate and Praise for New CorrelatedVM™ Customer Portal

Share Article

Getting Corporate Vulnerability Data, In-House Security Teams, and Application Developers All on the Same Page Just Got a Lot Easier with NetSPI’s New CorrelatedVM™ Customer Portal

The platform pulled our vulnerability assessment work together in one place. Now NetSPI’s new portal gives us secure, role-based access to all of our projects and pen test results, the ability to collaborate more effectively across our team"

NetSPI today announced very strong adoption rates for the rollout of their new SaaS (Software as a Service) portal that offers customers secure access into key CorrelatedVM™ features and its extensive vulnerability data store. CorrelatedVM is NetSPI’s proprietary pen test management platform that sets their deep-dive pen test work, and customer-facing deliverables, well apart from all other pen test providers. Prior to NetSPI’s rollout of the CorrelatedVM Portal service, the CorrelatedVM software has been a foundational element underpinning NetSPI’s consistent growth and profitability in the application and network vulnerability-assessment market. The CorrelatedVM management platform has been used exclusively for years by NetSPI’s elite team of pen test consultants on every engagement to great success. At the time of this announcement, 90% of their active customers are now using the new CorrelatedVM portal, with additional customers working through the evaluation process. The adoption rate and positive user response to the new portal service by the company’s extremely security-conscious customer base, primarily large to mid-sized U.S. corporations with highly-skilled internal staff and mature security programs, has far exceeded expectations.

"We are pleased to extend the power of CorrelatedVM to our enterprise customers by making it directly available to them as a SaaS offering,” said Deke George, CEO of NetSPI. “There will be a series of SaaS releases of CorrelatedVM software over the next year and we expect the value of this highly-secured collaboration portal for our customers’ risk management professionals will continue to drive a robust adoption rate of CorrelatedVM and help more companies dramatically lower their exposure to the risk of unknown software vulnerabilities lying in wait on their networks.”

NetSPI addresses the application and network penetration testing needs of many of the largest most security-conscious U.S. corporations. And the powerful vulnerability data correlation features in CorrelatedVM, its in-depth penetration testing tools (both manual and automated), and the disciplined thoroughness and consistency of methodology that it brings to the vulnerability management challenge has set NetSPI’s professional services well apart from its competitors; both in winning business and in maintaining long term customer relationships.

Vulnerability Management is the practice of identifying, classifying, remediating, and mitigating IT-related vulnerabilities that put businesses at risk; which includes all software everywhere on the network from deep within network devices, on servers, in databases, on desktops, and on mobile devices. This is an overwhelming challenge given the explosive proliferation of software applications that are being installed in and continuously upgraded on networks today. As a result, there are many vulnerability scanning tools with disparate vulnerability data formats and reports, and multiple security teams (both in-house and under contract), working almost independently across most large corporate enterprises today. These teams lack:

  •     Adequate coordination of efforts
  •     A single tool to access all vulnerability data and projects
  •     All data and reports in a common format for viewing, printing and sharing
  •     A consistent workflow for all vulnerability assessment projects
  •     Easily auditable vulnerability assessment activity, findings, and remediation outcomes
  •     Well defined and discipline governance for all corporate-wide vulnerability assessment work

NetSPI’s CorrelatedVM platform addresses this growing problem head on. The new CorrelatedVM customer portal taps into the heart of the CorrelatedVM platform’s advanced features and powerful database of vulnerability findings and remediation recommendations making them securely available in a browser session to everyone who is approved to use the portal. Features include project tracking, cross-team communications and collaboration, secure file sharing, rich common-format reporting, and much more.

“Vulnerability data can come from many sources – dynamic and static code analysis tools, manual testing efforts, network scanning tools and more,” said Seth Peter, CTO of NetSPI. “CorrelatedVM allows customers to centrally collect all of their vulnerability data from many disparate sources and turn that mountain of data into a concise and actionable data set. Then it makes that actionable data fully manageable in an organized/programmatic way with sophisticated team-collaboration tools available in our first SaaS release.”

"We were introduced to CorrelatedVM some time ago by our NetSPI consultant who was using it on a pen test engagement," said Jerry Farnstrom, Director of Enterprise Security Services at Univita. "The platform pulled our vulnerability assessment work together in one place. Now NetSPI’s new portal gives us secure, role-based access to all of our projects and pen test results, the ability to collaborate more effectively across our team, and web-based reporting.”

CorrelatedVM is available for all NetSPI customers.

For further information please call 612-465-8880 or send email to Rachel.Anderson(at)netspi(dot)com

To view a demo of the CorrelatedVM Platform, visit:

About NetSPI
NetSPI is a privately held information-security consulting company founded in 2001. By using its consulting team's deep security knowledge and its CorrelatedVM vulnerability management & reporting solution, the company is a trusted advisor to large enterprises. NetSPI provides a range of assessment and advisory services designed to analyze and mitigate risks and ensure compliance with relevant regulations and industry standards. Clients include large financial services firms, retailers, healthcare organizations and technology companies. More information is available at

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Alex Crittenden
Email >

Rachel Anderson
Visit website