NopSec Competes in 2018 ‘ASTORS’ Homeland Security Awards (Videos)

The NopSec Unified VRMcloud-based solution helps you identify, prioritize, proactively manage and report on IT vulnerabilities from a single platform, helping you to prioritize your vulnerability risks in minutes, so you can work on what matters.

NopSec, a Platinum Award Winner in the 2017 ‘ASTORS’ Homeland Security Awards Program, is pleased to announce the company’s flagship product, Unified VRM has been nominated to compete in the 2018 ‘ASTORS’ Awards Program.

NopSec’s Unified VRM is an innovative vulnerability risk management solution addressing the need for better prioritization and remediation of security vulnerabilities in a single platform.

Traditional solutions prioritize vulnerabilities solely based on CVSS score and asset classification – creating data overload for remediation teams without context.

Unified VRM’s advanced E3 engine delivers a concise list of prioritized vulnerabilities by exposing the systems and applications most likely to be attacked based on external threats, exploits, malware, social media feeds, and the organization’s unique IT environment.

It offers an extensive array of task, workflow automation, and governance capabilities to improve remediation, drive security/IT team collaboration, and improve goal setting and management.

(Discover NopSec’s Unified VRM for your vulnerability risk management. How does NopSec’s Unified VRM platform work? Find out here. Courtesy of NopSec and YouTube. Posted on Feb 4, 2016.)

NopSec offers a new way for organizations to prioritize and remediate security vulnerabilities through automation and machine learning—drastically reducing the time to remediation.

Revolutionizing vulnerability management, the intelligent solution empowers organizations to take a smarter, more targeted approach to proactive remediation to avoid hacker attacks and costly data breaches.

Organizations must rethink their approach to remediating security vulnerabilities.

Data overload and false positives are the biggest challenges in prioritizing security risks – creating lag time between detection and remediation of critical threats.

Organizations are not able to secure the holes within their environment faster than cybercriminals can exploit them. In fact, recent NopSec research found that 82 percent of organizations think their current remediation process is broken.

Unified VRM makes reporting on current risk posture and incident status easy with rich visualizations and dashboards.

Revolutionizing vulnerability management, it empowers organizations to take a smarter, more targeted approach to proactive remediation—avoiding hacker attacks and costly data breaches.


Find the Next Big Threat Before it Finds You.

Unified VRM® provides easy, comprehensive reporting throughout the vulnerability management process, with deep visibility and flexible options for reporting by groups, remediation progress, incident ownership, and aging.

Unified VRM® Web Application

The NopSec Unified Web Application Scanning module identifies vulnerabilities in your internet-facing applications.

Using a web application scanner already?

  • The Unified VRM Web Application Module supports integration with many common scanners, such as W3af, Burp, Skipfish, HP WebInspect and IBM AppScan.
  • If you don’t have a Web Application Scanner, you can leverage NopSec’s perimeter scanner and start seeing results in just a few hours.

Unified VRM® Network

The External Network Module helps you assess and manage vulnerabilities for internet-facing and perimeter networks.

  • Using the same supported scanners as the Internal Network Module, their External Network Module combines flexible scanner data input with analytics and remediation to accelerate your vulnerability management program.

Unified VRM® Security Configuration

Evaluate hosts’ operating system security hardening configurations based on industry-based configuration checklists or based on compliance with standards and regulations, including NIST, HIPAA, PCI, and more.

  • This is accomplished natively using a vulnerability scanner or via the SCAP-based XCCDF standard.

(NopSec’s mission it to help organizations make better cybersecurity decisions by helping them prioritize and remediate their risks. Learn how they help organizations in managing their threats, reducing risks, and staying compliant. Courtesy of NopSec and YouTube. Posted on Jan 9, 2017)

NopSec Unified VRM helps security professionals simplify their work, manage vulnerabilities effectively, and make more informed decisions.

In less than one year, customers cut their average time to remediation from 190 to under 60 days – resolving potential issues 3X faster.

Built on a cloud infrastructure, Unified VRM can be operational instantly, and the value can be realized immediately.

Its predictive analytics and machine learning models forecast the probability of exploitation so organizations can focus on the threats that pose the most critical risk to their business.

Incredibly simple wizards allow organizations to import vulnerability scan data with just a few clicks, and then the NopSec E3 Engine instantly goes to work cleansing the data (removing false positives and other irrelevant information), assigning individual threat risk scores and delivering a prioritized list of vulnerabilities.

Time to results takes mere hours, depending on the amount of data to be analyzed. Many customers report removing more than 40 percent of the results from a single scan in the way of false positives, duplicates, and other bad data.

Unified VRM then immediately translates this data into rich dashboards and task groups for remediation management—allowing security/IT teams to manage workflow (i.e., assign tickets and tasks), measure progress (i.e., report on ticket status or aging), and establish risk reduction goals across operational teams.

Find, Focus, Fix

Let NopSec VRM’s Predictive Threat Engine, zero-friction remediation, and Expert Engine correlate your IT environment within a unified platform.


The NopSec VRM Expert Engine correlates your IT environment against the global threatscape to find the vulnerabilities with the most risk.



Apply the deep analytics and machine learning models in NopSec’s Predictive Threat Engine to learn the true probability of exploitation so you can focus on the most critical threats.



Enable zero-friction remediation with our built-in ticketing system, or through integration with one you already use.

  • NopSec Unified VRM allows your teams to communicate throughout the remediation process, view and report on progress, and close incidents quickly.


Unified Platform

NopSec Unified VRM provides easy, comprehensive reporting throughout the vulnerability management process.

  • The Unified VRM solution provides a unified platform with deep visibility and flexible options for reporting by groups, remediation progress, incident ownership and aging.


Unified VRM® Dashboards

Your inbox is full of must-read emails and reports from the different engineering and security teams.

But who has time to read and retain everything important?

  • Unified VRM dashboards are designed to provide you with an at-a-glance update for the most important metrics related to your vulnerability management and remediation program, providing you the opportunity to recognize a trend, notice patterns, and drill into the data as needed.
  • Unified VRM dashboards focus on the three key areas essential to any vulnerability management program: Risk Posture, Vulnerabilities, and Ticketing.

Risk Posture Bar Chart


The Top 10 Vulnerable Platforms and Applications chart shows assets in your infrastructure that contain the highest number of vulnerabilities and is useful to determine areas of focus in your remediation program.

  • Dashboards are organized to deliver a high level overview of your environment to enable you to holistically manage your vulnerability management processes.

Malware Prone Vendors and Social Media


Display relationships between known exploits in the wild and your environment to anticipate likely breach attempts.

  • Social media chatter about the vulnerabilities and cyber threats that are trending is another dimension of situational awareness to consider and just one of the many unique factors NopSec Unified VRM evaluates in threat prediction and business risk scoring.

Vulnerability Progress Trend


NopSec Unified VRM delivers a built-in metrics system designed to track vulnerability trends over time, allowing you to quickly spot the most critical threats.

  • Using this dashboard, you can identify any unexpected spikes or drops in trends across your organization which is essential to determining the overall state of your vulnerability risk management program.
  • Vulnerability trends can be displayed over time, by month and by quarter.

Ticket Trends


Vulnerability risk management programs are ultimately assessed on results.

  • It allows you to inspect the trends and direction of the open and closed tickets over time, both from a monthly and quarterly roll up.
  • As scanning occurs more frequently, the rate of open tickets and closed tickets change as new vulnerabilities are discovered and tickets are opened, and the system will automatically close tickets as they are verified in the scan process.


Your scan is complete, NopSec Unified VRM has assembled a list of prioritized threats, complete with dashboards and reports to track progress as patches are applied and changes are made.

But the inevitable occurs – the phone rings and the server team has a question about the risk associated with a given vulnerability.

Why waste time with a static report?

Leveraging NopSec Unified VRM Analytics, you can quickly answer questions on the fly and provide the level detail needed by both an administrator as well as a program owner without disrupting the remediation process.

Click Through Analytics Workflow from Dashboard

The NopSec VRM Expert Engine correlates your IT environment against the global threatscape to find the vulnerabilities with the most risk.


Simplified Reporting

In just a few minutes, you have managed to narrow your data set to focus on the Top 10 Most Exploitable Vulnerabilities in your environment.

  • Save that search and generate a report on the fly, in HTML or PDF format.


Easy To Use Filtering and Workflow

Digging into the results a little more, you may want to select one of the facet filters, which are auto-populated based on the data.

  • The interface is designed to allow someone who is brand new to the product to be effective with little to no training on how to use this powerful search capability.
  • The results can be clicked to take you back to the individual module where the vulnerability was first logged, or the results can be quickly collected in a simple report.


Expert Engine Charts and Statistics

The NopSec Unified VRM Analytics interface is powered by our Expert Engine which is designed to consume raw scanner data, eliminate false positives and redundant information, and produce a cleansed and reduced data set.

  • By eliminating the noise, customers interact with only the data that matters.
  • These two visualizations indicate the performance of the Expert Engine as it crunches through your data. In this case, over 20% of incoming data was instantly eliminated.


Maximize your impact with Unified VRM®

NopSec Competes in 2018 ‘ASTORS’ Homeland Security Awards Program

AST focuses on Homeland Security and Public Safety Breaking News, the Newest Initiatives and Hottest Technologies in Physical & IT Security, essential to meeting today’s growing security challenges.

2017 ASTORSThe 2018 ‘ASTORS’ Homeland Security Awards Program, is organized to recognize the most distinguished vendors of Physical, IT, Port Security, Law Enforcement, Border Security, First Responders, (Fire, EMT, Military, Support Services Vets, SBA, Medical Tech) as well as the Federal, State, County and Municipal Government Agencies – to acknowledge their outstanding efforts to ‘Keep our Nation Secure, One City at a Time.’

As an ‘ASTORS’ competitor, NopSec will be competing against the industry’s leading providers of Innovative Vulnerability Management Solutions.

To Learn More about the ‘ASTORS’ Homeland Security Awards Program, see 2017 ‘ASTORS’ Homeland Security Award Winners Honored at ISC East.

2018 ASTORSOver 100 distinguished guests from National, State and Local Governments, and Industry Leading Corporate Executives from companies allied to Government, gathered from across North America and the Middle East to be honored from disciplines across the Security Industry in their respective fields which included:

  • The Department of Homeland Security
  • U.S. Customs and Border Protection
  • The Department of Justice
  • The Security Exchange Commission
  • State and Municipal Law Enforcement Agencies
  • The Royal Canadian Mounted Police
  • Leaders in Private Security

Nominations are now being accepted for the 2018 ‘ASTORS’ Homeland Security Awards at

American Security Today will be holding the 2018 ‘ASTORS’ Awards Presentation Luncheon to honor Nominees, Finalists and Winners in November 2018, in New York City.

Good luck to NopSec on becoming a Winner of the 2018 American Security Today’s Homeland Security Awards Program!

Learn how NopSec’s Unified VRM can you identify, prioritize, proactively manage and report on IT vulnerabilities and security breaches from a single platform at

NopSec logoFor ‘ASTORS’ Sponsorship Opportunities and More Information on the AST 2018 ‘ASTORS’ Homeland Security Awards Program, please contact Michael Madsen, AST Publisher at: or call 732.233.8119 (mobile) or 646-450-6027 (office).