Fighting the AppSec Fight: Don’t sell products. Create partnerships.

PUBLISHED ON March 18, 2020
LAST UPDATED August 2, 2021

It’s been a few weeks since we closed the book on another RSA conference. And as always, it was nice to catch up with old friends, meet new ones, and talk to many of the security professionals who are on the frontlines of AppSec every day.

However, after spending some time on the show floor, one thing really stood out for me: vendors were selling security products, and most attendees were looking for security partnerships.

Every vendor seemingly has a promise for why their technology, products, or features are better than their competitors. But ultimately, it falls to the customers to take a leap of faith, invest in a product, staff the product, and make it deliver on its promises. It is the customer that must do the heavy lifting and take on the risk.

Building AppSec Partnerships
That is one of the reasons that I am both proud and excited about our approach to AppSec. As our customers know, ThreatX takes a consultative, partnership-based approach to our relationship with our customers. And we take it seriously. In addition to providing a full spectrum of AppSec technology, customers get access to a wide range of services bundled as part of the solution. If you need access to an anti-bot expert, need help triaging events, threat hunting, or any number of services, the ThreatX team is there to assist you, 24/7.

More than simply selling a product, ThreatX has highly trained staff dedicated to ensuring that our customers are successful. Instead of simply selling a product and moving on, we have skin in the game with our customers, who are free to access as many of our services as they need–whenever they need to. Instead of putting all the risk on the customer, we stand by the quality and efficiency of our technology by using it ourselves.

And the results are obvious in our customer relationships. To date, more than 80% of our customers actively leverage ThreatX services.

Gain Expertise, Operational Muscle, and Coverage
ThreatX offers a wide variety of services that can extend an organization’s operations and fill in where resources might be lacking. This ensures that your security tech gets fully utilized, and delivers on the goals for purchasing it in the first place. Including:

  • Access to AppSec Experts – AppSec has become a very deep pool that blends many areas of expertise. Organizations often need traditional AppSec skills, anti-bot and automation experts, anti-DDoS expertise, API expertise, and the list goes on. Staffing for all of these areas is a challenge for even the largest organizations. ThreatX gives customers access to highly trained experts in a variety of disciplines so that they can access the right talent when they need it.
  • Supercharge Your Security Operations – In addition to rare talent, ThreatX can help with the heavy lifting of daily AppSec operations. This can include event triage, incident response, management of countermeasures to name a few. All of these areas scale very efficiently in a ThreatX environment due to our multi-ensemble, risk-based threat prevention engine that vastly cuts down on false positives and false negatives. While we are always happy to talk about how our detections work, this is an example of us putting our money where our mouth is.
  • Full Coverage – Even the best teams have times that can’t be fully staffed. The challenge with Internet-facing applications is that they are exposed to threats 24/7. ThreatX services are available 24/7/365 ensuring someone is always present to keep an eye on your apps and respond to problems. Even during regular hours, many customers are happy to have an extra set of eyes (or multiple sets as the case may be) watching over their infrastructure for signs of problems.

These are just some of the ways that ThreatX partners with our customers. Naturally, the specific services that we provide vary from customer to customer based on the unique environment and needs. However, the consistent approach is that we are in the AppSec fight together, and we are there as a partner to make sure our customers are successful. As the security landscape continues to get ever more complex and expansive, it’s an approach that just makes sense.

About the Author

Chris Brazdziunas

Chris has a proven track record of leading global product and R&D organizations to deliver large-scale enterprise software and security solutions. Prior to joining ThreatX, Chris held multiple senior product management and engineering positions, most recently serving as the Vice President Product at market leading SIEM provider LogRhythm, where she was responsible for product strategy, product operations, and development. Chris holds an M.S. degree in Information Networking from Carnegie Mellon University and a B.S. in Computer Engineering from the University of Illinois.