Cigital Inc. has agreed to acquire Consciere LLC, a software security consultancy that sells compliance and risk assessment services.
They fall in line with our mission and help us expand our reach.
Gary McGraw, CTO, Cigital Inc.
Co-founded by Joel Scambray, an IT security pro known for co-authoring the 1999 book, Hacking Exposed: Network Security Secrets & Solutions, Consciere’s consulting practice conducts technical assessments, remediation and staff augmentation. The company has a presence in Seattle, Denver and Chicago.
Gary McGraw, chief technology officer of Dulles, Va.-based Cigital said the acquisition brings in top talent and helps Cigital expand its scope in the hospitality and retail industries. He said Consciere primarily services the upper northwest. Microsoft and Amazon are among the company’s clients.
“They fall in line with our mission and help us expand our reach,” McGraw said of Consciere. “Consciere’s clients don’t see compliance as a check box.”
Cigital CEO John Wyatt said the Consciere’s governance risk and compliance program would be integrated with Cigital’s software security services to provide a complete set of services for clients. Wyatt said the acquisition is one of several that Cigital plans to make to broaden its scope in the security industry.
Consciere also boosts Cigital’s pool of talent, Wyatt said. Scambray was a senior director at Microsoft where he led security for the software giant’s online services. He joined the Windows platform and services division to focus on security technology architecture.
Scambray is the founder of Foundstone Inc. a services firm that was acquired by McAfee for $86 million.
Consciere’s other founder, Kevin Rich is a network infrastructure and application security expert who was a member of @stake, the security consultancy which was acquired by Symantec in 2004. Rich was co-founder and chief operating officer at Leviathan Security Group.
Cigital was founded in 1992 and currently has more than 170 employees. The firm focuses on application security and quality, software development methodologies and secure coding training. McGraw leads the firm’s Build Security In Maturity Model (BSIMM), which measures the secure software development approaches of more than 40 large enterprises.