The Good Tech Companies - Quttera Launches "Evidence-as-Code" API to Automate Security Compliance For SOC 2 and PCI DSS v4.0

Starting point is 00:00:00 This audio is presented by Hacker Noon, where anyone can learn anything about any technology. Katera launches evidence as code, API to automate security compliance for SOC2 and PCIDSS version 4.0. By Cyber Newswire, Tel Aviv, Israel, November 27, 2025, Cyber Newswire, new API capabilities on di-powered thread encyclopedia eliminate manual audit preparation, providing real-time compliance evidence and instant threat intelligence. Katera today announced major enhancements to its web malware scanner API that transforms static security scanning into automated compliance evidence. The update introduces real-time evidence streaming and compliance mapping,

Starting point is 00:00:43 directly addressing the manual burden of audit preparation that costs organizations 30 to 40 hours per audit cycle. The announcement includes two integrated capabilities, API-driven compliance automation that feeds structured security evidence into GRC platforms, htttps colon slash cattera.com slash coterra dash web dash malware dash scanner dash appi closing parenthesis and the catara threat encyclopedia https colon slash slash threats dot cterra dot com slash closing parenthesis and a i powered resource providing instant context for detected threats automating the manual evidence c h a c h a organization's preparing for s o c2 iso twenty seven thousand one and p cid s s version four point audits traditionally spend dozens of hours manually collecting security evidence, exporting reports, capturing screenshots, and mapping findings to compliance controls. This approach creates outdated evidence, doesn't scale across frameworks, and fails to prove continuous monitoring. Greater than

Starting point is 00:01:45 security teams are exhausted by the manual, evidence chase, required before greater than every audit, said Michael Novofastovsky, CTO of Katera. We're transforming greater than malware detection into evidence as code, structured, real-time security data greater than that flows automatically into compliance workflows. Whether organizations use Drata, Vanta, or custom GRC systems, our API provides continuous proof without greater than human intervention. Katera's API converts thread detection into structure JSON with embedded compliance metadata, mapping findings to controls across SOC2, CC6.1, CC7.2, PCIDSS version, 4.0, requirements 6.4.3, 11.6.1, ISO 27,1, and GDPR simultaneously.

Starting point is 00:02:38 Addressing PCIDSSV 4.0 feet as new requirements, the update specifically targets PCIDSS version 4.0 requirements mandatory since March 2025, particularly requirements 6.4.3, script authorization on payment pages, and 11.6.1, file integrity. security monitoring. These requirements demand continuous automated detection, capabilities manual processes cannot provide at scale. Greater than PCIDSS version 4.0 requires real-time detection of unauthorized changes to payment greater than scripts, NovoFastovsky explained. Our API provides timestamp evidence that greater than monitoring is active 24-7, changes are detected automatically, and controls greater than are continuously validated. I-powered threat intelligence the threat

Starting point is 00:03:27 Encyclopedia addresses the context gap security teams face when responding to detections. Integrated directly into scan reports, it provides technical breakdown of malware behavior. Business Impact and Risk Classification. Step-by-step remediation guidance. Connections to known attack campaigns. Greater than, we're automating both sides of the problem, said Novofastovsky. The API greater than handles compliance proof. The threat encyclopedia handles operational greater than response.

Starting point is 00:03:57 Together, they eliminate manual evidence collection and research greater than overhead. The encyclopedia currently documents 80 plus web malware categories, with AI-assisted expansion based on emerging threats, key capabilities automated control mapping, detections tagged for multiple compliance frameworks simultaneously. Real-time evidence streaming. Continuous JSON feeds replace static PDF reports. Behavioral detection. Huristic scanning identifies zero-day and polymorphic threat.

Starting point is 00:04:27 integration flexibility works with existing GRC platforms via standard rest API availability enhanced capabilities are available immediately to all Katera API subscribers API documentation htttips colon slash slash katera dot com slash katera dash web dash malware dash scanner dash appi integration help htttps colon slash slash catara dot com slash katara dash anti dash malware dash appi dash help threats library htttps colon slash slash threats dot katera dot about katera provides automated website security and malware detection solutions delivering compliance ready evidence for organizations across financial services health care e-commerce and technology sectors its comprehensive suite includes advanced advanced heuristic scanning, blacklist monitoring, and remediation services, helping businesses

Starting point is 00:05:24 worldwide protect their digital assets and reputation. For more information, users can visit https colon slash cattera.com. This story was published as a press release by Cyber Newswire under Hackernoon Business Blogging Program. Do your own research before making any financial decision. Thank you for listening to this Hackernoon story, read by artificial intelligence. Visit hackernoon.com to read, write, learn and publish.

The Good Tech Companies - Quttera Launches "Evidence-as-Code" API to Automate Security Compliance For SOC 2 and PCI DSS v4.0

There aren't comments yet for this episode. Click on any sentence in the transcript to leave a comment.