Vaunted Group

Expertise in the discipline of Application Security


Secure SDLC

Whether it is performing static or dynamic application security testing, network vulnerability assessments or penetration testing, process development, or threat modeling, we have you covered. At Vaunted Group, we utilize a risk management approach to ensure a closed-loop lifecycle in dealing with identified vulnerabilities.

Application Security Product Training and Support

Is your lack of product knowledge and expertise keeping you from fully harnessing its capabilities? Are you under the influence of shelf-ware? Let Vaunted Group help you bring your investment back to life so that you realize the ROI you were promised. We have over six years of HP Fortify SCA and HP WebInspect experience. We can help you fully utilize these solutions and integrate them into your SDLC.

IT Security Resource Augmentation

At Vaunted Group, we recognized that not everyone is, should be, or can be in the IT security business. Whether you have no internal security capabilities or need help because the effort is too large, Vaunted Group can help. Our security consultants have over 20 years of hands-on experience with IT and Application Security.

Trusted Advisor and Product Guidance

Do you need a Trusted Advisor to provide unbiased advice on application security? Contact the Vaunted Group to get unbiased advice and the guidance you need to properly implement the right solution.

Our Partners

Mark Feferman, Principal


Mark Feferman

Mark Feferman, CISSP, CSSLP, CISM is the Founder and Principal of Vaunted Group and leads the company's strategic direction. Mark has over 20 years of IT Security experience, with the last ten years focused on addressing business risk arising from application security vulnerabilities. He works with clients to integrate security into the SDLC, perform and teach threat modeling, perform application security assessments: static and dynamic, and develop policies and standards. Mark has contributed his expertise to small privately held companies as well as to members of the Fortune 500.

Prior to founding Vaunted Group, Mark was a Managing Principal with HP's Enterprise Security Products group, where he oversaw the delivery of strategic and tactical professional services for both HP Fortify SCA and HP WebInspect. Prior to that, he was the Director of the Application Security practice for Fishnet Security. Early in his software development career, he was one of the first four developers at BindView (NASDAQ:BVEW), a $1B global provider of agentless IT Security compliance and network management software, which was later sold to Symantec (NASDAQ: SYMC).

Mark holds a B.A. in Computer Science from The University of Texas at Austin. When he is not working for clients, he spends his time with his two sons or traveling.

Contact Us

Vaunted Group, LLC


p: 713.478.5150