Veracode unveils next-generation software security platform
eracode , a leading global
V provider of Application Security
Testing ( AST ) solutions , has announced its Continuous Software Security Platform , which seamlessly embeds application security into the Software Development Life Cycle ( SDLC ). The platform streamlines workflows by bringing together development and security teams to provide a broad understanding of risk , remediation guidance and progress at every stage of the development process .
According to Veracode ’ s latest research , there has been a 20x increase in average scan cadence over the past decade , with most applications tested three times per week , as opposed to three times per year a decade ago . The research also showed a 31 % increase in organisations using multiple scan types over the last three years alone .
Today , leading organisations recognise the need to leverage multiple methods to assess their software and do so across all stages of the development life cycle . Gartner predicts that ‘ by 2025 , 70 % of organisations will consolidate the number of vendors securing the life cycle of cloud-native applications to a maximum of three vendors ’. This suggests companies are already looking for a comprehensive platform that provides flexible policy management , a holistic assessment of software risk and integrated remediation guidance , while simplifying the complexity of managing multiple solutions .
Pervasive but not invasive for developers
With increased pressure to build and deploy software at breakneck speed , development teams require security checks to be seamlessly integrated into the tools where they work so they can find and fix vulnerabilities quickly . Meanwhile , security teams must meet increasingly stringent compliance standards defined by their boards and regulatory bodies . Veracode ’ s Continuous Software Security Platform is pervasive but not invasive because it provides a frictionless experience for developers by embedding vulnerability analysis with remediation guidance directly into the integrated development environment .
“ Other vendors in our space have incomplete or disjointed solutions that lack consistent reporting and analysis , leaving customers playing a game of ‘ whack a mole ’ across different tools ,” said Brian Roche , Chief Product Officer at Veracode . “ We have continued to evolve our platform to create a seamless and integrated experience for developers , as well as provide security teams with a holistic view of their software security posture from design , through development and deployment . We see this as a win for both development and security teams that will result in the delivery of software that is more secure .”
Veracode Continuous Software Security Platform
The Veracode Continuous Software Security Platform enables users to define and manage security policy , gain a comprehensive view of software security across their application portfolio and leverage rich analytics to make informed plans , communicate metrics , comply with policy and meet regulatory requirements . Powered by almost two decades of data , the platform enables organisations to detect , predict , manage and mitigate their security risk . These intelligent capabilities empower companies to deliver secure code at the speed and scale expected in today ’ s world . u intelligent SOFTWARE SECURITY www . intelligentciso . com
61