Business Wire

Bridging the Needs of Security and Development Teams, Veracode Unveils Next-Generation Software Security Platform

Share

Veracode, a leading global provider of application security testing (AST) solutions, today announced its Continuous Software Security Platform, which seamlessly embeds application security into the software development lifecycle (SDLC). The platform streamlines workflows by bringing together development and security teams to provide a broad understanding of risk, remediation guidance, and progress at every stage of the development process.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20220504005671/en/

To view this piece of content from mms.businesswire.com, please give your consent at the top of this page.

Fig. 1 The Veracode Continuous Software Security Platform (Graphic: Business Wire)

According to Veracode’s latest research, there has been a 20x increase in average scan cadence over the past decade, with most applications tested three times per week, as opposed to three times per year a decade ago. The research also showed a 31 percent increase in organizations using multiple scan types over the last three years alone.

Today, leading organizations recognize the need to leverage multiple methods to assess their software and do so across all stages of the development lifecycle. Gartner® predicts that “by 2025, 70% of organizations will consolidate the number of vendors securing the lifecycle of cloud-native applications to a maximum of three vendors.” ¹ This suggests companies are already looking for a comprehensive platform that provides flexible policy management, a holistic assessment of software risk, and integrated remediation guidance, while simplifying the complexity of managing multiple solutions.

Pervasive but Not Invasive for Developers

With increased pressure to build and deploy software at breakneck speed, development teams require security checks to be seamlessly integrated into the tools where they work so they can find and fix vulnerabilities quickly. Meanwhile, security teams must meet increasingly stringent compliance standards defined by their boards and regulatory bodies. Veracode’s Continuous Software Security Platform is pervasive but not invasive because it provides a frictionless experience for developers by embedding vulnerability analysis with remediation guidance directly into the integrated development environment.

Brian Roche, Chief Product Officer at Veracode, said, “Other vendors in our space have incomplete or disjointed solutions that lack consistent reporting and analysis, leaving customers playing a game of ‘whack a mole’ across different tools. We have continued to evolve our platform to create a seamless and integrated experience for developers, as well as provide security teams with a holistic view of their software security posture from design, through development and deployment. We see this as a win for both development and security teams that will result in the delivery of software that is more secure.”

Veracode Continuous Software Security Platform

The Veracode Continuous Software Security Platform enables users to define and manage security policy, gain a comprehensive view of software security across their application portfolio, and leverage rich analytics to make informed plans, communicate metrics, comply with policy, and meet regulatory requirements. Powered by almost two decades of data, the platform enables organizations to detect, predict, manage, and, ultimately, mitigate their security risk. These intelligent capabilities empower companies to deliver secure code at the speed and scale expected in today’s world.

The new Veracode Continuous Software Security Platform release features several new capabilities including:

  • Single-Pane-of-Glass Reporting: Security teams can now access unified reporting directly in the portal for Static Analysis, Dynamic Analysis, Software Composition Analysis, and Manual Penetration Testing. Administrators and developers now have a consolidated view into security risks, as well as flexible policy controls through stronger license management reports to address issues quickly.
  • Self-Service Peer Benchmarking: With comprehensive data and anonymized insights across all platform users, customers now have direct access to reports on the portal, which enable them to easily benchmark their DevSecOps program results against others in their industry. Tapping into many years of data and learning, customers can see how their program metrics stack up and establish plans to address their risk.
  • Software Bill of Materials (SBOM): Security teams can now generate and export SBOMs on demand with an integrated representational state transfer (REST) API. This returns data for a specific application in CycloneDX SBOM format—a standard designed for use in application security contexts and supply chain component analysis. Additionally, data from the API can be mined and transformed outside of the Veracode Platform.
  • Intelligent Remediation: The Continuous Software Security Platform will leverage technology acquired from Jaroona to detect and remediate software vulnerabilities through machine learning. Jaroona, which was recognized by Gartner Research as a “Cool Vendor” in 2021, outperforms traditional approaches by 7x to 10x in terms of accuracy, false negatives, and false positive rates, and reduces the burden on technical resources.

According to Tabrez Naqvi, Director of Information Security and Risk at Cox Automotive, “The security of our products and services is very important to us, and Veracode helps us ensure that we never lose our customers' trust and confidence."

For more information on the Veracode Continuous Software Security Platform visit https://www.veracode.com/platform.

¹Gartner, Inc. ”Predicts 2022: Consolidated Security Platforms Are the Future” by Charlie Winckless, Joerg Fritsch, Peter Firstbrook, Neil MacDonald, Brian Lowans, 1 December 2021

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

About Veracode

Veracode is a leading AppSec partner for creating secure software, reducing the risk of security breach, and increasing security and development teams’ productivity. As a result, companies using Veracode can move their business, and the world, forward. With its combination of process automation, integrations, speed, and responsiveness, Veracode helps companies get accurate and reliable results to focus their efforts on fixing, not just finding, potential vulnerabilities.

Learn more at www.veracode.com, on the Veracode blog and on Twitter.

Copyright © 2022 Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

Contact information

For more information, please contact:
Katy Gwilliam
kgwilliam@veracode.com

About Business Wire

Business Wire
Business Wire



Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Kolmar Korea Wins Case Against Italian Cosmetics Maker Intercos for Suncare Technology Theft28.3.2024 14:00:00 CET | Press release

Kolmar Korea (KRX:161890), a Korean cosmetics ODM (Original Development Manufacturing) company, has announced its victory in a lawsuit against Intercos Korea, the Korean subsidiary of the Italian cosmetics maker, Intercos. Intercos was revealed to have misappropriated and profited from the key technology for suncare (sunscreen) products, originally developed by Kolmar Korea. Kolmar Korea had invested hundreds of billions of KRW in this technology. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20240328015022/en/ Kolmar Korea wins the case against Italian cosmetics maker Intercos for stealing suncare technology (Kolmar Korea R&D Complex) (Photo: Kolmar Korea Holdings) Kolmar Korea took legal action for 'trade secret infringement' against its former employees who have leaked the technology and Intercos Korea, resulting in favorable rulings in both civil and criminal cases. The Korean courts ordered Intercos Korea to pay KRW 200

Tigo Energy Headquarters Receives 90kW of Optimized Solar from Long-Time Installer Partner28.3.2024 14:00:00 CET | Press release

Tigo Energy, Inc. (NASDAQ: TYGO), a leading provider of intelligent solar and energy software solutions, today announced the installation and commissioning of a rooftop solar system at its headquarters in California. The system was designed and deployed by Tigo installer partner, Laibach Solar, and has averaged 5% Reclaimed Energy since it was commissioned. Laibach Solar is an employee-owned solar installer in Northern California dedicated to combining high-quality components with unbeatable pricing. It has been a valued installation partner for Tigo since 2018. The installation now contributes to the growth of U.S. corporate solar adoption, which was 14% of the U.S. Solar Market as of 2022, according to the Solar Energy Industries Association. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20240328503393/en/ The system was designed and deployed by Tigo installer partner Laibach Solar and has averaged 5% Reclaimed Energy since

Seoul Semiconductor Supplies WICOP to Front Headlamps of 2024 Genesis GV80, Leading Trend of Headlamps28.3.2024 14:00:00 CET | Press release

Seoul Semiconductor Co., Ltd. (KOSDAQ:046890), the world best-in-class technology in opto-semiconductors, is supplying and mass-producing “WICOP,” the world’s first high-power LEDs without wire, for the headlamps of Genesis GV80, a luxury SUV model by Hyundai Motor Group, which is one of the world’s top three automobile companies. The technology applies to all functions of the high-light, sophisticated headlamps introduced by GV80. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20240328561793/en/ Headlamps of GV80, a luxury SUV of Genesis, with Seoul Semiconductor’s WICOP technology applied (Photo: Seoul Semiconductor Co., Ltd.) Seoul Semiconductor applied its new technology of Ultra-High Luminance “WICOP UHL” to the high and low beams of GV80, the two lines that symbolize Genesis vehicles. With its improved luminance by 200% compared to existing mass-produced WICOP products, WICOP UHL is attracting the attention of the automo

Crown Bioscience Announces New Preclinical and Translational Oncology Data Across Ten Poster Presentations at AACR 202428.3.2024 13:30:00 CET | Press release

Crown Bioscience, a global contract research organization (CRO) and a JSR Life Sciences company, will showcase significant contributions in preclinical and translational oncology research at the American Association for Cancer Research (AACR) 2024 meeting. Highlighting its latest research, the company will present ten posters covering a broad spectrum of data from the company's R&D program. The data presented will cover a range of innovative techniques in oncology and immuno-oncology drug discovery and development. Posters featured at AACR include: The in-depth Characterization of Acute Myeloid Leukemia Patient-Derived Xenograft (PDX) Models with Hotspot Gene Mutations for Therapeutic Evaluation. The development of an Integrated Pipeline for Immuno-Oncology Drug Testing, using patient-derived tumor organoids with a reconstituted tumor microenvironment and fresh ex vivo patient tissue cultures, aiming to enhance therapeutic evaluation and drug development efficiency with translational p

Philip Morris International Demonstrates Clear Progress Toward Its Purpose as It Releases 2023 Integrated Report28.3.2024 12:38:00 CET | Press release

Philip Morris International Inc. (PMI) (NYSE: PM) today releases its fifth annual Integrated Report, which outlines the company’s ongoing work to advance toward its 2025 Roadmap goals, with the primary focus on addressing the health impacts of the company’s products. The 2023 Integrated Report highlights PMI’s continued expansion of smoke-free alternatives in markets worldwide, as well as social and environmental programs deployed with and in parallel to these products—including the deployment of responsible marketing and sales practices and efforts to reduce post-consumer waste. Further, PMI reports its progress toward fostering an empowered and inclusive workplace, improving the quality of life of people in its supply chain, decarbonizing its operations and value chain, and preserving nature and biodiversity. “2023 was a year marked by unity, determination, and a continued commitment to our vision of a smoke-free future,” said Jacek Olczak, Chief Executive Officer of PMI. “As we enco

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
HiddenA line styled icon from Orion Icon Library.Eye