Checkmarx on the state of API security and developer protection


According to a study by Gartner, 60% of organizations will strengthen their software delivery pipelines to protect against supply chain security attacks by 2025. APIs are increasingly exposed, leading to issues security in all areas of a business. That’s why it’s important to have the right security software solutions.

Checkmarx is a global software security company that helps developers build breakthrough apps, meet deadlines, and ship securely.

A driving force in security for 15 years, the company says it is constantly pushing the boundaries of application security testing to make security transparent and simple for developers while giving CISOs the confidence and control they need. need.

One of the company’s primary goals is to provide development and security teams with precision, coverage, visibility, and guidance to reduce risk in all components of modern software, including proprietary code, open source, APIs and infrastructure as code.

Currently, more than 1,600 customers, including nearly half of the Fortune 50, rely on Checkmarx’s security technology, expert research, and global services to safely optimize application development at speed. and to scale.

Proof of its global reach, Checkmarx has a commercial presence in 23 countries and incorporated its Asia-Pacific regional headquarters in Singapore in November 2017. Checkmarx also has offices in Australia, China, India and South Korea.

When it comes to the company’s technology, the Checkmarx One platform is one of the main drivers for delivering effective solutions.

The platform delivers from the cloud and is designed to support on-premises, cloud, and hybrid development environments. Checkmarx one identifies security issues, improves patch code security throughout the software development lifecycle, and ensures software remains secure from a developer’s first code commit through release.

It is a single solution spanning the complex landscape of custom code, open source components, infrastructure-as-code (IaC) and open source supply chain deployments, enabling application code to be secured more effectively and efficiently.

“The Checkmarx One Application Security Platform integrates seamlessly into an automated DevOps environment and addresses all SDLC stages, enabling our customers to accelerate the delivery of secure software,” said Emmanuel Benzaquen, CEO of Checkmarx.

Other integrated solutions that are part of the Checkmarx portfolio include Checkmarx SAST, which automatically scans source code for vulnerabilities early in the development lifecycle, and Checkmarx SCA, which is a software composition analysis solution designed to help development teams manage vulnerability and open source license risks.

There’s also Checkmarx Codebashing, a flexible and targeted game-based training platform to teach developers how to code more securely, and KICS by Checkmarx which acts as a scalable open-source solution that automatically scans common IaC files of any type to detect insecure configurations that could expose applications, data or services to attacks.

New developments have also recently been introduced to the market. One of them is Checkmarx Fusion, a context-aware correlation engine that enables complete visibility into applications, component interactions, and BOMs.

There is also a new MSSP program to help companies grow their MSSP business and an API security solution that has been named the first true “shift-left” API security solution.

“As an early innovator in the application security testing market, Checkmarx has been relentless in its mission to continuously innovate and lead the industry with solutions that dramatically improve software security while meeting the needs of ever-changing modern software development landscape,” says Benzaquen.

“Checkmarx brings a developer-focused approach to detecting supply chain attacks in code packages, leveraging a comprehensive suite of threat intelligence, behavioral intelligence, and machine learning models .”


About Author

Comments are closed.