See a Demonstration of DeepFactor 2.0 at KubeCon + CloudNativeCon (#SU50)
DeepFactor, the leader in Continuous Application Security Testing (CAST), announced DeepFactor 2.0, which introduces a new, microservices-based architecture for the next-generation application security, compliance, and supply chain solution. DeepFactor can now be deployed to any Kubernetes cluster, observing cloud-native applications during any stage of the software development lifecycle (SDLC).
According to Gartner® report 12 Things to Get Right for Successful DevSecOps, “The lesson is clear — don’t force information security’s old, heavyweight, checkpoint-focused processes on DevOps developers,” wrote Dale Gardner, Sr. Director Analyst, Gartner. “Instead, integrate continuous security assurance seamlessly throughout the continuous integration/continuous deployment (CI/CD) toolchain and processes.”
Top Cybersecurity News: EfficientIP North America and TD SYNNEX Announce Strategic Distribution Agreement
In this cloud-native world, costly data breaches, pervasive supply chain attacks, and expanding compliance requirements make it critical that businesses adopt a DevSecOps approach, enabling them to reduce risks before they ship code. DeepFactor analyzes modern applications for security vulnerabilities, supply chain risks, and compliance violations using a combination of dynamic application security testing (DAST), interactive application security testing (IAST), and software composition analysis (SCA) technology.
“This release marks a major milestone for DeepFactor,” said Kiran Kamity, CEO and Founder, DeepFactor. “Whether the customer is years into an application modernization effort or is just starting to explore the promise of cloud-native development practices, DeepFactor is purpose-built to be seamlessly deployed and integrated directly into the customer’s development environment, right alongside where the application is being developed and tested.”
Top iTechnology News: Credo Introduces New 400G/800G MACsec Devices for Hyperscale, Cloud, and Enterprise Data Centers and Service Providers
By observing the running application in the development environment, DeepFactor provides a prioritized and actionable list of security vulnerabilities, dependencies, and remediation steps based on what the application actually does, reducing the volume of alerts and accelerating the pace of development.
“Ultimately, our goal is to provide developers with comprehensive, prioritized and actionable insights throughout the software development lifecycle,” said Mike Larkin, CTO and Founder, DeepFactor. “In our opinion, DevSecOps means the developer should never need to leave the CI/CD pipeline to understand the security and behavior risks of an application. By aligning our deployment model with how modern software is being developed and tested, DeepFactor 2.0 will help reduce any friction between engineering and security teams as they move forward with adopting modern AppSec.”
Top iTechnology Cloud News: Dynatrace Named a Leader in Cloud-Native Observability in the 2021 ISG Provider Lens Container Services & Solutions Report
[To share your insights with us, please write to sghosh@martechseries.com]
