Integration enables organizations to build world-class application security programs addressing modern security challenges
Brinqa, a leader in cyber risk management, announced a strategic partnership with Checkmarx, the global leader in application security solutions, to help organizations build world-class application security programs that meet the needs of today’s evolving threat landscape. This partnership combines the industry leading risk-based prioritization, automation, and reporting in the Brinqa Attack Surface Intelligence Platform with the Checkmarx One™ Application Security Platform, the industry’s most comprehensive application security solution.
“Together with Brinqa, we are now able to further empower the enterprise to develop and evolve applications with simple and seamless security built in”
“Developing a modern vulnerability risk management program requires visibility into every part of your attack surface, including code and applications – and this partnership ensures companies have just that,” said Amad Fida, CEO and founder of Brinqa. “Combining Checkmarx One with Brinqa’s Attack Surface Intelligence platform empowers organizations to incorporate comprehensive AppSec insights into a companywide view of cyber risk, now and into the future.”
CIO INFLUENCE News: Development of Advanced Generative AI Features by FullStory and Google Cloud How Businesses Optimise the Digital Experience
Insecure code, whether developed in-house or by third parties, is a leading source of data breaches. In fact, 46% of data breaches are tied to application vulnerabilities, according to the 2022 Verizon Data Breach Investigations Report, yet most organizations continue to focus on perimeter, network, and endpoint security, neglecting application security. Furthermore, as threat actors grow increasingly sophisticated, the risk of insecure code is becoming more and more prevalent.
Fortunately, awareness is growing and regulations are putting increased pressure on organizations to develop strong application security programs. For example, Executive Order (EO) 14028 requires agencies to enhance cybersecurity and software supply chain integrity and transition towards a “zero trust” approach, highlighting the critical nature of secure software development, requiring developers to maintain greater visibility into their software.
“Together with Brinqa, we are now able to further empower the enterprise to develop and evolve applications with simple and seamless security built in,” said Kobi Tzruya, Chief R&D Officer at Checkmarx. “This joint solution automates the application cyber risk and remediation lifecycle, ensuring the concept of ‘shift everywhere’ is adopted from the ground up. This is vital support for mission-critical application security teams in their efforts to reduce risk and ensure compliance while supporting business growth.”
CIO INFLUENCE News: Dataprise Expands National Reach with the Acquisition of RevelSec
Cyber advisory and solutions leader Optiv was instrumental in integrating the two technologies based on customer requests and market demand for more dynamic vulnerability management reporting.
“The partnership between Brinqa and Checkmarx gives our clients an innovative path to solve for modern application security challenges,” said Shawn Asmus, Practice Director of Application Security at Optiv. “Organizations are challenged with unifying the security management of their first-party code as well as third-party applications. By leveraging these technology platforms with proper configuration and automation, our clients can rapidly detect, prioritize, and respond to threats and vulnerabilities using proper business contexts. Additionally, the enhanced reporting capabilities make it possible to communicate in-platform to both technical and business audiences across each software business relationship.”
This joint solution between Checkmarx and Brinqa offers the industry’s most complete orchestration of the cyber risk lifecycle for code including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA) and Infrastructure as Code (IaC) capabilities, enabling automated vulnerability discovery, prioritization, remediation, and reporting. It also provides the services and expertise to plan, design, implement, and deliver application security programs while easily fitting into a customer’s existing vulnerability management program and providing a continuous, enterprise-wide program for cyber risk management.
CIO INFLUENCE News: NETSOL Cloud Services Earns AWS Well-Architected Partner Program Badge
[To share your insights with us, please write to sghosh@martechseries.com]
