Cybeats SBOM Studio and CodeSentry enable customers to gather, centralize and operationalize intelligence from Software Bill of Materials (SBOMs)
Cybeats Technologies Corp. and CodeSecure, formerly the products division of GrammaTech and a leading provider of application security testing products, announced a technology partnership to help customers proactively monitor and remediate software supply chain security threats.
According to industry sources, reused code is prevalent in virtually all software products. For example, research firm Gartner, Inc. estimates that 40% to 80% of the lines of code in new software projects come from third parties. Most of this external code comes from myriad open-source projects; the remaining proprietary code comes from suppliers that provide little or no transparency to its status or condition.
CIO INFLUENCE News: Fortinet Expands Its Global SASE Points-of-Presence with Google Cloud
To address these challenges, the CodeSecure CodeSentry® software composition analysis platform will provide binary-derived software bill of materials (SBOM) intelligence to Cybeats for automating the detection, prioritization and mitigation of open source vulnerabilities when source code is not available.
“The partnership with CodeSecure is a natural one for Cybeats as our two class-leading solutions complement each other, and will allow us to serve our joint customer base in the key market verticals such as Industrial Control Systems, Medical Device Manufacturers, Telecom and Transportation. CodeSecure is able to provide a solution to customers that require a leading BSCA tool and the generation of SBOMs, for effortless end to end SBOM propagation from build analysis to ingestion monitoring and sharing the SBOMs,” said Bob Lyle, CRO, Cybeats.
CIO INFLUENCE News: Braze Customer Engagement Platform Now Available in AWS Marketplace
“Together Cybeats Studio and CodeSentry enable customers to detect, manage and remediate security vulnerabilities in open source components to help prevent and better respond to software supply chain attacks like Log4j,” said Andrew Meyer, CMO, CodeSecure. “The integration of CodeSecure and Cybeats provides complete visibility of all known security risks, including actionable insights that reduce business decision time from months to days or even hours, and makes it possible to transition from point in time to continuous SBOM monitoring.”
CIO INFLUENCE News: Ensure up to Date Compliance and Tighten Your Hybrid Network Security Posture With AlgoSec A32.60
[To share your insights with us, please write to sghosh@martechseries.com]
