Broadcom announced the general availability of VMware Tanzu Platform 10 that establishes a new layer of abstraction across Cloud Foundry infrastructure foundations to make it easier, faster, and less expensive to bring new applications, including GenAI applications, to production.
Checkmarx Announces AppSec Coach
September 19, 2016
Checkmarx announced availability of a new secure coding eLearning platform, called AppSec Coach, providing Checkmarx customers the ability to address one of the greatest challenges in the software industry when it comes to application security: finding an effective way to provide developers knowledge and skills to write secure code.
The new capability is a significant addition to the Checkmarx application security testing portfolio, which helps to sharpen the skills developers need to fix vulnerabilities and write secure code. This new add-on provides in-context, bite-sized secure coding training modules, available when and where the developer needs to fix the code. AppSec Coach, integrated within Checkmarx CxSAST source code analysis solutions, is the first of its kind for developer security education and the new offering strengthens the Checkmarx commitment to developer enablement.
Lack of developer secure coding skills and awareness is continuously named as one of the most significant challenges organizations face across all verticals. As reiterated in the SANS 2016 State of Application Security survey, developer education is seen as the most effective tool to enhance the application’s security state. However, that same survey shows that implementing effective and continuous education is still the top challenge for these same organizations.
Checkmarx AppSec Coach, integrated within CxSAST, is a fun and engaging approach to get developers the knowledge they need at the time and place they need it most. By providing in-context, interactive, bite-sized educational modules, AppSec Coach ensures developers are trained exactly on what they need, when they need it, without pulling them out of their daily work routine.
“Skills shortages will continue to be a problem as new technologies emerge,” says Johannes Ullrich, Ph.D, Dean of Research for the SANS Technology Institute. “Skills shortages have, historically, been a problem for almost all InfoSec disciplines. Organizations will need to continue to leverage training and education to develop their skill sets.”
“It's no secret that the ability to deliver secure applications eventually depends on the developer's ability to avoid the pitfalls a hacker would exploit,” says Nir Livni, VP of Products at Checkmarx. “Introducing AppSec Coach serves that exact purpose. AppSec Coach allows organizations to further shift left their remediation activities, and moreover, to write secure code to begin with. This will not only reduce development and remediation costs, but also reduce the overall time to market.”
Industry News
November 07, 2024
Tricentis announced the expansion of its test management and analytics platform, Tricentis qTest, with the launch of Tricentis qTest Copilot.
November 07, 2024
Redgate is introducing two new machine learning (ML) and artificial intelligence (AI) powered capabilities in its test data management and database monitoring solutions.
November 07, 2024
Upbound announced significant advancements to its platform, targeting enterprises building self-service cloud environments for their developers and machine learning engineers.
November 07, 2024
Edera announced the availability of Am I Isolated, an open source container security benchmark that probes users runtime environments and tests for container isolation.
November 06, 2024
Progress announced 10 years of partnership with emt Distribution — a leading cybersecurity distributor in the Middle East and Africa.
November 06, 2024
Port announced $35 million in Series B funding, bringing its total funding to $58M to date.
November 05, 2024
Parasoft has made another step in strategically integrating AI and ML quality enhancements where development teams need them most, such as using natural language for troubleshooting or checking code in real time.
November 05, 2024
MuleSoft announced the general availability of full lifecycle AsyncAPI support, enabling organizations to power AI agents with real-time data through seamless integration with event-driven architectures (EDAs).
November 05, 2024
Numecent announced they have expanded their Microsoft collaboration with the launch of Cloudpager's new integration to App attach in Azure Virtual Desktop.
November 04, 2024
Progress announced the completion of the acquisition of ShareFile, a business unit of Cloud Software Group, providing a SaaS-native, AI-powered, document-centric collaboration platform, focusing on industry segments including business and professional services, financial services, industrial and healthcare.
November 04, 2024
Incredibuild announced the acquisition of Garden, a provider of DevOps pipeline acceleration solutions.
October 31, 2024
The Open Source Security Foundation (OpenSSF) announced an expansion of its free course “Developing Secure Software” (LFD121).
October 31, 2024
Redgate announced that its core solutions are listed in Amazon Web Services (AWS) Marketplace.
October 30, 2024
LambdaTest introduced a suite of new features to its AI-powered Test Manager, designed to simplify and enhance the test management experience for software development and QA teams.
