ShiftLeft released a new version of NextGen Static Analysis (NG SAST), including new workflows, purpose-built for developers that significantly improve security, while enhancing productivity.
Thycotic revealed new integrations for their high-velocity vault that automates secrets management for DevOps environments with the new release of Thycotic DevOps Secrets Vault, which now supports connections to key DevOps and robotic process automation (RPA) tools.
With the new DSV integration, robot and third-party secrets for UiPath Orchestrator are now stored in a centralized and secure vault and automatically provided when bot access is required. This helps mitigate security risks associated with privileged access management.
"It's critical for organizations to reap the rewards of business process automation without sacrificing security. As more business teams employ RPA technologies to automate repetitive tasks, their attack surface expands as more of these processes and workflows require secure access to secrets," said Jai Dargan, VP of Product Management at Thycotic. "As automation becomes the norm in the modern enterprise, it is essential for security teams to accelerate digital transformation by providing secure and highly scalable vaulting capabilities for sensitive assets."
The rapid, iterative workflow of DevOps environments often expose security vulnerabilities related to privilege management. Every container, server and application can have privileged access, dramatically expanding the attack surface for intruders looking for an entry point.
Utilizing a native cloud architecture on AWS, DevOps Secrets Vault offers rapid deployment, elastic scalability and is purpose-built to handle the high-speed secrets management needs of the most challenging DevOps environments.
Building on existing integrations with Jenkins and Kubernetes, Thycotic DevOps Secrets Vault now supports connections to HashiCorp Terraform and Red Hat Ansible. This release also includes new software development kits (SDKs) for programming languages Java, Go, Python, and .NET.
"Security must never stand in the way of business operating at speed and scale," added Dargan. "Our new integrations ensure that automated workflows can operate securely in production. We're excited about this release because it extends our commitment to customers in making the most usable PAM solutions on the market, which ensure that organizations stay secure from the most advanced cyber threats."