ServiceNow introduced a new no‑code development studio and new automation capabilities to accelerate and scale digital transformation across the enterprise.
Synopsys Launches Software Risk Manager
August 01, 2023
Synopsys announced the launch of Synopsys Software Risk Manager, a new application security posture management (ASPM) solution.
Software Risk Manager enables security and development teams to simplify, align and streamline their application security testing across projects, teams and application security testing (AST) tools. It aligns intelligent policy-driven orchestration and vulnerability management capabilities with the Synopsys Software Integrity Group's market-leading SAST and SCA engines, with broad support for other open-source and commercial AST tools. In combination, Synopsys' ASPM solution delivers an enhanced ability to implement application security consistently across any organization.
"Application security programs need to be effective and efficient at reducing software risk in order to deliver value," said Jason Schmitt, general manager of Synopsys' Software Integrity Group. "Many organizations embracing digital transformation are struggling with the complexity and operational costs of managing their software risk at scale. Synopsys Software Risk Manager provides teams with a holistic view of their application security posture while accelerating time to value and reducing the overall cost of their AppSec programs."
Software Risk Manager is built on the core technologies of Synopsys' Code Dx and Intelligent Orchestration products, redesigned and enhanced to deliver a comprehensive ASPM solution that enables teams to:
- Implement policy driven AppSec at scale. Centrally define and enforce universal security policies which specify parameters for test execution and vulnerability management.
- Unify user experience across disparate application security testing tools. Maximize the value of existing security investments while simplifying resourcing and operations. Improve ability to transition and consolidate tooling across teams.
- Consolidate vulnerability reporting and management across projects, teams and tools. Obtain a complete picture of security risks that is normalized, deduplicated and prioritized across tools.
- Simplify AppSec integration and orchestration in development workflows. Integrate security workflows within existing developer toolchains and systems and enable quick onboarding for existing projects and builds.
- Optimize core application security testing with a single, unified solution. Efficiently deploy, manage and report on core application security testing functions leveraging the same market-leading SAST and SCA engines that power Synopsys offerings.
Industry News
May 13, 2024
Security Innovation has added new skills assessments to its Base Camp training platform for software security training.
May 13, 2024
CAST introduced CAST Highlight Extensions Marketplace — an integrated marketplace for the software intelligence product where users can effortlessly browse and download a diverse range of extensions and plugins.
May 09, 2024
Red Hat and Elastic announced an expanded collaboration to deliver next-generation search experiences supporting retrieval augmented generation (RAG) patterns using Elasticsearch as a preferred vector database solution integrated on Red Hat OpenShift AI.
May 09, 2024
Traceable AI announced an Early Access Program for its new Generative AI API Security capabilities.
May 09, 2024
StackHawk announced a new integration with Microsoft Defender for Cloud to help organizations build software more securely.
May 08, 2024
MacStadium announced that it has obtained Cloud Security Alliance (CSA) Security, Trust & Assurance Registry (STAR) Level 1, meaning that MacStadium has publicly documented its compliance with CSA’s Cloud Controls Matrix (CCM), and that it joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment.
May 08, 2024
The Cloud Native Computing Foundation® (CNCF®) released the two-day schedule for CloudNativeSecurityCon North America 2024 happening in Seattle, Washington from June 26-27, 2024.
May 08, 2024
Sumo Logic announced new AI and security analytics capabilities that allow security and development teams to align around a single source of truth and collect and act on data insights more quickly.
May 08, 2024
Red Hat is announcing an optional additional 12-month EUS term for OpenShift 4.14 and subsequent even-numbered Red Hat OpenShift releases in the 4.x series.
May 08, 2024
HAProxy Technologies announced the launch of HAProxy Enterprise 2.9.
May 08, 2024
ArmorCode announced the general availability of AI Correlation in the ArmorCode ASPM Platform.
May 08, 2024
Octopus Deploy launched new features to help simplify Kubernetes CD at scale for enterprises.
May 08, 2024
Cequence announced multiple ML-powered advancements to its Unified API Protection (UAP) platform.
May 07, 2024
Oracle announced plans for Oracle Code Assist, an AI code companion, to help developers boost velocity and enhance code consistency.
