Red Hat and Oracle announced the general availability of Red Hat OpenShift on Oracle Cloud Infrastructure (OCI) Compute Virtual Machines (VMs).
Checkmarx earned Amazon Web Services (AWS) Security Competency status for its Software Security Platform.
This recognizes that Checkmarx has demonstrated proven technology and deep expertise to help organizations achieve their application security testing (AST) goals on AWS. Checkmarx is the first AST software vendor to receive the designation.
Achieving AWS Security Competency differentiates Checkmarx as an AWS Partner Network (APN) member that delivers specialized software designed to help today’s organizations adopt, develop and deploy complex security projects on AWS. APN Partners must demonstrate deep AWS expertise and deliver solutions seamlessly on AWS.
“While the proliferation of software in today’s world has obvious benefits, it also presents a diverse set of security challenges for organizations to navigate. The speed at which businesses are developing and releasing software increases the number of vulnerabilities inherent in most applications, creating risk for themselves and their customers,” said Yair Rovek, VP, Managed & Cloud Services, Checkmarx. “Checkmarx is dedicated to instilling application security testing best practices into the modern software development process, and achieving AWS Security Competency status further validates our ability to deliver software security in a cloud environment. This is yet another step in our broader cloud strategy as we deliver a best-in-class experience for our customers, whether they choose to deploy on-premises, in the cloud, or in a hybrid environment.”
The Checkmarx Software Security Platform tightly integrates static application security testing (SAST), software composition analysis (SCA), and interactive application security testing (IAST) solutions, as well as developer application security awareness and training. Unified via a management and orchestration layer, the solution addresses vulnerabilities found throughout the entire software development lifecycle to empower a true DevSecOps model.
Checkmarx offers a broad range of managed services for organizations adopting cloud-first AST strategies on AWS, including:
- Checkmarx Private Hosting Services: Host Checkmarx’s market-leading AST solutions within the Amazon secure Virtual Private Cloud (Amazon VPC). Checkmarx experts maintain the infrastructure and operations that support organizations’ software security initiatives to reduce the burden on internal technical teams and increase security and reliability.
- Checkmarx AppSec Accelerator: Organizations can leverage Checkmarx’s managed software security testing service to have experts review their code and analyze applications, coupled with automating the results back into the CI/CD pipeline.
AWS is enabling scalable, flexible and cost-effective solutions from startups to global enterprises. To support the seamless integration and deployment of these solutions, AWS established the AWS Competency Program to help customers identify consulting and technology APN partners with deep industry experience and expertise.
Industry News
The Software Engineering Institute at Carnegie Mellon University announced the release of a tool to give a comprehensive visualization of the complete DevSecOps pipeline.
Synopsys has entered into a definitive agreement with Clearlake Capital Group, L.P. and Francisco Partners.
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
Nokod Security announced the general availability of the Nokod Security Platform.
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.
ActiveState unveiled Get Current, Stay Current (GCSC) – a continuous code refactoring service that deals with breaking changes so enterprises can stay current with the pace of open source.
Lineaje released Open-Source Manager (OSM), a solution to bring transparency to open-source software components in applications and proactively manage and mitigate associated risks.
Synopsys announced the availability of Polaris Assist, an AI-powered application security assistant on the Synopsys Polaris Software Integrity Platform®.
Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.