Backslash Security introduced its Fix Simulation and AI-powered Attack Path Remediation capabilities.
Synopsys Acquires Code Dx
June 08, 2021
Synopsys has acquired Code Dx, a provider of an application security risk management solution that automates and accelerates the discovery, prioritization, and remediation of software vulnerabilities.
The addition of Code Dx enables Synopsys to offer customers consolidated risk reporting and prioritization across correlated software vulnerability data produced by Synopsys solutions and more than 75 third-party and open source application security and development products. Headquartered in Northport, New York, the acquisition also adds a team of R&D engineers experienced in vulnerability correlation and integrating security testing activity across the entire software development pipeline.
The terms of the deal, which are not material to Synopsys' financials, are not being disclosed.
Prior to the acquisition, Code Dx was a member of the Synopsys Technology Alliance Partner (TAP) program. As part of that partnership, Synopsys has worked closely with Code Dx to support their integrations within the Synopsys product portfolio. As a result, customers can use Code Dx's offering in conjunction with Synopsys products immediately.
Synopsys provides a broad portfolio of application security solutions in the industry, including static, dynamic, and interactive application security testing and software composition analysis. The recently introduced Synopsys Intelligent Orchestration solution uses innovative technology to automatically determine and initiate the most appropriate security tests using Synopsys and third-party products based on pre-defined risk policies and changes made to an application. Code Dx complements and extends these solutions by aggregating and correlating security testing results from Synopsys products, third-party products, and open-source products across the pipeline to provide consolidated risk reporting and facilitate prioritized remediation efforts.
"The complexity and speed of modern software development requires the use of multiple security testing technologies and rapid testing cycles," said Jason Schmitt, GM of the Synopsys Software Integrity Group. "While robust security testing is vital to securing modern software, it often produces large amounts of vulnerability data that is difficult to manage at speed and at scale. Code Dx enables our customers to optimize and harness the breadth of our application security portfolio, along with third-party tools, by aggregating, correlating, and prioritizing security testing results based on risk."
The addition of Code Dx makes Synopsys the first vendor to provide the full spectrum of application security tools and services, including:
- A complete suite of industry-leading security testing tools
- An intelligent orchestration engine that automatically determines and initiates the appropriate tests for each step in the DevOps workflow
- An aggregation, correlation, and prioritization solution for the vulnerabilities identified during testing
- Consolidated application security risk reporting across any commercial and open-source application security solutions
- Consulting and managed services to align people, process, and technology and address application security risks holistically
The extensibility of Synopsys Intelligent Orchestration and Code Dx enables organizations to build more efficient and effective testing programs while leveraging their current investments in application security testing tools.
Industry News
July 25, 2024
Check Point® Software Technologies Ltd. announced the appointment of Nadav Zafrir as Check Point Chief Executive Officer.
July 25, 2024
Sonatype announced that Sonatype SBOM Manager, its Enterprise-Class Software Bill of Materials (SBOM) solution, and its artifact repository manager, Nexus Repository, are now available in AWS Marketplace, a digital catalog with thousands of software listings from independent software vendors that make it easy to find, test, buy, and deploy software that runs on Amazon Web Services (AWS).
July 24, 2024
Broadcom unveiled the latest updates to VMware Cloud Foundation (VCF), the company’s flagship private cloud platform.
July 24, 2024
CAST launched CAST SBOM Manager, a new freemium product designed for product owners, release managers, and compliance specialists.
July 24, 2024
Zesty announced the launch of its Insights and Automation Platform.
July 23, 2024
Progress announced the availability of Progress® MarkLogic® FastTrack™, a UI toolkit for building data- and search-driven applications to visually explore complex connected data stored in Progress® MarkLogic® platform.
July 23, 2024
Snowflake will host the Llama 3.1 collection of multilingual open source large language models (LLMs) in Snowflake Cortex AI for enterprises to easily harness and build powerful AI applications at scale.
July 23, 2024
Secure Code Warrior announced the availability of SCW Trust Agent – a solution that assesses the specific security competencies of developers for every code commit.
July 23, 2024
GFT launched AI Impact, a new solution that leverages artificial intelligence to eliminate technical debt, increase developer efficiency and automate critical software development processes.
July 23, 2024
Code Metal announced a $13M seed, led by Shield Capital.
July 22, 2024
Atlassian Corporation has achieved Federal Risk and Authorization Management Program (FedRAMP) “In Process” status and is now listed on the FedRAMP marketplace.
July 18, 2024
Check Point® Software Technologies Ltd. announced that it has received a Leader ranking in The Forrester Wave™: Mobile Threat Defense Solutions, Q3 2024 report.
July 18, 2024
Mission Cloud announced the launch of Mission Cloud Engagements - DevOps, a platform designed to transform how businesses manage and execute their AWS DevOps projects.
July 18, 2024
Accelario announces the release of its free TDM solution, including database virtualization and data anonymization.
