Checkmarx, the global leader in developer-centric application security testing (AST), has announced the launch of the Checkmarx Application Security Platform™ to help CISOs, AppSec teams, and developers address the growing and dynamic security challenges they face.
With groundbreaking capabilities, the platform integrates into any workflow or tool, delivering security with the speed, scale, and flexibility to support the latest development requirements. It seamlessly works with all modern frameworks and development infrastructures through webhook integrations, a standard set of APIs, or command line interface.
Offering one-click scanning across many critical components of the application code, the platform provides the most complete, accurate, and actionable intelligence to remediate vulnerabilities early in the development life cycle. One click triggers a comprehensive scan to examine source code, third-party open-source libraries, API contracts, and infrastructure as code (IaC) templates. Results are aggregated, verified, and augmented with expert remediation advice to benefit security leaders, AppSec teams, and developers alike.
Through direct integration with Checkmarx Codebashing™, the company’s developer education solution, the platform provides on-demand training to enable extensive code security, reduce human error, and enable organisations to build security into their processes and technologies as part of the application development life cycle.
Delivered as software as a service, the AppSec Platform tightly incorporates security into development while eliminating infrastructure management overhead as well as providing continuous updates and functional enhancements. Foundational services—such as metering, monitoring, access, and user experience—simplify administration of all applications, services, and deployment. In addition, the platform allows third parties to develop using platform services and APIs with a common experience and virtualised services that would otherwise vary across clouds.
“Software development drives business innovation, serving as an enabler and differentiator across all industries. However, software is becoming more complex, causing security and development teams to struggle with the fast pace and immense risk it can bring an organisation,” said Razi Sharir, chief product officer at Checkmarx. “With the Checkmarx Application Security Platform, we are enabling secure software development across the business, giving security and AppSec teams visibility into all aspects of application code. This new integrated solution replaces multiple complex point products with a single platform that delivers actionable, accurate results, allowing developers to code boldly and quickly without sacrificing security.”
Committed to bringing security and development together through industry-leading products and services, Checkmarx has also pledged to continue contributing to these communities through education and open source projects like the IaC scanning project KICS.
“Checkmarx is a strong advocate for providing free tools and education to foster secure innovation across the community,” said Sharir. “KICS was just a starting point. We have some big announcements in the beginning of next year, as we work toward our goal of contributing back to the security and developer communities.”
