Parasoft announces the opening of its new office in Northeast Ohio.
Synopsys Launches Software Risk Manager
August 01, 2023
Synopsys announced the launch of Synopsys Software Risk Manager, a new application security posture management (ASPM) solution.
Software Risk Manager enables security and development teams to simplify, align and streamline their application security testing across projects, teams and application security testing (AST) tools. It aligns intelligent policy-driven orchestration and vulnerability management capabilities with the Synopsys Software Integrity Group's market-leading SAST and SCA engines, with broad support for other open-source and commercial AST tools. In combination, Synopsys' ASPM solution delivers an enhanced ability to implement application security consistently across any organization.
"Application security programs need to be effective and efficient at reducing software risk in order to deliver value," said Jason Schmitt, general manager of Synopsys' Software Integrity Group. "Many organizations embracing digital transformation are struggling with the complexity and operational costs of managing their software risk at scale. Synopsys Software Risk Manager provides teams with a holistic view of their application security posture while accelerating time to value and reducing the overall cost of their AppSec programs."
Software Risk Manager is built on the core technologies of Synopsys' Code Dx and Intelligent Orchestration products, redesigned and enhanced to deliver a comprehensive ASPM solution that enables teams to:
- Implement policy driven AppSec at scale. Centrally define and enforce universal security policies which specify parameters for test execution and vulnerability management.
- Unify user experience across disparate application security testing tools. Maximize the value of existing security investments while simplifying resourcing and operations. Improve ability to transition and consolidate tooling across teams.
- Consolidate vulnerability reporting and management across projects, teams and tools. Obtain a complete picture of security risks that is normalized, deduplicated and prioritized across tools.
- Simplify AppSec integration and orchestration in development workflows. Integrate security workflows within existing developer toolchains and systems and enable quick onboarding for existing projects and builds.
- Optimize core application security testing with a single, unified solution. Efficiently deploy, manage and report on core application security testing functions leveraging the same market-leading SAST and SCA engines that power Synopsys offerings.
Industry News
May 02, 2024
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
May 02, 2024
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
May 02, 2024
Nokod Security announced the general availability of the Nokod Security Platform.
May 02, 2024
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
May 01, 2024
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
May 01, 2024
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.
May 01, 2024
ActiveState unveiled Get Current, Stay Current (GCSC) – a continuous code refactoring service that deals with breaking changes so enterprises can stay current with the pace of open source.
May 01, 2024
Lineaje released Open-Source Manager (OSM), a solution to bring transparency to open-source software components in applications and proactively manage and mitigate associated risks.
May 01, 2024
Synopsys announced the availability of Polaris Assist, an AI-powered application security assistant on the Synopsys Polaris Software Integrity Platform®.
April 30, 2024
Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
April 30, 2024
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.
April 30, 2024
F5 announced new security offerings: F5 Distributed Cloud Services Web Application Scanning, BIG-IP Next Web Application Firewall (WAF), and NGINX App Protect for open source deployments.
April 29, 2024
Code Intelligence announced a new feature to CI Sense, a scalable fuzzing platform for continuous testing.
April 29, 2024
WSO2 is adding new capabilities for WSO2 API Manager, WSO2 API Platform for Kubernetes (WSO2 APK), and WSO2 Micro Integrator.
