DEVOPSdigest

Hewlett Packard Enterprise (HPE) introduced the HPE Fortify Ecosystem and Fortify on Demand (FoD) continuous application monitoring service.

The online marketplace and service are designed to help organizations create secure applications by naturally integrating security testing processes and resources throughout the fast-paced software development lifecycle (SDLC). Partners of the HPE Fortify Ecosystem at launch include Microsoft, Docker and Chef, among more than 20 others. The FoD Continuous Application Monitoring Service provides ongoing discovery, scanning and runtime detection delivering visibility across the entire application portfolio.

“Application developers are being tasked with working at unprecedented speeds to deliver software in days and weeks instead of months, leaving little time to implement appropriate security measures,” said Jason Schmitt, VP and GM, HPE Security Fortify, Hewlett Packard Enterprise. “Securing the software development lifecycle in today’s environment requires an automated, continuous, and natural process. The new HPE Fortify Ecosystem and Fortify on Demand continuous application monitoring service ensure the approach to application security is intuitive, comprehensive, and seamless to integrate, helping organizations save time and reduce costs.”

The new HPE Fortify Ecosystem is fully integrated into the DevOps tool chain, making it simpler for developers to build security into the SDLC and strengthen the security of their applications. The marketplace features integrated systems spanning 10 distinct DevOps functional categories, including: Cloud, Containers, Security, Open Source and others. Platforms including Microsoft’s Visual Studio Team Services (VSTS), Docker and Chef are all compatible with HPE Security Fortify solutions at launch.

Implementing secure DevOps can help organizations reduce time, costs, and risks; however, applications must also be protected once they are in production. The increasing pressure to rapidly deliver applications often creates a disconnect between an organization’s IT function and security team. As a result, the security team may not know what is in production and must identify which applications are deployed on the network, scan them for vulnerabilities and protect them. The FoD Continuous Application Monitoring service delivers a comprehensive application monitoring solution that automatically identifies an organization’s full range of applications, dynamically scans and tests them in real-time, and integrates directly with security information and event management (SIEM) for incident identification and response.

The HPE Fortify Ecosystem and new HPE Security Fortify on Demand continuous application monitoring service are currently available globally.