DEVOPSdigest

Snyk has agreed to acquire Enso Security, provider of Application Security Posture Management (ASPM).

The acquisition is subject to customary closing conditions and is expected to close in Q2 2023.

Together, with the launch of Snyk’s newest innovation, Insights, a prioritization capability with code-to-cloud application intelligence, global enterprises can now more effectively manage their overall AppSec posture. Combined, these new capabilities will provide Snyk customers with the tools they need to effectively manage and govern a developer security program at scale.

“As DevSecOps becomes increasingly mainstream, Snyk is committed to continuing to build upon its market leadership by adding important new capabilities that allow security leaders to grow and manage their global developer security programs at scale,” said Peter McKay, CEO, Snyk. “We look forward to welcoming the innovative Enso team as our newest Snykers. We are fully aligned in our shared vision to help more organizations stay ahead of their competition by increasing their pace of innovation securely by default.”

The Enso Security acquisition is part of SnykLaunch June 2023, a range of new innovations that further strengthen the Snyk Developer Security Platform. Additional highlights in the SnykLaunch June 2023 lineup include:

- Insights: provides AppSec teams with exponentially more effective prioritization of security issues by leveraging code-to-cloud application intelligence, allowing them to effectively focus on the top risks for their particular organization; and,

- DeepCode AI: creates validated fixes as Snyk identifies issues in both human-written and AI-generated code, crucial for AppSec teams currently scrambling to securely enable the explosion of new generative AI coding assistants.

Snyk will leverage Enso’s ASPM capabilities, together with Insights to offer a developer security platform providing a holistic view of application security posture. Regardless of the security tooling currently in place, developer-first ASPM will orchestrate coverage throughout the entire software development lifecycle, with prioritization that powerfully combines both business impact and risk.

“Our disruptive developer-first approach has become a game changer for application security,” said Manoj Nair, Chief Product Officer, Snyk. “With these new AI and ASPM capabilities, we’re excited to now help more enterprises achieve greater supply chain security transparency, allowing them to eliminate crucial security coverage gaps across their business.”

Following the 2020 acquisition of DeepCode, DeepCode AI became the backbone of Snyk Code. Powering the Snyk platform, DeepCode AI utilizes multiple AI models and is trained on security-specific data, curated by top security researchers to provide Snyk’s customers with important AI productivity gains without the security drawbacks. Over 100,000 organizations are currently leveraging the benefits of DeepCode AI, including more than 1,700 Snyk Code customers.

Since then, Snyk has continuously innovated in this realm, most recently with the introduction of DeepCodeAI Fix, which has already attracted 150 paying customers since a preview was opened last month. Starting in Snyk Code, DeepCodeAI Fix leverages Snyk’s proprietary AI to suggest secure code fixes that developers can implement with a click, eliminating the need to do their own research and dramatically improving efficiency. An additional new DeepCode AI capability allows application security users to interact and directly leverage Snyk’s AI to write custom code queries, further accelerating the process of creating custom rules and policies.