Articles from Checkmarx

Checkmarx, the leader in agentic AI-powered application security, today announced the general availability of its Checkmarx One Developer Assist agent, with extensions for top AI-native Integrated Development Environments (IDE) including Windsurf by Cognition, Cursor, and GitHub Copilot.

Checkmarx, the leader in agentic AI-driven, cloud-native application security that helps enterprise developers build trust at scale and speed, welcomes security industry veteran Scott Gainey to its executive leadership team as chief marketing officer. Gainey will lead the company’s global marketing strategy, branding, messaging, communications, demand generation and partner marketing development efforts. Key goals include scaling new business growth by aligning and executing with sales and partners to deliver significant value to customers.

Checkmarx, the leader in autonomous application security for the enterprise, will demonstrate its agentic AI vision and discuss its implications for closing the speed gap between security and software delivery deadlines at the Agentic AI by Checkmarx Summit on June 24th. The online event will present the real-world impact of agentic AI for application security (AppSec) from industry leaders including Checkmarx Chief Product Officer Jonathan Rende and guest speaker Katie Norton, Research Manager, DevSecOps and Software Supply Chain Security at IDC.

Checkmarx, the industry leader in cloud-native application security for the enterprise, has published its annual research report, “A CISO’s Guide to Steering AppSec in the Age of DevSecOps.” Based on a survey of 200 chief information security officers (CISOs) from across diverse industries and regions, the global study uncovered key factors driving the trend for closer collaboration between development and security teams. One key finding is that 49% of CISOs say buyers now factor application security (AppSec) into purchasing decisions. In fact, in nearly half of software-based product companies, security oversight has moved outside the CISO’s office entirely.

Checkmarx, the industry leader in cloud-native application security for the enterprise, today announced the availability of the industry’s most robust application security posture management (ASPM) solution within the most widely used integrated development environments (IDEs). The cloud-based Checkmarx One application security platform dramatically improves developer experience of AppSec-related tasks and provides helpful tools for prioritization and remediation of vulnerabilities without disruption, thereby enabling optimal developer workflows to scale to meet the needs of the business.

Checkmarx, the industry leader in cloud-native application security for the enterprise, has appointed technology industry veteran Jonathan Rende as its Chief Product Officer (CPO), effective immediately. With his extensive leadership experience and deep understanding of software product development, AI and machine learning, Rende is uniquely positioned to offer strong vision and direction as the company continues its journey of innovation in application security.

Checkmarx today released its global research report, “DevSecOps Evolution: from DevEx to DevSecOps,” which studied the current practices of development teams in large enterprises as they work toward more mature states of development, security and operations (DevSecOps). The survey found that development and security teams are making strides in the evolution to DevSecOps but are still working toward alignment on workflows and metrics.

Checkmarx announced today that it has been named to the Constellation ShortList™ for Application Security Testing (AST) in Q1 2025. The technology vendors and service providers included in this program deliver critical transformation initiative requirements for early adopters and fast-follower organizations.

Checkmarx, the industry leader in cloud-native application security for the enterprise, announced today that its security research team, Checkmarx Zero, has launched a collaborative application security (AppSec) research hub.

Checkmarx, the industry leader in cloud-native application security for the enterprise, has announced that its market-leading Checkmarx One application security (AppSec) platform has won Best DevSecOps Solution in the Tools and Services category of the 2024 DevOps Dozen Awards by the Techstrong Group.

Checkmarx, the industry leader in cloud-native application security for the enterprise, has been honored by Frost & Sullivan as Competitive Strategy Leader in the global application security posture management (ASPM) industry. The Best Practices Award for 2024 is based on Checkmarx’ innovation and commitment to equipping enterprise leaders with broad and deep visibility into application risk and a proactive stance on application security.

Checkmarx, the industry leader in cloud-native application security for the enterprise, has been positioned as a Leader and Fast Mover in the inaugural GigaOm Radar Report for Software Supply Chain Security for 2024. In an age when CXOs must face the increasing complexity of software and the expansion of its threat surface, the GigaOm Radar report notes, “Prioritizing software supply chain security (SSCS) and new technologies will strengthen defenses, reduce risks, and ensure long-term success in today’s digital landscape.” GigaOm’s first Radar for Software Supply Chain Security provides an overview of leading SSCS vendors to help enterprise decision-makers make more informed investment decisions.

With the vast majority of development teams using open source software and employing agile development, Checkmarx, the industry leader in cloud-native application security for the enterprise, has announced a new generation in software supply chain security with its Secrets Detection and Repository Health solutions to minimize application risk.

Checkmarx, the industry leader in cloud-native application security for the enterprise, has been positioned as the leader in Frost & Sullivan’s Frost Radar™: Application Security Posture Management (ASPM), 2024. Achieving the highest ranking on the Radar Growth Index at 21.3% market share in 2024, Checkmarx also earned a top spot on the Innovation Index.

Checkmarx, the industry leader in cloud-native application security, has been recognized by customers on Gartner® Peer Insights™ as a Customers’ Choice for Application Security Testing for the sixth consecutive year. Checkmarx is the only AST vendor to be recognized as a Customers’ Choice every year since the first Voice of the Customer for Application Security Testing report in 2019, receiving great ratings for Support Experience (4.8/5), Sales Experience (4.6/5) and Deployment Experience (4.7/5). Notably, Checkmarx received the highest Product Capabilities score of any AST vendor in the Customers’ Choice Quadrant, with a score of 4.7 out of 5.

Checkmarx, the industry leader in cloud-native application security, has expanded its support for open source solutions with the most widely used DAST tool in the world, the Zed Attack Proxy (ZAP). ZAP project leaders Simon Bennetts, Rick Mitchell and Ricardo Pereira will join Checkmarx as employees to build the next generation of Checkmarx’ enterprise-grade DAST offering while continuing to invest in the open source project and grow the ZAP community. ZAP has performed over 353,724,090 scans and has delivered more than 30,058,294,650 alerts since December 2021.

Checkmarx, the industry leader in cloud-native application security, has appointed long-time technology industry leader Inbal Shani to its Board of Directors. Shani will leverage decades of executive experience in innovative technology companies to her new position on the board, where she joins Checkmarx CEO Sandeep Johri, the company’s founders Maty Siman and Emmanuel Benzaquen and Hellman & Friedman Partner Tarim Wasim, among others.

With the enterprise increasingly challenged to speed application deployment as the attack surface continually expands, Checkmarx, the industry leader in cloud-native application security, has introduced a powerful new Container Security solution. Offered as part of its cloud-native Checkmarx One application security (AppSec) platform, the new Container Security solution enhances team efficiency while delivering early vulnerability identification, actionable insights and streamlined mitigation within familiar development processes and workflows.

Checkmarx, the industry leader in cloud-native application security for the enterprise, has published its Seven Steps to Safely Use Generative AI in Application Security report, which analyzes key concerns, usage patterns and buying behaviors relating to the use of AI in enterprise application development. The global study exposed the tension between the need to empower both development and application security (AppSec) teams with the productivity benefits of AI tools and the need to establish governance to mitigate emerging risks.

Checkmarx, the industry leader in cloud-native application security for the enterprise, and Wiz, a forefront provider of cloud security solutions, are pleased to announce an extended partnership to further enrich the Wiz platform. This enhancement marks the first-ever integration providing static application security testing (SAST) results to a cloud-native application protection platform (CNAPP) vendor, setting a new industry standard for application security and cloud protection.

As open source software grows to represent an ever-increasing percentage of enterprise application code, application security (AppSec) leaders and developers are challenged to mitigate the risk of falling victim to the weaponization of such packages by threat actors. Reporting on current open source AppSec practices and problems, Checkmarx, the industry leader in cloud-native application security for the enterprise, has released its global research report, the 2024 State of Software Supply Chain Security. Notably, the study found that 100% of the large enterprises represented by 900 AppSec professionals responding from the United States, Europe and Asia-Pacific have been the victims of a software supply chain attack at some point.

Checkmarx, the industry leader in cloud-native application security for the enterprise, is stepping up collaboration with DXC Technology (NYSE: DXC), a leading Fortune 500 global technology services company, to offer robust and fully scalable application security (AppSec) programs and services around the world. DXC Technology will now sell and support the Checkmarx One™ application security platform at its customer sites to enable enterprise-grade, comprehensive protection across the software development life cycle and help them find and fix software vulnerabilities faster.

Checkmarx, the industry leader in cloud-native application security for the enterprise, has released Checkmarx Application Security Posture Management (ASPM) and Cloud Insights to provide organizations with unmatched visibility into their application security posture stretching from code to cloud. Available on the Checkmarx One AppSec platform, ASPM and Cloud Insights empower enterprises developing cloud-native applications to dramatically reduce application and business risk by delivering end-to-end insights into their application security posture, helping them better correlate, prioritize and triage remediation efforts.

RSA CONFERENCE – As a new crop of AI-related threats emerges from the rapid adoption of generative AI (GenAI) tools within application development, Checkmarx, the industry leader in cloud-native application security for the enterprise, has forged a secure path forward for enterprise development and AppSec teams. Building on its earlier innovations to protect ChatGPT-generated code and provide AI-guided remediation, the company is now announcing the launch of its AI Security offering, which includes AI Security for GitHub Copilot, AI Security Champion and real-time in-IDE scanning to empower developers to validate AI-generated code, auto-remediate vulnerabilities and write more secure code from the start.

Checkmarx, the leader in cloud-native application security, today announced the Codebashing AppSec Training Initiative in partnership with the Open Worldwide Application Security Project (OWASP). The program will provide OWASP chapters and their members around the world with access to the Codebashing AppSec solution to ease the adoption of application security (AppSec) and compliance standards and build trust between security and development teams.

Checkmarx, the leader in cloud-native application security, today released a commissioned study conducted by Forrester Consulting on The Total Economic Impact™of Checkmarx: Cost Savings and Business Benefits Enabled by the Checkmarx One Platform, March 2024. The analysis was based on Forrester interviews with eight Checkmarx customers in the financial, healthcare, manufacturing, professional services and technology industries with annual revenues of $50 million to $180 billion.

Checkmarx, the leader in cloud-native application security, has integrated its enterprise application security platform, Checkmarx One, with leading cloud security provider Wiz and has joined the Wiz Integrations (WIN) program. The integration allows enterprise customers to approach application security (AppSec) from code to cloud and transform the way that AppSec and development teams prioritize and remediate cloud-native vulnerabilities by enriching their AppSec findings with runtime insights.

Checkmarx, the leader in cloud-native application security, has announced an integration partnership with SD Elements from Security Compass, a leader in Security by Design. The integration enhances Checkmarx One, the industry-leading enterprise application security platform, and Checkmarx SAST by incorporating SD Elements to streamline and expand threat modeling capabilities across the software development life cycle (SDLC).

Checkmarx, the leader in cloud-native application security, has released the annual Future of AppSec Report, which gives an in-depth look at the current state of application security, future investments and organizations’ most critical application security concerns.

Checkmarx, the leader in cloud-native application security, has announced significant growth and momentum during 2023, including a more than 200% increase in annual recurring revenue from its enterprise application security platform Checkmarx One. As one of the pioneers of application security that is continuing to innovate in the age of generative AI and digital transformation, the company’s growth is fueled by the need for today’s enterprise and large public-sector organizations to secure their entire application footprints.

Checkmarx, the leader in cloud-native application security, has again delivered a groundbreaking application security solution with its new Checkmarx SAST solution. The next-generation Checkmarx SAST engine helps enterprise organizations secure their entire application footprints with both in-depth security to identify maximum risk and ultra-fast scanning to cover every application with minimum overhead and distraction.

Checkmarx, the leader in enterprise cloud-native application security, today announces new integrations designed to speed application security operations within ServiceNow DevOps. Both the cloud-native Checkmarx One AppSec platform and Checkmarx SAST plugins are immediately available in the ServiceNow Store and effectively streamline application security for developers within the DevOps toolchain, significantly reducing the risk of delivering cloud-native enterprise applications.

Israel Aerospace Industries (IAI) is excited to welcome Checkmarx, the global leader in developer-centric application security testing (AST) solutions, to the Israeli Cyber Companies Consortium (IC3). The Consortium was established with the aim of offering the most advanced cyber-defense capabilities to national governments around the world.

Checkmarx, the global leader in developer-centric application security testing (AST) solutions, announced today that its open source KICS (Keeping Infrastructure as Code Secure) solution has been integrated into version 14.5 of the GitLab DevOps Platform as an infrastructure-as-code scanning tool.

Checkmarx, the global leader in developer-centric application security testing (AST) solutions, today unveiled the findings of its new global report, “AppSec: The View from Security and Software Development Experts.” The report was commissioned by Checkmarx and developed with Censuswide to spotlight the biggest security challenges that application security (AppSec) managers and software developers are facing within their organizations in today’s threat landscape.

Checkmarx, the global leader in developer-centric software security, today announced that it has been named a Gartner Peer Insights Customers’ Choice for Application Security Testing for the third consecutive year. Checkmarx is the only vendor to have earned this recognition every year since the Peer Insights Customers’ Choice category debuted in 2019. This recognition is based on an overall rating, user interest, and adoption. Checkmarx was also named a Leader in the 2021 Gartner Magic Quadrant for Application Security Testing, its fourth Leader designation in a row.

Checkmarx, the global leader in developer-centric application security testing (AST), today announced the launch of the Checkmarx Application Security Platform™ to help CISOs, AppSec teams, and developers address the growing and dynamic security challenges they face.

Checkmarx, the global leader in developer-centric application security testing (AST) solutions, today announced the full keynote speaker lineup and agenda for Checkmate, its upcoming virtual customer and developer conference taking place on October 21, 2021. The marquee event will feature presentations from Checkmarx executives and industry luminaries alongside labs, roundtables, and breakout sessions in a fast-paced, half-day livestream with a dedicated developer track.

Checkmarx, the global leader in developer-centric application security testing (AST) solutions, today announced that it has named Nancy Pearson as Chief Marketing Officer (CMO). Bringing significant cloud and SaaS experience to the role, Pearson will lead Checkmarx’s global corporate marketing, branding, digital marketing, and communications initiatives as the company delivers on rapidly-growing customer demand for AST solutions.

Checkmarx, the global leader in developer-centric application security testing (AST) solutions, today announced that it has appointed Razi Sharir as Chief Product Officer (CPO). Bringing over 20 years of experience in developing and scaling SaaS platforms and products, Sharir will accelerate the delivery of Checkmarx’s next-gen cloud AST vision to help organizations better integrate security into DevOps to reduce AppSec risk.

Checkmarx, the global leader in developer-centric application security testing (AST) solutions, today announced its commitment to the channel with the launch of the Checkmarx Global Partner Program. Built to empower partners to scale and innovate alongside Checkmarx, the new program places an increased emphasis on growth opportunities, continuous enablement, and rewards and incentives.

Checkmarx, the global leader in developer-centric application security testing (AST) solutions, today announced that it has been positioned as a Strong Performer in The Forrester Wave™: Software Composition Analysis, Q3 2021. Based on Forrester’s analysis of the 10 most significant SCA solution providers, Checkmarx received the highest possible scores in the criteria of market approach, open source vulnerability detection, actionable remediation, and infrastructure-as-code scanning. Notably, this comes on the heels of the company being named a Leader in The Forrester Wave™: Static Application Security Testing, Q1 2021.

Checkmarx, the global leader in developer-centric application security testing (AST) solutions, today announced that it has acquired Dustico, a SaaS-based solution that detects malicious attacks and backdoors in open source software supply chains. Through this acquisition, Checkmarx will combine its AST capabilities with Dustico’s behavioral analysis technology to give customers a unified view into the risk, reputation, and behavior of open source packages, resulting in a more comprehensive approach to preventing supply chain attacks.

Checkmarx, the global leader in developer-centric application security testing solutions, today announced that it has named Roman Tuma as Chief Revenue Officer (CRO). Previously the Vice President of Sales for Checkmarx’s EMEA, LATAM, and APAC business, he will now be responsible for driving the company’s go-to-market strategy including overseeing global sales, channel operations, and strategic alliances.

Checkmarx, the global leader in developer-centric application security testing solutions, today announced that it has been positioned as a Leader in the 2021 Gartner Magic Quadrant for Application Security Testing for the fourth consecutive year. In the report, Gartner recognizes Checkmarx for its completeness of vision and ability to execute in the application security testing (AST) market.

Checkmarx, the global leader in developer-centric application security testing solutions, today announced that it has been named a winner in three categories in this year’s Cyber Defense Magazine (CDM) Global Infosec Awards: Market Leader in Application Security, Best Product in Cybersecurity Training for CxCodebashing, and Cutting Edge in Software Composition Analysis for CxSCA. This continues Checkmarx’s strong 1H 2021 business momentum and growth fueled by net new customer acquisition, product innovation, top talent acquisition, and industry award and analyst recognition.