• Home
  • Press Releases
  • ZeroNorth and ShiftLeft Integrate to Empower Developers to Improve Application Security at the Speed of DevOps

ZeroNorth and ShiftLeft Integrate to Empower Developers to Improve Application Security at the Speed of DevOps

Publish Date

Dec 8, 2020

New integration helps make application security transparent and friction free for developers so they can deliver secure applications without disrupting DevOps workflows

Boston, December 8, 2020 ZeroNorth, the only company to unite security, DevOps and the business for the good of software, today announced support for ShiftLeft’s NextGen Static Analysis (NG SAST), a modern code analysis solution purpose-built to support developer workflows. This latest, strategic integration enables joint customers to leverage the unique application security automation and orchestration capabilities of the ZeroNorth platform together with the speed and accuracy of NG SAST to rapidly identify, prioritize and remove vulnerabilities at the speed of DevOps.

“Our users love the integration between ShiftLeft NextGen Static Analysis and ZeroNorth. ShiftLeft provides instant security feedback with every pull request and developers never have to wait. With the ZeroNorth integration this feedback and overall security posture is quickly and comprehensively relayed to AppSec teams and Security Managers. Our customers have reported major increases in developer productivity and ease of managing their security programs,” commented Alok Shukla, VP Products at ShiftLeft.

The ZeroNorth platform accelerates application delivery by orchestrating an organization’s security scanning tools to rapidly identify vulnerabilities throughout the software development life cycle (SDLC). As part of this process, ZeroNorth automatically ingests and normalizes disparate scan findings into a common risk framework and delivers streamlined tickets to developers for remediation, prioritized by criticality to the business. ZeroNorth seamlessly integrates with DevOps toolchains so that developers can quickly remediate vulnerabilities without changing their workflows or being flooded with low-priority or duplicate issues.

“The integration with ShiftLeft’s NG SAST tool is a natural fit for ZeroNorth. Both technologies share a common vision of making application security as simple and frictionless as possible for developers,” commented Christian van den Branden, Senior Vice President, Engineering and Product Management at ZeroNorth. “The addition of NG SAST to ZeroNorth’s growing roster of leading scanning tools reinforces our strategy of integrating with customers’ tools of choice for AppSec throughout the SDLC. With these integrations, ZeroNorth empowers customers to remediate application security vulnerabilities quickly, easily and seamlessly as an integral process within their DevOps workflows.”

About ZeroNorth
ZeroNorth brings security, DevOps and the business together to improve application security performance and reduce organizational risk. The company’s application security automation and orchestration platform unites enterprises to rapidly identify, prioritize and remove the vulnerabilities standing in the way of software excellence. In an age where the security of applications needs to be everyone’s responsibility, ZeroNorth is where organizations come together for the good of software. Learn more at www.zeronorth.io

About ShiftLeft
ShiftLeft’s NextGen Static Analysis (NG SAST) was purpose-built to insert security into developer workflows. NG SAST’s speed and accuracy enables security automation with every pull request, which provides the right developer with the right vulnerability information at the right time. Hence, vulnerabilities get fixed faster and earlier, which drives down mean-time-to-remediation (MTTR), reduces attack surfaces, and minimizes technical debt accrual. Furthermore, NG SAST goes beyond technical vulnerabilities (e.g., The OWASP Top Ten) to identify cloud-centric vulnerabilities that traditional static analysis tools can’t find, such as business logic flaws, data leakage, hard-coded literals, and insider threats. To learn how ShiftLeft keeps AppSec in sync with the rapid pace of DevOps, see https://www.shiftleft.io/.

eBooks & Research Reports

How DevSecOps Analytics Solve the Biggest Hurdles of AppSec

When it comes to building out a robust AppSec program, and embarking on the journey toward DevSecOps, there is a lot to remember and just as ...

Read Now


Ramp Up Your AppSec Program with ZeroNorth DevSecOps Quick Start

Learn how ZeroNorth DevSecOps Quick Start is ideal for engineering and security teams who need a quick, easy and cost-effective way to jumpstart their AppSec program.

Read Now

Related Press Releases

ZeroNorth Named Winner of the Coveted Global InfoSec Awards During RSA Conference 2021

By ZeroNorth May 17, 2021

ZeroNorth Wins Hot Company in DevSecOps and Cutting Edge in Application Security Awards In 9th Annual Global InfoSec Awards at #RSAC 2021 San Francisco, CA, May ...

Read More

ZeroNorth Unveils New Defect Density Dashboard to Unite Security and DevOps Teams

By ZeroNorth Nov 10, 2020

New platform capability enables security leaders to engage with development more effectively by aligning software security and quality priorities   Boston, November 10, 2020 –– ZeroNorth, ...

Read More

The ZeroNorth DevSecOps platform offers options for your DevSecOps journey—getting started with AppSec, finding enterprise visibility or fully integrating security into DevOps.