New integration helps make application security transparent and friction free for developers so they can deliver secure applications without disrupting DevOps workflows
Boston, December 8, 2020 – ZeroNorth, the only company to unite security, DevOps and the business for the good of software, today announced support for ShiftLeft’s NextGen Static Analysis (NG SAST), a modern code analysis solution purpose-built to support developer workflows. This latest, strategic integration enables joint customers to leverage the unique application security automation and orchestration capabilities of the ZeroNorth platform together with the speed and accuracy of NG SAST to rapidly identify, prioritize and remove vulnerabilities at the speed of DevOps.
“Our users love the integration between ShiftLeft NextGen Static Analysis and ZeroNorth. ShiftLeft provides instant security feedback with every pull request and developers never have to wait. With the ZeroNorth integration this feedback and overall security posture is quickly and comprehensively relayed to AppSec teams and Security Managers. Our customers have reported major increases in developer productivity and ease of managing their security programs,” commented Alok Shukla, VP Products at ShiftLeft.
The ZeroNorth platform accelerates application delivery by orchestrating an organization’s security scanning tools to rapidly identify vulnerabilities throughout the software development life cycle (SDLC). As part of this process, ZeroNorth automatically ingests and normalizes disparate scan findings into a common risk framework and delivers streamlined tickets to developers for remediation, prioritized by criticality to the business. ZeroNorth seamlessly integrates with DevOps toolchains so that developers can quickly remediate vulnerabilities without changing their workflows or being flooded with low-priority or duplicate issues.
“The integration with ShiftLeft’s NG SAST tool is a natural fit for ZeroNorth. Both technologies share a common vision of making application security as simple and frictionless as possible for developers,” commented Christian van den Branden, Senior Vice President, Engineering and Product Management at ZeroNorth. “The addition of NG SAST to ZeroNorth’s growing roster of leading scanning tools reinforces our strategy of integrating with customers’ tools of choice for AppSec throughout the SDLC. With these integrations, ZeroNorth empowers customers to remediate application security vulnerabilities quickly, easily and seamlessly as an integral process within their DevOps workflows.”
ZeroNorth brings security, DevOps and the business together to improve application security performance and reduce organizational risk. The company’s application security automation and orchestration platform unites enterprises to rapidly identify, prioritize and remove the vulnerabilities standing in the way of software excellence. In an age where the security of applications needs to be everyone’s responsibility, ZeroNorth is where organizations come together for the good of software. Learn more at www.zeronorth.io
ShiftLeft’s NextGen Static Analysis (NG SAST) was purpose-built to insert security into developer workflows. NG SAST’s speed and accuracy enables security automation with every pull request, which provides the right developer with the right vulnerability information at the right time. Hence, vulnerabilities get fixed faster and earlier, which drives down mean-time-to-remediation (MTTR), reduces attack surfaces, and minimizes technical debt accrual. Furthermore, NG SAST goes beyond technical vulnerabilities (e.g., The OWASP Top Ten) to identify cloud-centric vulnerabilities that traditional static analysis tools can’t find, such as business logic flaws, data leakage, hard-coded literals, and insider threats. To learn how ShiftLeft keeps AppSec in sync with the rapid pace of DevOps, see https://www.shiftleft.io/.