Business Wire

Bridging the Needs of Security and Development Teams, Veracode Unveils Next-Generation Software Security Platform

4.5.2022 15:12:00 EEST | Business Wire | Press release

Share

Veracode, a leading global provider of application security testing (AST) solutions, today announced its Continuous Software Security Platform, which seamlessly embeds application security into the software development lifecycle (SDLC). The platform streamlines workflows by bringing together development and security teams to provide a broad understanding of risk, remediation guidance, and progress at every stage of the development process.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20220504005671/en/

To view this piece of content from mms.businesswire.com, please give your consent at the top of this page.

Fig. 1 The Veracode Continuous Software Security Platform (Graphic: Business Wire)

According to Veracode’s latest research, there has been a 20x increase in average scan cadence over the past decade, with most applications tested three times per week, as opposed to three times per year a decade ago. The research also showed a 31 percent increase in organizations using multiple scan types over the last three years alone.

Today, leading organizations recognize the need to leverage multiple methods to assess their software and do so across all stages of the development lifecycle. Gartner® predicts that “by 2025, 70% of organizations will consolidate the number of vendors securing the lifecycle of cloud-native applications to a maximum of three vendors.” ¹ This suggests companies are already looking for a comprehensive platform that provides flexible policy management, a holistic assessment of software risk, and integrated remediation guidance, while simplifying the complexity of managing multiple solutions.

Pervasive but Not Invasive for Developers

With increased pressure to build and deploy software at breakneck speed, development teams require security checks to be seamlessly integrated into the tools where they work so they can find and fix vulnerabilities quickly. Meanwhile, security teams must meet increasingly stringent compliance standards defined by their boards and regulatory bodies. Veracode’s Continuous Software Security Platform is pervasive but not invasive because it provides a frictionless experience for developers by embedding vulnerability analysis with remediation guidance directly into the integrated development environment.

Brian Roche, Chief Product Officer at Veracode, said, “Other vendors in our space have incomplete or disjointed solutions that lack consistent reporting and analysis, leaving customers playing a game of ‘whack a mole’ across different tools. We have continued to evolve our platform to create a seamless and integrated experience for developers, as well as provide security teams with a holistic view of their software security posture from design, through development and deployment. We see this as a win for both development and security teams that will result in the delivery of software that is more secure.”

Veracode Continuous Software Security Platform

The Veracode Continuous Software Security Platform enables users to define and manage security policy, gain a comprehensive view of software security across their application portfolio, and leverage rich analytics to make informed plans, communicate metrics, comply with policy, and meet regulatory requirements. Powered by almost two decades of data, the platform enables organizations to detect, predict, manage, and, ultimately, mitigate their security risk. These intelligent capabilities empower companies to deliver secure code at the speed and scale expected in today’s world.

The new Veracode Continuous Software Security Platform release features several new capabilities including:

  • Single-Pane-of-Glass Reporting: Security teams can now access unified reporting directly in the portal for Static Analysis, Dynamic Analysis, Software Composition Analysis, and Manual Penetration Testing. Administrators and developers now have a consolidated view into security risks, as well as flexible policy controls through stronger license management reports to address issues quickly.
  • Self-Service Peer Benchmarking: With comprehensive data and anonymized insights across all platform users, customers now have direct access to reports on the portal, which enable them to easily benchmark their DevSecOps program results against others in their industry. Tapping into many years of data and learning, customers can see how their program metrics stack up and establish plans to address their risk.
  • Software Bill of Materials (SBOM): Security teams can now generate and export SBOMs on demand with an integrated representational state transfer (REST) API. This returns data for a specific application in CycloneDX SBOM format—a standard designed for use in application security contexts and supply chain component analysis. Additionally, data from the API can be mined and transformed outside of the Veracode Platform.
  • Intelligent Remediation: The Continuous Software Security Platform will leverage technology acquired from Jaroona to detect and remediate software vulnerabilities through machine learning. Jaroona, which was recognized by Gartner Research as a “Cool Vendor” in 2021, outperforms traditional approaches by 7x to 10x in terms of accuracy, false negatives, and false positive rates, and reduces the burden on technical resources.

According to Tabrez Naqvi, Director of Information Security and Risk at Cox Automotive, “The security of our products and services is very important to us, and Veracode helps us ensure that we never lose our customers' trust and confidence."

For more information on the Veracode Continuous Software Security Platform visit https://www.veracode.com/platform.

¹Gartner, Inc. ”Predicts 2022: Consolidated Security Platforms Are the Future” by Charlie Winckless, Joerg Fritsch, Peter Firstbrook, Neil MacDonald, Brian Lowans, 1 December 2021

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

About Veracode

Veracode is a leading AppSec partner for creating secure software, reducing the risk of security breach, and increasing security and development teams’ productivity. As a result, companies using Veracode can move their business, and the world, forward. With its combination of process automation, integrations, speed, and responsiveness, Veracode helps companies get accurate and reliable results to focus their efforts on fixing, not just finding, potential vulnerabilities.

Learn more at www.veracode.com, on the Veracode blog and on Twitter.

Copyright © 2022 Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

Contact information

For more information, please contact:
Katy Gwilliam
kgwilliam@veracode.com

About Business Wire

For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Access Advance and Alibaba Announce Alibaba's Expanded Participation in the VDP Pool2.7.2026 03:00:00 EEST | Press release

Access Advance LLC and Alibaba Group today announced that Alibaba has joined the Access Advance Video Distribution Patent Pool (VDP Pool) as a Licensee, securing a license to the pool's comprehensive coverage of HEVC, VVC, VP9, and AV1 codec technologies. The announcement marks a milestone in a multi-year collaboration between the two companies that spans the VVC Advance Patent Pool, where Alibaba participates as both a Licensor and Licensee, and the VDP Pool, where Alibaba joined as a Licensor in 2025. Alibaba's subsidiary Youku, one of China's leading streaming platforms, also joined the VDP Pool as a Licensee in 2025. Alibaba operates one of the world's most diverse video ecosystems, spanning a wide range of video-based services across e-commerce, entertainment, and digital media. As video has become central to how consumers shop, communicate, and access entertainment, the breadth of Alibaba's video operations reflects the kind of business model complexity the VDP Pool was designed

Vertex Announces US FDA Approval for Expanded Use of CASGEVY ® for the Treatment of People Ages 2 Years and Older With Sickle Cell Disease or Transfusion-Dependent Beta Thalassemia2.7.2026 02:58:00 EEST | Press release

Vertex Pharmaceuticals Incorporated (Nasdaq: VRTX) announced today that the U.S. Food and Drug Administration (FDA) has approved expanded use of CASGEVY® (exagamglogene autotemcel) for the treatment of people ages 2 years and older with either sickle cell disease (SCD) with recurrent vaso-occlusive crises (VOCs) or transfusion-dependent beta thalassemia (TDT). CASGEVY is the first approved genetic therapy indicated for children as young as 2 years for both SCD and TDT. “Just as we redefined what is possible in cystic fibrosis, our ambition is to transform the future for people living with sickle cell disease and transfusion-dependent beta thalassemia. The remarkable consistency of results across age groups reinforces the potential of CASGEVY to deliver durable, transformative benefits to those who have historically had limited options,” said Reshma Kewalramani, M.D., Chief Executive Officer and President, Vertex. “We’re deeply grateful to the patients, families and investigators who pa

Robinhood Chooses Morpho to Power New Earn Product1.7.2026 22:15:00 EEST | Press release

Morpho, the open blockchain-based credit network, today announced it will power Robinhood’s new Earn product, enabling Robinhood's millions of eligible users more options to earn yield onchain via a self-custody wallet, directly within the Robinhood app. The product will roll out progressively to Robinhood's US customer base over the coming weeks. The Robinhood Earn product aims to provide risk-adjusted yield on idle balances using USDG, a dollar-pegged stablecoin. Morpho serves as the underlying credit network, Steakhouse Financial curates the vault infrastructure supporting the product, and Robinhood Chain acts as the settlement layer. The product is delivered through a seamless experience in the Robinhood app. Morpho operates as an open network on the blockchain. Lenders and borrowers compete in real time, helping create more efficient markets and enabling financial products with better rates and terms for users. USDG supplied through Robinhood Earn is deposited into a Morpho Vault

Photonics Innovators Worldwide Invited to Compete for SPIE Prism Awards1.7.2026 21:33:00 EEST | Press release

SPIE, the international society of optics and photonics, invites the optics and photonics community to apply for this year’s SPIE Prism Awards, which recognize outstanding new products making waves on the market. Honorees will be announced at the highly-anticipated award ceremony on 3 February 2027 at SPIE Photonics West in San Francisco, California. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260701642411/en/ SPIE Prism Awards honor exceptional new products transforming optics and photonics technologies. These awards, dubbed the “Oscars of Photonics,” provide scientists and engineers in the optics and photonics industry the opportunity to showcase their contributions to the field. Finalists and winners receive extensive print, web, and onsite promotion at SPIE Photonics West, which draws more than 22,000 researchers and industry leaders every year. “The Prism Awards are recognized across the optics and photonics industry

Around 500 Attend Sino-European ESG Conference in Germany1.7.2026 19:00:00 EEST | Press release

Around 500 government officials, business executives and academics from China and Europe gathered in the western German city of Mainz on Friday for the Third Sino-European Corporate ESG Best Practice Conference to discuss how deeper cooperation can support sustainable economic growth. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260701255421/en/ Group photo of selected attendees at the conference. Hosted by the Chinese Consulate General in Frankfurt and jointly organized with authorities from Germany and China, the conference brought together participants from China, Germany, France, Italy, the Netherlands, Denmark, Luxembourg and several other countries under the theme "From Vision to Practice: Empowering Sustainable Growth Through Collaboration." Francesco La Camera, Director-General of the International Renewable Energy Agency (IRENA), delivered a video address. Speaking at the opening ceremony, Huang Yiyang, Chinese Co

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye