4.8.08 Veracode Named As a 2008 Readers’ Choice Award Winner

News & Events

Veracode Named As a 2008 Readers’ Choice Award Winner by Information Security Magazine and SearchSecurity.Com

Veracode SecurityReview Takes Silver in Emerging Vendors Category

Burlington, Mass., April 8 2008 – Veracode Inc., the leading provider of on-demand application security testing solutions, has been named one of three emerging vendors in the 2008 Reader’s Choice Awards presented by the editors of Information Security™ Magazine and SearchSecurity.com™.

As noted on SearchSecurity.com, vulnerable applications are a prime--if not the prime--attack focus for getting to customer information, intellectual property and sensitive corporate data. Application development is complicated by outsourcing, which cuts costs and delivery time, but greatly increases risk. SecurityReview services earned the silver award because its unique approach to application security as a service (SaaS) is tailor-made for this new development environment. Before the service solution, companies had two options. They could buy still-maturing application security analysis tools or pay for very expensive consultant code/application review.

Veracode combines strong technology and an attractive model, according to SearchSecurity.com. It scours compiled code, analyzing binaries for vulnerabilities that can be exploited. This means companies can secure their applications without exposing source code to outsiders, a particular concern in an age of distributed, outsourced development. The SaaS approach is an attractive alternative to pricey consulting and allows customers to have applications, outsourced pieces of applications, or even applications they are considering buying analyzed for security flaws.

“It is an honor to be named as one of the ‘2008 Readers’ Choice Award’ recipients, and it speaks to the market value and growth potential of our binary service-based testing approach,” said Matt Moynahan, CEO of Veracode. “By assessing the final application code, Veracode ensures that all threats are detected, including vulnerabilities and malicious code, thereby providing the most complete security audit across internally developed applications, third-party commercial off-the-shelf software and offshore code.”

The 2008 Readers’ Choice Awards reflect extensive, in-depth discussions and interviews between TechTarget® editors, security technology experts, and the TechTarget User Advisory board -- which is comprised of chief security officers from major US corporations -- to define the appropriate categories and criteria to encompass the most critical security technologies and functionality. TechTarget then asks more than 1,600 information security executives and managers to assess and rate products they deploy within their organizations from a listing of more than 360 products. Based on their responses the judging panel selects winners within the product categories.

About Veracode

Veracode is the leading provider of on-demand application security testing solutions. Created by a world-class team of application security experts, the company delivers services to identify software flaws introduced through coding errors or malicious intent. Veracode's core service, SecurityReview uses patented binary code analysis and dynamic web analysis that is uniquely able to inspect entire application inventories, including components, and does not require companies to expose their valuable source code. Enterprises can now protect their intellectual property while preventing attacks allowed by vulnerabilities in applications.

As the most accurate and comprehensive solution, Veracode makes it simple and cost-effective to implement application security best practices and reduce operational costs related to manual reviews. Whether a company is developing applications internally, purchasing software or integrating code from partners, Veracode's SecurityReview provides insight to the security level of your applications. Outsourcing code analysis to Veracode is the easiest way to secure your software. With a pragmatic approach to application security, Veracode helps you fix what matters most to your business.
Based in Burlington, Mass., Veracode is backed by .406 Ventures, Atlas Venture and Polaris Venture Partners. www.veracode.com

About Information Security

Information Security is the enterprise security and risk managers' leading source of critical, objective information on strategic and practical security issues. Information Security's team of veteran security journalists and experts break down the security problems challenging enterprises and provide practical resolutions. Its in-depth, comprehensive reports and analyses provide security managers--department managers to CXOs -- with the tools, knowledge and information they need to make informed decisions about how to safeguard their enterprises, comply with regulations and standards, and reduce risk. The publication’s analysis of technology and products provide a guide for budgeting and purchasing decisions and trends reports, case studies and industry-leading exposes offers security managers insight into how their peers are addressing and solving key security issues. Information Security is an indispensable guide for any security manager and executive charged with protecting information assets and reducing risk.

About SearchSecurity.com

More then 400,000 IT security pros turn to SearchSecurity.com for the information they require to keep their corporate data and assets secure. We're the only online information resource that provides immediate access to breaking industry news, virus alerts, webcasts, white papers, security schools, a selection of highly focused security e-newsletters and more - all at no cost. Nowhere else will you find such a highly targeted combination of resources specifically dedicated to the success of today's IT-security professional.

Headquartered in Needham, MA, SearchSecurity.com is part of the TechTarget® network (www.techtarget.com). TechTarget publishes integrated media that enable information-technology (IT) marketers to reach targeted communities of IT professionals and executives in all phases of the technology decision-making and purchase process.

(C) 2008 TechTarget and the TechTarget logo are registered trademarks, and Information Security and SearchSecurity.com are trademarks of TechTarget, Inc. All other trademarks are the property of their respective owners.

Contacts:
Rachel Labas
Lois Paul & Partners
781.782.5787
This e-mail address is being protected from spam bots, you need JavaScript enabled to view it

PRESS RELEASE ARCHIVE

Site Map | Responsible Disclosure Policy | Privacy Policy | Contact Us

Veracode offers the first on-demand, application security solution that provides automated application security testing through an easy-to-use, software-as-a-service delivery model. By providing code analysis and web application security testing as a service, organizations have no software or hardware to purchase, install, maintain or upgrade.

With Veracode, enterprises can use application security assessment to achieve code security and implement testing into their secure software development life cycle at key development milestones. For enterprises that want to improve SDLC security without sacrificing profitability or competitiveness, Veracode offers SecurityReview®. SecurityReview combines static, dynamic, and manual testing capabilities and scans code after it has been compiled—at the binary level or "byte" code level rather than the source level, as other solutions do. This offers two distinct advantages: One, binary code analysis is more efficient, so vulnerabilities can be found more quickly and with fewer false positives. And two, binary code analysis is the most complete application security testing method because all code can be scanned regardless of origin.

Information on other topics related to application security assurance, SOA security, dynamic application security testing, IT risk management, static code analysis, and software security vulnerability are also available on this site.