/apr 23, 2019

Veracode Is Named a Leader for Sixth Time in Gartner Magic Quadrant for Application Security Testing

By Pete Daly

Veracode has been named a Leader in the Gartner Inc. 2019 Magic Quadrant for Application Security Testing, marking our sixth year as a Leader.

We’re excited to again be recognized as a Leader in the industry. We believe Gartner continues to place Veracode in this position because of our vision in application security testing and our ability to cover the entire software development lifecycle (SDLC), from code to deployment, with services and support that help development teams with challenges, and a new analytics engine that shows performance in real-time.

It has been an incredible start to the year – customers are scanning more applications than ever before with Veracode, and are achieving unprecedented results with their AppSec programs. We’re dedicated to helping companies achieve a frictionless SDLC in which security and development teams work in collaboration without slowing down business outcomes.

The AppSec market is growing at a rapid pace, and far more quickly than other security sectors.

The report’s authors, Ayal Tirosh, Mark Horvath, and Dionisio Zumerle, state in the report: "Through 2022, the AST market is projected to have a 10% compound annual growth rate (CAGR). This continues to be a fast-growing segment in the information security space, which itself is expected to grow at at five-year CAGR of 9%. The AST market size is estimated to reach $1.15 billion by the end of 2019."1

It’s not difficult to understand why – 111 billion lines of new code are written each year, a figure that will only go up because software powers the world around us. And that software is constantly being updated, and must be kept secure to prevent vulnerabilities from being exploited by both sophisticated and simplistic attacks. A new layer of complexity arises when you take into account compliance with privacy laws such as GDPR and PCI that seek to ensure companies have policies and practices in place to protect data.

Companies across industries are changing how they create and use software, seeking a competitive edge by taking modern approaches such as DevSecOps, Agile, microservices, cloud native apps, and APIs. However, these changes mean that organizations face even greater challenges to secure software that is being created rapidly and in new environments.

Veracode has redoubled its efforts to bring innovative products to customers to help them not only meet the challenges they encounter, but also to make secure software one of the reasons they are emboldened to change the world. Our solutions are designed for developers to excel at their jobs while coding securely.

We recently enhanced our platform with accelerated dynamic application security testing (DAST) using a new scalable architectural approach that allows for seamless deployment. With Veracode DAST, customers can easily configure to scan internal applications in the cloud, within containers, on a virtual machine or bare metal; customize scans for organizational compliance; and scan multiple applications using a single endpoint.

In addition, our focus on developer needs remains a core value at Veracode:

  • Veracode’s Software Composition Analysis (SCA) offering currently covers more than 1.9 million different and unique open source libraries, and almost 17.3 million different versions of those libraries.
  • Veracode Static Analysis IDE Scan finds security defects in your code in seconds so you can fix findings directly in the IDE.
  • We support more than 100 languages and frameworks, including support for Go, Scala, and Python.

The thinking around software security is changing – is your company changing with it?

To download the 2019 Gartner Magic Quadrant for Application Security Testing, please visit here.

1. Gartner, Inc.  “Magic Quadrant for Application Security Testing” by Ayal Tirosh, Mark Horvath, and Dionisio Zumerle, April 18, 2019.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

Related Posts

By Pete Daly