/apr 23, 2019

Veracode Recognized as a Leader in Sixth Consecutive Gartner Magic Quadrant for Application Security Testing

Veracode positioning based on completeness of vision and ability to execute

BURLINGTON, Mass. – April 23, 2019 – Veracode, Inc., a leading provider in application security testing (AST), today announced it has been positioned in the Leaders quadrant for the sixth consecutive time in the Gartner Inc. 2019 Magic Quadrant for Application Security Testing1. According to Gartner, Veracode is being recognized for the company’s completeness of vision and ability to execute in the application security testing market.

In Gartner Inc.’s 2019 “Magic Quadrant for Application Security Testing1,” Ayal Tirosh, Dionisio Zumerle, and Mark Horvath state that, “Through 2022, the AST market is projected to have a 10% compound annual growth rate (CAGR). This continues to be a fast-growing segment in the information security space, which itself is expected to grow at a five-year CAGR of 9%. The AST market size is estimated to reach $1.15 billion by the end of 2019.1”

“Organizations today are building, reusing and adapting software applications to push their company’s mission forward, and success depends on software that is innovative, reliable and secure,” said Sam King, Chief Executive Officer of Veracode. “We envision a world in which the software fueling our economic growth and solving some of society’s greatest challenges is secure from the start. We believe that our position as a Leader in the Magic Quadrant for Application Security Testing six consecutive times is a testament to our ability to provide comprehensive and accurate view of software security defects to developers and security teams across the DevSecOps spectrum. Veracode enables customers to boldly innovate, explore, compete, and change the world.”

The Veracode Application Security platform offers speed, scale, and services and consultation to help companies manage security risks across their entire application portfolio. Veracode’s cloud-based platform helps security teams and software developers find and fix security-related defects at all points in the software development lifecycle, remediating flaws in code before they can be exploited. Our ongoing focus on development teams is evidenced by supporting more than 100 languages and frameworks, integrations with popular development tools and our ability to ensure security policies are enforced consistently across the enterprise. Veracode recently enhanced its platform with accelerated dynamic application security testing (DAST) using a new scalable architectural approach that allows for seamless deployment, while our Software Composition Analysis (SCA) offering currently covers more than 1.5 million different and unique open source libraries, and almost 14 million different versions of those libraries.

Veracode’s automated security tools deliver fast, repeatable and actionable results, without the noise of false positives. Our solutions integrate into existing development toolchains enabling customers to quickly identify and remediate security flaws early in their processes, known as DevSecOps. Organizations that embrace DevSecOps embed security checks into their software development lifecycle, folding in continuous improvement of the application's security posture alongside feature improvement. Veracode’s State of Software Security Report Volume 9 found that customers with DevSecOps processes fix security defects 11.5 times faster than the typical organization.

To view a complimentary copy of the full report, visit here.

To learn more about Veracode’s Application Security Platform, please visit: https://www.veracode.com/products

1. Gartner, Inc.  “Magic Quadrant for Application Security Testing” by Ayal Tirosh, Mark Horvath, and Dionisio Zumerle, April 18, 2019.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About Veracode
With its combination of automation, process, and speed, Veracode becomes a seamless part of the software lifecycle, eliminating the friction that arises when security is detached from the development and deployment process. As a result, enterprises are able to fully realize the advantages of DevOps environments while ensuring secure code is synonymous with high-quality code. 

Veracode serves more than 2,000 customers worldwide across a wide range of industries. The Veracode Platform has assessed more than 8 trillion lines of code and helped companies fix more than 36 million security flaws.

Learn more at www.veracode.com, on the Veracode blog and on Twitter.

Copyright © 2019 Veracode, Inc. All rights reserved. All other brand names, product names, or trademarks belong to their respective holders.

Media Contact:
Pete Daly
[email protected]
Phone: 339-234-0178

About Veracode

Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-assisted remediation engine, the Veracode platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Thousands of the world’s leading development and security teams use Veracode every second of every day to get accurate, actionable visibility of exploitable risk, achieve real-time vulnerability remediation, and reduce their security debt at scale. Veracode is a multi-award-winning company offering capabilities to secure the entire software development life cycle, including Veracode Fix, Static Analysis, Dynamic Analysis, Software Composition Analysis, Container Security, Application Security Posture Management, and Penetration Testing.

Learn more at www.veracode.com, on the Veracode blog, and on LinkedIn and Twitter.

Copyright © 2024 Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.


Press and Media Contacts

Katy Gwilliam,
Head of Global Communications, Veracode
[email protected]
Related Links


  • resource image


  • resource image


  • resource image


  • resource image


  • resource image


  • resource image


  • resource image

    and Tricks

  • resource image

    & Podcasts

  • resource image

    and eBooks