Tech Library is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

TECH DIGITAL RESOURCE LIBRARY

Checkmarx

Checkmarx is constantly pushing the boundaries of Application Security Testing to make security seamless and simple for the world's developers while giving CISOs the confidence and control they need. As the AppSec testing leader, we provide the industry's most comprehensive solutions, giving development and security teams unparalleled accuracy, coverage, visibility, and guidance to reduce risk across all components of modern software — including proprietary code, open source, APIs, and infrastructure as code. Over 1,600 customers, including half of the Fortune 50, trust our security technology, expert research, and global services to securely optimize development at speed and scale. For more information, visit our website, check out our blog, or follow us on LinkedIn.

Our Website: http://www.checkmarx.com/


Latest Content From Checkmarx

E-Book: The Many Facets of Modern Application Development

by CheckmarxOct 17, 2022

Explore the many facets of Modern Application Development (MAD). We'll look at:

  • What MAD is, and what makes it so fundamentally important today
  • Organizational culture and mindset shifts needed to make MAD work
  • New challenges and security risks that accompany a MAD approach


E-Book: The Many Risks of Modern Application Development

by CheckmarxOct 17, 2022

The Many Risk of Modern Application Development (MAD)

Learn more from this deep dive into the new security risks that come along with the MAD methodology.

  • Open source, including unknown origins and licensing issues
  • Microservices, including complexity and faulty security measures
  • Containers, including low visibility and sensitive data exposure
  • IaC, including steep learning curves and configuration drift
  • APIs, including redundancies, monitoring challenges, and training


E-Book: AppSec Considerations For Modern Application Development

by CheckmarxOct 17, 2022

AppSec Considerations For Modern Application Development (MAD)

What are the Application Security considerations for MAD that organizations need to be mindful of and learn about best practices to managing:

  • Applicative code risks
  • Container code risks
  • Infrastructure as code risks
  • Developer AppSec awareness and training
  • AST challenges in MAD


Webcast: From Reactive to Proactive, Changing the Culture on API Security

by CheckmarxAug 24, 2022

Statistics demonstrate that 95% of companies have experienced attacks targeting their usage of APIs in their modern applications, and this is most likely a concern for you. And yes, it’s likely keeping you up at night. When using other people’s code–via APIs–how do you make sure you’re not using, directly or indirectly, vulnerable APIs?

There are good security approaches and best practices that start at the API code level. But the bigger question is, “do your developers know what those practices are?” Security and threat intelligence must play a role within each part of the API lifecycle to stay ahead of the curve.


Webcast: From Reactive to Proactive, Changing the Culture on API Security

by CheckmarxAug 24, 2022

Statistics demonstrate that 95% of companies have experienced attacks targeting their usage of APIs in their modern applications, and this is most likely a concern for you. And yes, it’s likely keeping you up at night. When using other people’s code–via APIs–how do you make sure you’re not using, directly or indirectly, vulnerable APIs?

There are good security approaches and best practices that start at the API code level. But the bigger question is, “do your developers know what those practices are?” Security and threat intelligence must play a role within each part of the API lifecycle to stay ahead of the curve.


E-Book: 5 Reasons to Prioritize Software Security

by CheckmarxOct 06, 2021

The pace of digital transformation has reached a speed never before seen, forcing organizations into an "adapt or die" situation. Software is at the center of it all, placing increased pressure on DevOps leaders, AppSec managers, and developers to develop and deploy software faster to keep their organizations digitally competitive and relevant.

However, this need for speed comes at a price, as security often falls by the wayside. As the proliferation of software continues, bringing with it an ever-expanding attack surface that's ripe for targeting by malicious actors, securing software must be a priority above all else.


E-Book: An Integrated Approach to Embedding Security into DevOps

by CheckmarxOct 06, 2021

When software is everywhere, everything becomes an attack surface.

The root cause of many successful cyberattacks lies primarily in vulnerable software itself. The real question that needs to be asked is, "Can the industry do a better job of writing more-secure code, making software applications nearly impenetrable to cyberattacks?" Here at Checkmarx we believe the answer is yes. Checkmarx is dedicated to building software security solutions that address the root cause of nearly every successful cyberattack by finding, classifying, reporting, and demonstrating where and how to fix vulnerabilities in software.


Whitepaper: The Application Security Testing Imperative

by CheckmarxOct 06, 2021

This paper provides practical guidance for CISOs, CIOs, and DevOps leaders for designing an effective application security program to secure modern application development via an integrated approach. The paper also aims to equip application security practitioners with research data to support building the business case for AST investments.

In this White Paper, readers will learn:

  • The Implications of Deadline-driven Decisions
  • The Open Source Software Dilemma
  • Demystifying DevSecOps
  • Critical Success Factors for an Effective AST Program
  • Requirements for an Integrated Approach to AST
  • The Bigger Truth


Whitepaper: Checkmarx AppSec Awareness Solution (Codebashing)

by CheckmarxOct 06, 2021

Raising AppSec awareness shouldn't be thought of as a distinct step in the SDLC. It's all about inserting awareness into every step of the SDLC in a manner that actually fuels faster releases. CxCodebashing was designed specifically for this reason. Through the use of open communication, ongoing engagement, gamified training, and on-the-spot remediation support, security managers can cultivate a culture that empowers developers to think and act securely in their day-to-day work.


Infographic: 2021 Global DevOps Secure Coding Education Survey

by CheckmarxOct 06, 2021

To understand the challenges today's developers are facing, we commissioned our 2021 Global DevOps Secure Coding Education Survey. We engaged a third-party research firm to interview over 800 developers around the world to understand their thoughts and views on the security education techniques being used both now and in the future.

Survey report highlights include:

  • Less than 3 in 10 Global Developers are completely confident that their code is secure.
  • Less than 25% of Global Developers feel that the secure coding education they're currently receiving is adequate.
  • 81% of Global Developers know that creating secure code is a shared responsibility.
  • Nearly two-thirds of Global Developers want interactive secure coding education
Take a look at the infographic report summary and you'll see why CxCodebashing, our snackable, gamified, just-in-time AppSec training platform, along with CxSAST and the rest of the integrated Checkmarx security solutions are the way forward to seamlessly create groundbreaking secure code for an increasingly complex world.