Organizations Accelerate Application Risk Management Through Effective Prioritization and Security Debt Reduction
Burlington, Mass. - April 1, 2024 - Veracode, a global leader in application risk management, today announced the acquisition of Longbow Security, a pioneer in security risk management for cloud-native environments. The acquisition marks the next exciting phase of Veracode, underscoring the company’s commitment to help organizations effectively manage and reduce application risk across the growing attack surface.
The integration of Longbow into Veracode enables security teams to discover cloud and application assets quickly and easily assess their threat exposure using automated issue investigation and root cause analysis. Longbow provides a centralized view of risk for cloud assets and applications, thereby simplifying complex workflows, enabling faster and more effective remediation, and improving overall security posture. The result is reduced risk and fewer vulnerabilities in applications and cloud infrastructures.
Increased adoption of cloud infrastructure, combined with developers taking on more responsibility for the creation, deployment, and security of software, has introduced operational complexity. Organizations now require a deeper understanding of their risk profile within changing environments and a continuous security feedback loop throughout the software development life cycle.
“Security teams are drowning in alerts that lack sufficient detail on the level of business risk, degree of exploitability of a flaw, and specific code-level insight to keep pace with remediation requirements. As a result, risk continues to accumulate,” said Brian Roche, Chief Product Officer at Veracode. “With the combination of Veracode and Longbow, teams can get a comprehensive view of their risk, automate prioritization of what matters most, and, with Veracode Fix, automate remediation of code security flaws.”
Longbow and Veracode Simplify Cloud Application Security for Overloaded Teams
With 71 percent of organizations shouldering the burden of “security debt” (flaws in applications that remain unfixed for one year), teams must act quickly to reduce their threat exposure. Yet, sufficient visibility and alert fatigue continue to plague cloud and application security professionals today. With Longbow, Veracode customers can address these challenges in four ways:
- Unified visibility of risk across applications, code, and cloud. This gives teams insight to tackle significant issues that matter most to the business.
- Orchestrated remediation from code to cloud, enabling teams to prioritize and remediate with Veracode’s AI-driven fix capabilities.
- Actionable insights with ‘Best Next Action’ advice, so customers can conduct a root cause analysis and pinpoint the best path to remediation.
- Continuous monitoring and assessment via real-time vulnerability discovery across application portfolios and runtime environments, meaning customers know exactly what is running and where.
Derek Maki, Co-Founder & Chief Product Officer at Longbow said, “We founded Longbow with a mission to simplify an increasingly complex application security risk management process and help organizations reduce risk at scale. By joining forces with Veracode, our combined solutions provide unmatched visibility, automation, and remediation capability for security and engineering teams. We are excited to take cloud-native application security to the next level.”
“This is the perfect fit for Longbow,” said Dayne Myers, Co-founder & Chief Executive Officer of Longbow. “After careful consideration, we believe that our technology and team align seamlessly with Veracode's vision, making this the best choice for Longbow’s future."
“We’re thrilled to welcome Longbow to Veracode and expand our platform capabilities with industry-leading application security posture management for today’s enterprise requirements,” closed Sam King, Chief Executive Officer at Veracode. “The integration of our solutions provides organizations with a holistic application risk management platform that spans code to cloud. Veracode combined with Longbow advances the field of application security and enables customers to secure their increasingly complex application landscape more efficiently.”
Longbow is available immediately. To learn more about the platform, visit the Longbow website. Read the blog for information on the acquisition.
About Veracode
Veracode is a global leader in Application Risk Management for the AI era. Powered by trillions of lines of code scans and a proprietary AI-assisted remediation engine, the Veracode platform is trusted by organizations worldwide to build and maintain secure software from code creation to cloud deployment. Thousands of the world’s leading development and security teams use Veracode every second of every day to get accurate, actionable visibility of exploitable risk, achieve real-time vulnerability remediation, and reduce their security debt at scale. Veracode is a multi-award-winning company offering capabilities to secure the entire software development life cycle, including Veracode Fix, Static Analysis, Dynamic Analysis, Software Composition Analysis, Container Security, Application Security Posture Management, and Penetration Testing.
Learn more at www.veracode.com, on the Veracode blog, and on LinkedIn and Twitter.
Copyright © 2024 Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.
Press and Media Contacts
Veracode:
Katy Gwilliam,
Head of Global Communications, Veracode
kgwilliam@veracode.com
+44.7584.341.110
Related Links
veracode.com