Presentation is loading. Please wait.

Presentation is loading. Please wait.

Checkmarx choose what developers use. About us o Founded in 2006 o Enterprise Grade Static and Interactive Application Security Testing Solutions o Hundreds.

Published byGodfrey Harris Modified over 8 years ago

Similar presentations

Presentation on theme: "Checkmarx choose what developers use. About us o Founded in 2006 o Enterprise Grade Static and Interactive Application Security Testing Solutions o Hundreds."— Presentation transcript:

1 Checkmarx choose what developers use

2 About us o Founded in 2006 o Enterprise Grade Static and Interactive Application Security Testing Solutions o Hundreds of Fortune 500 and SMB Customers o Fanatical support “Leader” in the 2014 AST Wave “Challenger “- 2014 AST Magic Quadrant & Only Vendor to score a perfect 5 in 2014 AST Critical Capabilities Report Fastest Growing Security Company in Israel, 2014 Tech Fast 500 Red Herring EMEA Top 100 Winners Awards

3 Challenge #1: Lack of secure coding knowledge DevelopersSecurity Manager

4 Solution #1: Scan & Fix- see where and how to fix the vulnerability detailed remediation advice where to fix vulnerable line of code IDE integration ? ?

5 Challenge #2: Outnumbered DevelopersSecurity Manager

6 Solution 2#: Automate the process Developers Source repository Fix suggestions Build management Auditor control panel Bug tracking SVN TFS Bamboo Web Service API CLI CxAudit Checkmarx web client TeamMentor Dashboards DAST Integrations Enforce your security policy in the SDLC

7 Challenge #3: Lack of budget

8 Solution #3: Fix as early as possible $80 $240 $960 $7600 Source: Ponemon Institute: National Institute of Standards and Technology Checkmarx solves your bug here Checkmarx solves your bug here Cost of a security bug at each development stage

9 Unique offering o Fully customizable- add and modify scan rules to your needs o Scan un-compiled/ un-built code o Accurate- low rate of FP/FN out of the box o Incremental scan o Best fix location- eliminate multiple vulnerabilities with a single fix o Scalable client- server architecture

10 Checkmarx SAST Architecture Virtual Compiler Code & Flow DB Security Query Beyond Security Detection Engine

11 Vulnerability Coverage- Compliance PCI DSS HIPAA SANS 25 OWASP TOP 10 & Mobile BSIMM CWE Mix and match existing presets or create your own policy

12 o Setup o Implementation o Find security vulnerabilities o Fix security vulnerabilities Why Checkmarx? Easy to UseReduce CostsFuture Proof o Accurate o Detect early o Fully automated o Speedy fix o Newest Languages supported o Extensive API o Expandable to your needs

13 Thank You!

Download ppt "Checkmarx choose what developers use. About us o Founded in 2006 o Enterprise Grade Static and Interactive Application Security Testing Solutions o Hundreds."

Similar presentations

McAfee One Time Password

McAfee One Time Password
DevOps and Security: It’s Happening. Right Now.

DevOps and Security: It’s Happening. Right Now.
January 2008. BugSec Products Challenges Data security aspects become a critical elements in modern companies proceeding. Many organizations are required.

January BugSec Products Challenges Data security aspects become a critical elements in modern companies proceeding. Many organizations are required.
© 2012 IBM Corporation 1 IBM Cognos 10 family Analytics in the hands of everyone Address all your analytic needs Report, Analyze, Model, Plan and Collaborate.

© 2012 IBM Corporation 1 IBM Cognos 10 family Analytics in the hands of everyone Address all your analytic needs Report, Analyze, Model, Plan and Collaborate.
Building an Effective SDLC Program: Case Study Guy Bejerano, CSO, LivePerson Ofer Maor, CTO, Seeker Security.

Building an Effective SDLC Program: Case Study Guy Bejerano, CSO, LivePerson Ofer Maor, CTO, Seeker Security.
Using the Cloud and SaaS to Secure the SDLC. About Me Andy Earle HP/Fortify – Security Solutions Architect / Presales Engineer – Sell, deliver solutions.

Using the Cloud and SaaS to Secure the SDLC. About Me Andy Earle HP/Fortify – Security Solutions Architect / Presales Engineer – Sell, deliver solutions.
Automation Domination Application Security with Continuous Integration (CI)

Automation Domination Application Security with Continuous Integration (CI)
Adding scalability to legacy PHP web applications Overview Mario A. Valdez-Ramirez.

Adding scalability to legacy PHP web applications Overview Mario A. Valdez-Ramirez.
INC 500 Awards in 2007, 2008, and 2009 as one of the fastest growing private companies in the US INC 5000 Awards in 2010, 2011 and 2012 as one of the fastest.

INC 500 Awards in 2007, 2008, and 2009 as one of the fastest growing private companies in the US INC 5000 Awards in 2010, 2011 and 2012 as one of the fastest.
Infor Confidential Template V.24, 1-Mar-2007 Infor EAM Business Edition Easy as 1,2,3… Marcel van Wingerden - Infor EAM Business Solutions Consultant.

Infor Confidential Template V.24, 1-Mar-2007 Infor EAM Business Edition Easy as 1,2,3… Marcel van Wingerden - Infor EAM Business Solutions Consultant.
Tableau Visual Intelligence Platform

Tableau Visual Intelligence Platform
Warning Ahead: Security Storms are Brewing in Your JavaScript Yuval Idan, Technical Director, APAC Checkmarx

Warning Ahead: Security Storms are Brewing in Your JavaScript Yuval Idan, Technical Director, APAC Checkmarx
Driving Productivity with Microsoft Dynamics CRM Presenter Name Presenter Title Presenter Date.

Driving Productivity with Microsoft Dynamics CRM Presenter Name Presenter Title Presenter Date.
Static Code Analysis and Governance Effectively Using Source Code Scanners.

Static Code Analysis and Governance Effectively Using Source Code Scanners.
Tableau Visual Intelligence Platform

Tableau Visual Intelligence Platform
Click to add text © 2010 IBM Corporation OpenPages Solution Overview Mark Dinning Principal Solutions Consultant.

Click to add text © 2010 IBM Corporation OpenPages Solution Overview Mark Dinning Principal Solutions Consultant.
The big Data security Analytics Era Is Here Reporter : Ximeng Liu Supervisor: Rongxing Lu School of EEE, NTU

The big Data security Analytics Era Is Here Reporter : Ximeng Liu Supervisor: Rongxing Lu School of EEE, NTU
Load testing… Everything you want to know BEFORE you execute. Brent Bonnington Indiana Health Information Exchange I.H.I.E.

Load testing… Everything you want to know BEFORE you execute. Brent Bonnington Indiana Health Information Exchange I.H.I.E.
A global leader in data visualization Serving Fortune 500 companies and thousands of developers and IT professionals worldwide.

A global leader in data visualization Serving Fortune 500 companies and thousands of developers and IT professionals worldwide.
Motorola Mobility Services Platform

Motorola Mobility Services Platform

Similar presentations

Ads by Google