«
»

Security Innovation Adds Checkmarx Next Generation Static Source Code Analysis to its Suite of Software Security Products

Highly accurate Checkmarx static source code analysis gives developers software security and reliability for only $995 per desktop

We invented Checkmarx static source code security analysis software suite because the current products are not meeting the needs of today’s development environments. Yesterday’s static analysis tools are difficult to use, overpriced, and inaccurate
Checkmarx CxSuite was designed from the ground up to be incredibly accurate so that developers can focus on real problems. We are very pleased to be working with Security Innovation to further bring Checkmarx products to the market as they are a widely recognized authority on secure software development.
Organizations of all sizes need guidance, training and tools to address the epidemic of poorly-written and insecure software. Security Innovation already offers secure software guidance and computer-based training to direct development and information security teams through all of the steps of defining, designing, coding, testing and deploying secure software applications
With the addition of Checkmarx world-class static source code analysis, we can offer an affordable, comprehensive single-vendor solution for companies that want to improve their software security position in all three critical areas of operation – people, process, and technology.

Wilmington, MA – November 24, 2008 – Security Innovation, the authority on software security and leading provider of vulnerability assessment, training and software risk products and services, today announced that it is offering the Checkmarx CxSuiteTM components CxDeveloperTM, CxAuditTM, and CxViewerTM static source code analysis tools as part of its comprehensive solution for software security. By including the CxSuite with the company’s products and services, Security Innovation can help organization’s become more self-sufficient around tool usage in all aspects of software application design, development, and management.

Security Innovation customers now have access to best-of-breed static analysis tools to uncover security vulnerabilities in code developed in-house or via development partners. Developers can use Checkmarx to analyze their source code for security vulnerabilities right from their desktops with seamless IDE integration or with the stand-alone CxDeveloper user interface for a fraction of the price of competitive products. Organizations can centralize the use of Checkmarx to verify corporate security coding standards and guidelines, and CxAudit’s CxQL custom query language allows users to drive the tool to near-zero false positives – an industry first.

“We invented Checkmarx static source code security analysis software suite because the current products are not meeting the needs of today’s development environments. Yesterday’s static analysis tools are difficult to use, overpriced, and inaccurate,” said Emmanuel Benzaquen CEO of Checkmarx Ltd. He continued, “Checkmarx CxSuite was designed from the ground up to be incredibly accurate so that developers can focus on real problems. We are very pleased to be working with Security Innovation to further bring Checkmarx products to the market as they are a widely recognized authority on secure software development.”

Checkmarx static analysis allows organizations to address the challenge of securing their code efficiently with seamless integration into development environments. Using pre-defined checklists for common security issues, such as regulatory compliance requirements (OWASP, SANS, and PCI-DSS) makes it very easy for organizations to check their code in a logical and prioritized manner. Checkmarx allows teams to perform automatic code reviews and identify, track, and fix technical and logical security flaws at the source. CxDeveloper and CxAudit support security code analysis in both the Microsoft .NET and J2EE environments and support multiple languages beyond those two frameworks, such as C/C and a unique support for Salesforce APEX. Further, the tools’ flexible architecture allows for the addition of new language support in a matter of weeks.

“Organizations of all sizes need guidance, training and tools to address the epidemic of poorly-written and insecure software. Security Innovation already offers secure software guidance and computer-based training to direct development and information security teams through all of the steps of defining, designing, coding, testing and deploying secure software applications,” said Nick Allen, Vice President of Marketing at Security Innovation. He continued, “With the addition of Checkmarx world-class static source code analysis, we can offer an affordable, comprehensive single-vendor solution for companies that want to improve their software security position in all three critical areas of operation – people, process, and technology.”

For more information about Checkmarx pricing and availability, please visit: http://www.securityinnovation.com/products/checkmarx, or send an email to: checkmarx@securityinnovation.com.

About Security Innovation
Security Innovation is a leading independent provider of secure software lifecycle management solutions to Fortune 500 companies. Global technology vendors and enterprise IT organizations such as Microsoft, IBM, FedEx, ING, Symantec, Visa, Coca-Cola and GE rely on our expertise and suite of tools to understand the security risks in their software systems and facilitate the software and process change necessary to mitigate them. The company is headquartered in Wilmington, Mass., with offices in Amsterdam, The Netherlands and Seattle, Wash. For more information about Security Innovation, please visit www.securityinnovation.com or call 1.978.694.1008 (USA) 31 (0) 20 301 9150 (non-U.S).

About Checkmarx
Checkmarx’s vision is to provide a comprehensive solution for automated security code review. The company pioneered the concept of a query-language-based solution for identifying technical and logical vulnerabilities in the code with virtually zero false-positives. Checkmarx’s technology is used by developers and R&D departments in large and medium size companies worldwide. Checkmarx is the leading provider of the new generation security software source code analysis solutions, offering a virtually zero false-positive technology combined with a unique business logic vulnerability identification method based on its proprietary query language and search engine. The Checkmarx CxSuite facilitates the enforcement of regulatory compliance requirements, including internal company policies throughout the Software Development Life Cycle. Checkmarx has developed a growing network of strategic partnerships with worldwide industry leaders understanding the value of providing integrated, comprehensive solutions and expert support to protect companies from the threats posed by security flaws in software applications. Checkmarx products are deployed with Fortune 1000 and mid-size companies within the Defense, Financial, Telecommunication, Government, and Military industries as well as to some of the largest Independent Software Vendors. Read more about Checkmarx on www.checkmarx.com

See Also:

[Via Computer]

This entry was posted on Sunday, November 23rd, 2008 at 4:45 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. Responses are currently closed, but you can trackback from your own site.

Comments are closed.