Data
Theorem, Inc., a leading provider of modern
application security, today announced that the Gartner Hype Cycle for
Application Security, 2020 report
has identified DevSecOps as the only application security product category with
a benefit rating of "transformational," a rating that is defined as enabling
"new ways of doing business across industries that will result in major shifts
in industry dynamics." The comprehensive report defines and tracks adoption of innovations in the
application security space that help enable security and risk management (SRM) leaders
to protect against application-level attacks and manage application risk. The
report also discusses the business impact and benefits
customers could likely gain from these innovations.
According to Gartner, "DevSecOps is the
integration of security and compliance testing into emerging agile IT and
DevOps development pipelines as seamlessly and transparently as possible,
ideally without reducing the agility or speed of developers or requiring them
to leave their development environment. Ideally, offerings provide security
protection at runtime as well...Originally proposed by Gartner in 2012, adoption
of DevSecOps takes time, but interest is high."
Data Theorem's broad AppSec portfolio protects
organizations from data breaches with application security testing
and protection for modern web frameworks, API-driven microservices and cloud
resources. Its solutions are powered by its award-winning Analyzer Engine,
which leverages a new type of dynamic and runtime analysis that is fully
integrated into the CI/CD process, and enables organizations to conduct
continuous, automated security inspection and remediation. Data Theorem's
AppSec portfolio secures mobile apps, cloud-driven APIs, and modern web
applications.
For
more information, see a copy of the Hype Cycle for Application Security, 2020
report at https://www.datatheorem.com/resources/gartner-hype-cycle-2020.
According
to Gartner, "Leading security vendors are evolving their solutions to become
more programmable, laying the foundation for higher levels of automation and
orchestration from testing into deployment. DevOps (often combined with
container/Kubernetes adoption and programmatic cloud infrastructure) is being
driven by developers in the name of speed and agility. Security must be a part
of this shift, but in a way that respects the collaborative nature of DevOps.
Security cannot be siloed, which forces developers outside of their toolchain
to perform security testing."
Data
Theorem was cited in four AppSec product categories in the Hype Cycle for
Application Security, 2020 report. In addition to being listed as a Sample
Vendor in the DevSecOps product category, the company was also listed as a
Sample Vendor in the API Security Testing and Discovery, API Threat Protection,
and Serverless Function Security product categories. The API Security Testing and Discovery and API Threat Protection
product categories have a benefit rating of "high," a rating defined as
enabling "new ways of performing horizontal or vertical processes that will
result in significantly increased revenue or cost savings for an enterprise."
"We believe being recognized as a Sample Vendor
by Gartner in four AppSec product categories, particularly in DevSecOps which
is rated transformational, validates the differentiated real-world ROI (return
on investment) Data Theorem delivers protecting organizations' API and DevOps
environments," said
Doug Dooley, Data Theorem COO. "With the rise in modern web frameworks,
API-driven microservices and serverless cloud functions, companies are
challenged with keeping tabs of the APIs being used within their organizations,
let alone securing them. Data Theorem uniquely addresses these AppSec security
issues by delivering continuous, fully automated security analysis and
remediation for API, mobile, web, and cloud environments."