OpenText has officially announced a strategic partnership with Secure Code Warrior to integrate the latter’s dynamic learning platform into the OpenText Fortify application security product suite.
According to certain reports, the stated partnership will make it possible for developers to improve their secure coding skills through real-time training, all for the purpose of reducing risks, quickly identifying and resolving vulnerabilities, as well building greater trust with customers.
To understand the significance of such a development, we must take into account OpenText Cybersecurity’s 2024 Global Ransomware Survey, which revealed how nearly 62% of organizations that experienced a ransomware attack in the past year traced the attack back to a software supply chain partner.
Not just that, Cybersecurity and Infrastructure Security Agency (CISA) also relayed, during the month of April, the importance of secure development with its 2024 Secure by Design guide, which helps organizations evaluate their software suppliers’ cybersecurity practices.
In response, the combination of Fortify and Secure Code Warrior delivers a mechanism to support the ongoing DevSecOps and Secure-by-Design efforts. It will do using the ability to embed real-time security and risk management training within the coding process. Such a setup, on its part, empowers development teams to move quickly without compromising security. This, in turn, will minimize the risk of introducing vulnerabilities, reduce remediation time, and prevent recurring issues.
“Every organization is affected by insecure code—whether they’re a software company or simply using third-party software,” said Muhi Majzoub, Executive Vice President and Chief Product Officer at OpenText. “Today, securing code is a fundamental requirement, not just a best practice. It’s essential for protecting the organization, its customers, and its partners. Our work with Secure Code Warrior addresses the human risk factors in software development, enabling organizations to embed secure coding practices and giving developers the confidence to innovate securely.”
Talk about benefits expected from this partnership on a slightly deeper level, we begin from the promise to deliver targeted developer training. Here, you have Secure Code Warrior effectively transforming Fortify’s SAST findings into tailored, agile secure code training, equipping developers with the skills needed to identify and fix vulnerabilities efficiently.
Next up, we have the potential for faster remediation. You see, thanks to the given linkup, companies can now access Fortify’s insights and AppSec capabilities with Secure Code Warrior’s guidance, and therefore, simplify code analysis so to let developers quickly understand and fix vulnerabilities, whether in application code or APIs.
Another detail worth a mention here is rooted in the integration’s bid to enhance developer skills. We get to say so because Secure Code Warrior integration provides real-time, hands-on training. The idea behind that is to enable developers to write secure code from the start.
Finally, our last piece of highlight is provided by the partnership’s call for significantly reduced risk, a call which it is going to realize through continuous learning and immediate feedback that will prevent vulnerabilities in the development phase itself. This integrated secure coding training should cut down on vulnerabilities by as much as 50%.
Among other things, we must also mention how, with Secure Code Warrior, OpenText customers can also benchmark their security program against industry peers to establish a standard that aligns with their business goals. Assuming they choose to avail the facility, they’ll be able to conceive a baseline for performance comparison and facilitate data-driven decision-making and continuous improvement opportunities to optimize security posture.
“In our new era of ‘AI-written code,’ it is important that software engineers develop critical thinking skills to spot insecure and secure coding patterns, understand Secure-by-Design principles and new AI security issues. Secure Code Warrior makes it possible for OpenText customers to remediate vulnerabilities faster and address these issues at the root cause. Our customers see a 53% vulnerability reduction and 2x faster remediation with their developers,” said Pieter Danhieux, CEO & co-founder, Secure Code Warrior. “Our partnership with OpenText now provides a seamless application security and risk management experience to solve this challenge.”