Legit Security, the leading platform for enabling companies to manage their application security posture across the complete developer environment, has officially announced a strategic partnership with GuidePoint Security to let the latter’s clientele access its Application Security Posture Management (ASPM) capabilities. Talk about the stated capabilities for a second, they basically empower security teams, including CISOs, product security leaders, and security architects, to gain comprehensive visibility into risks across the development pipeline, right from the infrastructure to the application layer. Now, owing to this visibility of development cycle, Legit’s proprietary platform is able to ensure that the deployed code is secure and compliant. As for some granular-level benefits of the company’s  technology, they begin from its ability to offer SDLC Visibility & Security, meaning the platform can provide you with a complete view of your software factory, including development assets and security control. Such an insight, on its part, should help you in discovering unknown assets and activities like developers’ use of GenAI code. Next up, we must get into Legit’s knowhow around software supply chain security. This knowhow makes it possible for users to automatically discover, analyze, and secure their software supply chain, something which should go a long distance in the pursuit to maintain continuous inventory of SDLC assets; and produce current software bill of materials (SBOMs). Then, there is the compliance aspect where one can align regulatory compliance and map application security to frameworks such as CISA SSDF, SLSA, FedRAMP and ISO 27001. On top of it, users can also come expecting data which they can use to support internal and external audit requirements.
“As threat actors continue to become more sophisticated and increasingly target software supply chains, organizations are facing new digital complexities, software delivery security issues, and unprecedented challenges to their overall cybersecurity postures,” said Justin Iwaniszyn, Director of New and Emerging Alliances at GuidePoint Security. “Adversaries are continually refining tactics to exploit vulnerabilities in software development, making comprehensive application security a key component in helping businesses mitigate risk and protect against emerging threats across their software supply chain ecosystems.”
Hold on, we still have a few bits left to unpack, considering we still haven’t discussed Legit Security’s offer of application vulnerability management. To achieve the objective on this one, the platform effectively consolidates findings from multiple AppSec tools before analyzing results through contextual understanding of the developer environment. The idea behind doing so is to let the user prioritize remediation. Having referred to remediation, the solution in question also presents itself as prepared to leverage an AI-powered framework, and therefore, ensure secrets discovery beyond source code. The given facility allows for organizations to detect, remediate, and prevent secrets exposure across the software development pipeline.
Making this whole development all the more significant is, of course, GuidePoint Security’s own stature as a leader in the cybersecurity space. You see, founded in 2011, the company has today reached a point where it serves more than four thousand customers. The given number is notably made by 40% of Fortune 500 companies. Not just that, it also includes an estimated 33% of Fortune 50 companies.
“As risks associated with software development and delivery increase, organizations need a consistent means of managing application security programs across both development and security,” said Aaron Cote, Chief Revenue Officer at Legit Security. “We are excited to partner with GuidePoint Security. Together we are providing organizations with solutions that provide critical insights so they can prioritize risk and bolster productivity by reducing developer time to close vulnerabilities.”