Yesterday, Synopsys unveiled two new collaborative agreements, solidifying partnerships with respected experts in mobile security and privacy, NowSecure, as well as Secure Code Warrior, a leading provider of an agile learning platform focused on developer-driven security. These collaborations are set to further enhance the Software Integrity Group’s acclaimed range of application security testing (AST) solutions.
Through these partnerships, Synopsys has introduced two innovative application security solutions: Synopsys Mobile Application Security Testing powered by NowSecure, and Synopsys Developer Security Training powered by Secure Code Warrior. These solutions are now available for global deployment.
Jason Schmitt, General Manager of Synopsys Software Integrity Group, emphasised that teaming up with these two cybersecurity leaders empowers Synopsys’ worldwide clientele to proactively address the evolving threat landscape. He underlined the seamless integration of NowSecure’s automated mobile capabilities with Synopsys’ comprehensive managed services in mobile application security testing, creating an unparalleled level of coverage and scalability. Schmitt also stressed the significance of Secure Code Warrior’s developer-centric approach to security training, which effectively ingrains secure coding principles within an organisation’s development culture.
A Leap Forward in Mobile Application Security Testing
Synopsys Software Integrity Group’s strategic collaboration with NowSecure introduces an automated continuous mobile application security testing (MAST) solution tailored to secure the intricate infrastructure of modern mobile software development lifecycle (SDLC).
This new solution, designed to complement Synopsys’ industry-leading managed MAST services, delivers unmatched testing coverage through rapid, automated, and language-agnostic static, dynamic, interactive, and API security testing of Android and iOS binaries. Furthermore, Mobile Application Security Testing enables development and security teams to scrutinise the components of a mobile application—including open-source elements, third-party software development kits (SDKs), and transitive dependencies. The solution also facilitates the implementation of standards-based automated security testing within continuous integration and continuous delivery/continuous deployment (CI/CD) pipelines.
Alan Snyder, CEO of NowSecure, expressed enthusiasm for partnering with Synopsys to offer the most comprehensive application security solution suite in the industry. With mobile apps now dominating the global economy and serving as the primary engagement and revenue platform for numerous entities, Snyder highlighted NowSecure’s decade-long expertise in securing and safeguarding millions of mobile users. He emphasised that the partnership with Synopsys streamlines the process for organizations to cover all aspects of application security.
Empowering Enterprise-Scale Developer-Driven Security
Synopsys Developer Security Training, powered by Secure Code Warrior, is a robust enterprise-grade agile learning platform designed to equip developers with security proficiency while enabling security leaders to standardize security practices across the organisation.
Boasting over 8,000 learning experiences, including self-paced educational resources, interactive challenges simulating real-world scenarios, step-by-step walkthroughs, and assessments, Developer Security Training offers a hands-on approach to training modern software development and engineering teams. With a diverse content library spanning over 60 coding languages and development frameworks, teams can tailor security training to align with each developer’s specific focus area, be it web, mobile, API, or others.
Thanks to its seamless integrations with Synopsys Coverity®, Synopsys Seeker®, and the newly introduced Software Risk Manager—a potent application security posture management (ASPM) solution—Developer Security Training presents teams with a holistic solution to mitigate and prevent security issues throughout the SDLC. This includes direct integration with integrated development environments (IDEs) at the developer desktop.
Pieter Danhieux, Co-founder and CEO of Secure Code Warrior, highlighted the pivotal role of software security in every company’s DevSecOps strategy. He expressed excitement about the collaboration with Synopsys, which fosters agile learning experiences for software developers worldwide. By instilling secure programming techniques at the outset of the development cycle, Danhieux emphasised the mitigation of vulnerability risks. He also underlined that organisations utilising Synopsys’ Developer Security Training powered by Secure Code Warrior empower developers and engineers to excel and become security-capable in alignment with their business priorities, thanks to direct integrations and AI capabilities within the platform.
For more information, you can visit the Synopsys website and read this detailed blog post.