Hong Kong, China: Trend Micro and Synk have announced plans for a new, co-developed security solution for Open Source risks.
The joint solution will help security teams manage the risk of Open Source vulnerabilities. Right from the moment open-source code is introduced without interrupting the software delivery process.
This marks the expansion of a strategic partnership between Trend Micro and Synk that has already helped countless organisations enhance DevOps security without impacting product roadmaps.
Synk is a major provider of developer-first open source security.
“We know that vulnerabilities in Open Source software, which is increasingly used by all development teams, have increased 2.5x in the past three years,” said Geva Solomonovich, Global Alliances – CTO.
“This partnership is ground-breaking because for the first time it is giving the security operations team visibility into Open Source, which is one of the fundamental building blocks of cloud-native applications, and its risk,”
“Through this collaboration, we will be helping bridge the technology, process and organisational gap between security operations and DevOps teams,” added Solomonovich.
Open-source libraries can carry significant vulnerabilities and the developers may be unaware an embedded component within a library exposes them to unseen vulnerabilities, according to Gartner.
“DevOps sits at the beating heart of innovation-first enterprises and no one knows these teams like Snyk, especially when it comes to preventing open source vulnerability threats,” said Kevin Simzer, COO – Trend Micro.
“What we are putting into play is effectively a virtual open source cybersecurity expert to those teams running our Cloud One platform. Together we can solve security issues before they occur, with complete coverage from code creation to runtime and across any type of developer environment,” added Simzer.
The latest capabilities, delivered by combining the strengths of both companies, enables teams to find vulnerabilities in open source code automatically and immediately. It offers significant benefits for security and development teams, including helping to support compliance with ISO 27001, SOC 2 and other key frameworks and standards.
The joint solution between Trend Micro and Synk will help create fundamental mind shifts in collaboration, driving closer alignment between security and developer teams. It will be available as part of the Trend Micro Cloud One platform.