Trend Micro Incorporated has launched a new SaaS solution co-built with Snyk, a leader in cloud-native application security. The SaaS solution is designed to provide continuous insight into open source vulnerabilities for enhanced risk management to make data-driven decisions.
Trend Micro Cloud One – Open Source Security by Snyk is the latest Cloud One service and the first partner added to the platform, which is available through the channel and through the AWS Marketplace. The SaaS solution provides visibility into the vulnerabilities of open source software for operational security teams; The prevalence of these open source code components has increased due to the speed, flexibility, extensibility, and quality they provide to application development teams.
Snyk has observed significant growth in open source vulnerabilities over the past three years, making it more necessary than ever to strengthen security in the DevOps pipeline. However, gaps in processes, incompatible tool sets, and communication issues between SecOps and DevOps are commonplace. This means that security professionals lack visibility into the risks associated with building applications. Trend Micro and Snyk’s cloud service bridges challenges between security and development teams with a unified solution that provides visibility earlier in the software development lifecycle to better protect the stack.
Geva Solomonovich, CTO of Global Alliances for Snyk, noted that adding Snyk’s developer-first security technology to Trend Micro’s Cloud One allows more customers to tackle open source risks on a single. platform, thereby minimizing the need to manage multiple vendors and tools.
“Together, Snyk and Trend Micro are investing in the future of the cybersecurity industry, where security and development teams work effectively together to make their organizations more secure,” said Solomonovich.
Trend Micro Cloud One – Open Source Security by Snyk also enables SecOps to identify vulnerabilities and licensing issues. This allows security teams to monitor, prioritize, and communicate risk and exposure rates within DevOps projects over time. This happens with data-driven security decisions, continuous monitoring of threat levels, and effective risk prioritization and remediation recommendations.
“With this unique solution, we are able to solve multiple problems and use technology to fill internal gaps. This offering can save over 650 development hours per application through increased automation, helps manage risk and liability with licensing requirements, and gives security teams visibility into a portion of our functional codebase that does not exist. was not accessible before, ”said Kevin Simzer, COO of Trend Micro.
Built-in automation also helps security teams quickly identify indirect open source dependencies that security and development teams may not be aware of in their applications. This can save around eight hours per vulnerability through automation and early discovery.