Announcement Research

OX Security Recognized by Gartner in DevSecOps Report

OX Security Gartner Report DevSecOps Tool

OX Security, an end-to-end software security platform for preventing supply chain attacks, announced today that it has been recognized by Gartner as a leading “DevSecOps Tools” solution in the category of “Application security posture management.” 

OX Security provides full visibility and end-to-end traceability of the entire software supply chain from the first line of code through to production.

Gartner’s latest report on How to Select DevSecOps Tools for Secure Software Delivery notes that “software supply chain attacks are on the rise” and recommends that “software engineer leaders adopt a continuous approach to security by defining security needs across the full SDLC, including the underlying software delivery pipeline.”

“We are honored to be recognized by Gartner as a key DevSecOps Tool solution in the latest report. We feel that it affirms our vision to create a complete software supply chain security solution for developers and AppSec teams.” said Neatsun Ziv, Co-Founder and CEO of OX Security. He added that “Developers make constant changes to the software supply chain, adding new tools, open source components, and SaaS services. The OX Security platform gives DevSecOps teams real-time, visibility and end-to-end traceability into all aspects that impact software through the entire pipeline.”

OX Security’s PBOM (Pipeline Bill of Materials) tracks the entire SDLC, from the earliest planning stages until deployment to production, providing DevSecOps teams complete visibility and traceability from a single pane of glass. It also ensures that software is built from the correct sources and dependencies, without being modified during the build process. 

The Pipeline Bill of Materials (PBOM) includes within it the SBOM but goes further, covering not only the code in the final product but also the procedures and processes that impacted the software throughout its development. The PBOM can be automatically generated and shared with internal stakeholders, so they in turn can verify that the software they use is derived from trusted, secure builds.

 

Gartner Disclaimer 

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

 

About OX Security 

OX gives security and DevSecOps teams full visibility over the software supply chain attack surface, source code, pipeline, artifacts, container images, runtime assets, and applications. OX connects to an organization’s code repository and performs a scan of the environment from code to cloud and then provides remediation strategies based on a list of prioritized risks and recommendations, taking into consideration the context and business objectives. OX further reduces exposure during the building stages, minimizing the attack surface without impeding developer agility.

Want to learn more about the Gartner report? Contact us today.

Subscribe for updates