Blog

Make Better Decisions with Checkmarx One

6 min.

June 10, 2024

We are excited to announce the General Availability of our newly updated and expanded analytics and reporting capabilities. With this release, we aim to improve the actionable insights we have already delivered and enable you and your teams to make better informed decisions and have a clearer understanding of your security posture. With Checkmarx One Analytics, you can track and measure your most important AppSec KPIs in one dedicated location.

Checkmarx One customers can access these capabilities.

Visibility for Better Decision-Making

If you’ve looked at the results from most vulnerability scanning tools, then you probably know this feeling: there is a ton of data in front of you, and it’s time to make decisions. Who should work on what next? What is actually important? How can I make the biggest impact? Is our AppSec program working, and are we making progress as a team? Security is about making decisions. To make good decisions, you need reliable data, and strong analytics capabilities. At Checkmarx, we spend a lot of time and effort building our products to help AppSec practitioners make better decisions – easier.

What’s New From Checkmarx?

Checkmarx One consolidates multiple market leading AppSec solutions into a single, unified platform. We know that many of our customers may be managing hundreds of apps and thousands of individual projects. That is a lot of data to analyze, correlate, and prioritize. It also means that your developers need to have bought into your AppSec program. Checkmarx’ updated analytics and reporting provides your team the data necessary to influence stakeholders, build trust, and make your organization more secure.

In this release, Checkmarx is improving your ability to do the following, in a single location:

  • Access & Analyze Security Data
  • Track Program Adoption and Success
  • Measure AppSec Trends and Security Posture

Let’s dive into each of these categories.

Access and Analyze Security Data: Enhanced Intuitive User Experience with Advanced Filtering Options

Checkmarx One Analytics simplifies the complex landscape of your security data through customization. Our new approach allows you to adapt Checkmarx One to the unique structural and strategic needs of your own organization. This personalized approach, coupled with powerful filtering and drill-down capabilities, transforms how security data is accessed, analyzed, and utilized for strategic decision-making. This is done through new unified security dashboard and advanced filtering.

  • Unified Security Dashboards: Checkmarx One Analytics offers a sophisticated, user-friendly platform that consolidates various security metrics into a single, intuitive dashboard. This unified approach provides a comprehensive overview, crucial for making informed decisions quickly and effectively. By presenting a holistic security landscape, these dashboards cater to the diverse needs of different organizational roles, from security analysts to top management.
  • Tailored Organizational Views Through Advanced Filtering: Recognizing that each organization has unique structures, projects, and priorities, Checkmarx One Analytics introduces advanced filtering capabilities. This feature empowers users to customize views according to their specific organizational hierarchy and business-critical areas. Whether it’s filtering by department, application, project, or any other relevant criterion, these dynamic filters allow users to hone in on the data they need for a tailored analytical experience. This granularity ensures that users can easily access and analyze the information that is most pertinent to their specific security concerns and questions, enhancing the overall efficiency and effectiveness of security strategies.

Tracking Adoption and Success: Comprehensive Insights for Optimized Platform Engagement

Checkmarx One Analytics acts as a strategic ally for organizations, providing deep insights into user engagement and technology utilization. By enabling easy identification of trends and anomalies, and empowering platform administrators with actionable data, it plays a pivotal role in optimizing the security and efficiency of the Checkmarx One platform.

Below are key features of this update:

  • In-Depth User Engagement Analytics: Checkmarx One Analytics significantly elevates the monitoring and tracking of user engagement within the platform. It offers an extensive array of metrics that comprehensively capture various aspects of user interaction. This includes tracking the progression of user onboarding, measuring the depth of project engagement, monitoring scan operations, and analyzing project-specific analytics. Such detailed insights are instrumental in understanding how users interact with the platform, which features are most utilized, and where there might be room for enhanced engagement or training.
  • Technology Utilization Patterns and Project Coverage: Another key area of focus within Checkmarx One Analytics is the analysis of technology utilization patterns. By observing and reporting on how different technologies and tools are being used within the platform, the analytics module provides valuable insights into technology adoption and effectiveness. This also extends to tracking the coverage of project scans compared to the actual number of projects open. Such metrics are crucial for platform administrators to ensure that all projects are adequately scanned and secured, thereby maintaining a robust security posture.
  • Easy Identification of Anomalies and Trends: One of the standout features of Checkmarx One Analytics is its ability to surface anomalies in the data easily. Whether it’s a noticeable decrease in scans over time, unequal distribution of workload across different engines, or discrepancies in project scan coverage, the platform quickly flags these anomalies. This capability enables platform administrators to swiftly identify and address potential issues, such as lapses in security practices or underutilization of platform capabilities.
  • Empowering Platform Administrators: The comprehensive insights provided by Checkmarx One Analytics are especially valuable for platform administrators. They are equipped with a powerful tool to oversee all platform activities, ensuring optimal utilization and efficiency. Administrators can make data-driven decisions to enhance platform adoption, streamline operations, and ensure that the full potential of Checkmarx One is realized across the organization.

Organizational Security Trends and Overall Posture: Measuring Success through Data-Driven Insights

Checkmarx One Analytics allows you greater insight into the effectiveness, current and historical, of your AppSec program. With key usage data at your fingertips, you can troubleshoot potential hitches in your AppSec process, and justify the time and resources your team invests in AppSec.

  • Visualized Application Security Evolution: Checkmarx One Analytics offers dynamic visualizations of an organization’s security trends over time. This includes comprehensive graphs depicting the emergence of new vulnerabilities alongside the progress made in addressing existing ones. Such visual tools are pivotal for understanding how the security landscape evolves within the organization, offering clear insights into both vulnerabilities and remediation efforts.
  • Enhancing Security Maturity with Data-Driven Insights: The platform’s ability to track and measure key security metrics provides an invaluable perspective on the organization’s overall security posture. This data-rich environment is instrumental in assessing the effectiveness of security strategies, enabling continuous refinement and improvement. By highlighting trends in vulnerability detection and resolution, Checkmarx One Analytics underscores the progress in an organization’s security maturity, guiding teams towards more informed and impactful security decisions.

Make Better Decisions with Checkmarx One

Building an effective AppSec program is hard. Investments in time and resources must be justified to the Board and C-suite, which is itself a challenge because it’s hard to connect the dots between the risk of a vulnerability to the potentiality of a data breach. In parallel, you must be able to make similar justifications to both the heads of operations and engineering to enlist the support of the developers, since you will need them to make any AppSec program viable. To make these justifications on an ongoing basis, you must be able to clearly articulate key metrics surrounding your AppSec program. Checkmarx One’s new analytics are another step on that road, making it easier to justify your investments, and build trust across your organization.

The new analytics features illustrated above are available immediately to all Checkmarx One customers. To start using them, simply click on the tabs in your UI, and get started.

If you’re not a Checkmarx One customer yet, and would like to learn more, follow the link below to schedule a demo. We can’t wait to speak with you!