Traditional secure coding education is ineffective and cannot scale to deliver continuous and across the board secure coding knowledge. Long training courses disrupt the developer’s daily routine and don’t address the specific challenge as it appears. Moreover, participants tend to retain only a fraction of the materials in between the traditional “annual” training cycles.
Maintaining Developer AppSec knowledge is a real challenge for enterprises and a real concern for application security professionals. According to the SANS 2016 State of Application Security survey, the lack of AppSec skills, tools and methods was ranked most often as being in the top three challenges to implementing AppSec by respondents.
Pioneering the idea of shifting security left and empowering developers to deliver secure applications, this acquisition allows Checkmarx to introduce continuous, in-context, bite sized secure coding training. Effective training allows enterprises to grow their in-house security skills, which results in fewer vulnerabilities being introduced into code in the first place.
Codebashing delivers a hands-on interactive training platform built by developers for the needs of developers. Education gamification saves precious time and eliminates the need for expensive secure coding courses with irrelevant material, allowing organizations to implement secure coding training in a DevOps and CI/CD environment without impacting delivery timelines.
“Checkmarx has been addressing the security skill challenge for over a decade and once we saw the value we can deliver to our customers by integrating Codebashing’s platform within our solution offering, we knew this would be a game changer for the industry,” said Emmanuel Benzaquen CEO of Checkmarx.
Gyan Chawdhary, CTO & Founder of Codebashing, has been active in the AppSec community for years. During his journey, he discovered that legacy Computer-Based Training approaches simply don’t resonate with developers.
“The team at Codebashing is very excited to join Checkmarx and we are looking forward to deliver our mutual offerings to millions of developers who will leverage the natural fit between Checkmarx and Codebashing,” said Gyan.
“We knew this was going to be an exciting journey for us when requests started pouring in. Large-scale organizations like Microsoft, Fitbit and Sky, and a whole host of other household names across the tech, retail, and financial verticals – have already implemented our solution to train, refresh and validate their developers’ secure coding techniques,” said John Yeo, CEO & Co-Founder of Codebashing. In regards to the acquisition, “We’ve been working with Checkmarx for a while now and our existing technology integration has proven to be a very natural fit for customers. The acquisition is an obvious force-multiplier, it’s superb for Codebashing’s future growth prospects, and fantastic for our customers,” said Yeo.
About Checkmarx Checkmarx is an Application Security software company, whose mission is to help development organizations deliver secure applications faster. Amongst the company’s 1,000 customers are 5 of the world’s top 10 software vendors, four of the top American banks, and many Fortune 500 and government organizations, including SAP, Samsung, and Salesforce.com.