Fortify on Demand is now delivering application security in the cloud with our new placement on Amazon Web Services (AWS) Marketplace. While this is super exciting news, let’s start by explaining why this move is important step in the evolution of Application Security for Fortify, along with why organizations continue to move to the cloud with their DevOps initiatives.
Why DevOps is driving the move to the cloud
DevOps can be defined as the combination of the development and operations team to promote collaboration and improve the quality and speed of software delivery by breaking down silos between the two. The DevOps system has now been widely integrated among organizations, allowing for continuous integration, continuous deployment, and continuous delivery of applications. However, the traditional infrastructure of on-premise DevOps was no longer enough to keep up with the ever-faster release rate in the software development lifecycle and the acceleration of digital transformation. According to Google’s 2019 State of DevOps, 43% of organizations surveyed released new or updated applications once per week or more. At this pace, and with on-premises DevOps systems, organizations were unable to keep up.
The solution to combine efficiency and speed was to adopt the cloud. This empowers DevOps teams to deliver faster and safer applications while limiting manual costs associated with on-premises DevOps operation technology and displacing some of the operational responsibilities to the vendor. That way, DevOps teams have additional resources to automate the testing, deployment, and production process and stay ahead of the competition by reducing production cycle time.
Another advantage to DevOps moving to the cloud is the increase in cyber resilience for the organization. What is cyber resiliency? Cyber resilience is the ability of an organization to enable business acceleration (enterprise resiliency) by preparing for, responding to, and recovering from cyber threats. Cyber resiliency plays a critical role in driving digital transformation (which then enables enterprise resiliency and continuity). DevOps is shifting left to include security earlier in the software development cycle, and by doing so, it powers a deeper emphasis on security for the entire organization.
There are many cloud operators in the market, let’s focus on one: Amazon Web Services (AWS) and why it matters for DevOps.
Where does AWS fit into DevOps?
AWS is an Infrastructure as a Business (IaaB). Essentially, it’s a cloud platform giving organizations access to compute power, database storage, content deliver and other functionalities without the cost of buying, owning, and maintaining physical data centers and servers. It allows organizations more flexibility based on their ever-evolving needs with no-on going commitment.
AWS is particularly important within DevOps. With AWS, DevOps teams can adapt and deliver more quickly than a traditional on-premise solution would. AWS provides a set of flexible services designed to enable companies to build and deliver products using AWS and DevOps practices more rapidly and reliably. Manual tasks or processes such as deployments, development and test workflows or container management can be automated and monitored, keeping engineers in control of the high velocity that is enabled by DevOps.
Why the AWS Marketplace?
AWS Marketplace is a digital catalogue with thousands of software listings from independent software vendors. AWS customers can find, buy, and immediately start using the software and services that run on AWS. For SaaS vendors, being listed on AWS Marketplace is a significant win that provides exposure and credibility to potential customers. Every service’s internal security is tested by AWS before being listed in the marketplace.
Given the advantages for any SaaS vendors to be listed on AWS Marketplace, it’s no small news that Fortify on Demand is now available on AWS Marketplace. However, it doesn’t only benefit potential customers but current users as well. If you are a current Fortify on Demand user, you can look forward to the ability to use your AWS budget for Fortify on Demand Assessment Units, as well as observe reduced procurement time to repurchase and simplified billings. Overall, a smoother and faster experience all around.
Fortify on Demand is Micro Focus’ cloud AppSec solution that offers static, dynamic, and mobile application security testing technologies, along with run time application monitoring and protection, backed by industry-leading security research. All your AppSec solutions and resources are available on demand giving you the flexibility and coverage you need.
About Micro Focus Fortify
Fortify lets you build secure software fast with an application security platform that automates testing throughout the CI/CD pipeline to enable developers to quickly resolve issues, strengthening their cyber resilience. Fortify static, dynamic, interactive, and runtime security testing technologies are available on- premises or as a service, offering organizations the flexibility needed to build an end-to-end software security assurance program.
Looking to join an industry leader filled with passionate problem-solvers on a mission to help organizations protect their applications from the bad guys? Check out our open positions now.
Have technical questions about Fortify? Visit the Fortify Community. Keep up with the latest Tips & Info about Fortify. We’d love to hear your thoughts on this blog. Comment below. Or go to the Fortify Users Discussion Board to start a conversation.