NEW YORK-- Checkmarx, a global leader in application security testing solutions, today announced its acquisition of Codebashing, a leading application security education company that delivers Game-like AppSec Training for Developers.
Traditional secure coding education is ineffective and cannot scale to deliver continuous and across the board secure coding knowledge. Long training courses disrupt the developer’s daily routine and don't address the specific challenge as it appears. Moreover, participants tend to retain only a fraction of the materials in between the traditional “annual” training cycles.
Maintaining Developer AppSec knowledge is a real challenge for enterprises and a real concern for application security professionals. According to the SANS 2016 State of Application Security survey, the lack of AppSec skills, tools and methods was ranked most often as being in the top three challenges to implementing AppSec by respondents.
Pioneering the idea of shifting security left and empowering developers to deliver secure applications, this acquisition allows Checkmarx to introduce continuous, in-context, bite sized secure coding training. Effective training allows enterprises to grow their in-house security skills, which results in fewer vulnerabilities being introduced into code in the first place.
Codebashing delivers a hands-on interactive training platform built by developers for the needs of developers. Education gamification saves precious time and eliminates the need for expensive secure coding courses with irrelevant material, allowing organizations to implement secure coding training in a DevOps and CI/CD environment without impacting delivery timelines.
“Checkmarx has been addressing the security skill challenge for over a decade and once we saw the value we can deliver to our customers by integrating Codebashing’s platform within our solution offering, we knew this would be a game changer for the industry,” said Emmanuel Benzaquen CEO of Checkmarx.
Gyan Chawdhary, CTO & Founder of Codebashing, has been active in the AppSec community for years. During his journey, he discovered that legacy Computer-Based Training approaches simply don’t resonate with developers.
“The team at Codebashing is very excited to join Checkmarx and we are looking forward to deliver our mutual offerings to millions of developers who will leverage the natural fit between Checkmarx and Codebashing,” said Gyan.
“We knew this was going to be an exciting journey for us when requests started pouring in. Large-scale organizations like Microsoft, Fitbit and Sky, and a whole host of other household names across the tech, retail, and financial verticals - have already implemented our solution to train, refresh and validate their developers’ secure coding techniques,” said John Yeo, CEO & Co-Founder of Codebashing. In regards to the acquisition, “We’ve been working with Checkmarx for a while now and our existing technology integration has proven to be a very natural fit for customers. The acquisition is an obvious force-multiplier, it’s superb for Codebashing’s future growth prospects, and fantastic for our customers,” said Yeo.