From the Wires
Build.com Enhances Software Development Lifecycle Security with Veracode
By: Business Wire
Jan. 10, 2013 09:28 AM
Veracode, Inc., the leader in cloud-based application security testing, today announced that Build.com, an online retailer of home improvement products, has integrated Veracode’s application security testing into its Bamboo and JIRA software development tools, helping to detect and fix application vulnerabilities early, reducing the time and cost of remediation.
Prior to implementing Veracode, Build.com utilized a manual testing program to detect bugs affecting the functionality of the company’s website. By leveraging the Veracode platform, Build.com has expanded its testing coverage. Build.com integrated the Veracode platform with Jira and Bamboo making security testing more seamless for the Build.com development team.
“This integration into the SDLC made it easier to find vulnerabilities within software code, remediate them and ultimately reduce the number of bugs released into production,” said William Caput, Information Security Manager at Build.com.
“Build.com was able to implement Veracode’s application security testing in less than six months – handling the process largely on its own,” said Chris Eng, vice president of research, Veracode. “The ease of this process speaks not only to Veracode’s time-to-value, but also to how easy it is for developers to get started securing their software.”
By integrating the Veracode platform into its software development lifecycle, Build.com developed and enhanced its quality assurance and testing processes by identifying and fixing potential vulnerabilities that may pose a security risk, early in the process. This is especially important as developers build, test and deploy applications, as implementing safe coding practices prior to production increases the security of the company’s code base and provides clear remediation steps for the development team.
“Site reliability and security have improved drastically since implementing Veracode,” said Casey Harford, QA Automation Engineer at Build.com. “One day after we implemented Veracode's static testing suite, we immediately gained a more insightful approach to identifying and fixing critical security flaws in our applications.”
For more information about fully automated and imbedded security in the software development lifecycle, visit http://www.veracode.com/security/secure-development.
Veracode is the only independent provider of cloud-based application intelligence and security verification services. The Veracode platform provides the fastest, most comprehensive solution to improve the security of internally developed, purchased or outsourced software applications and third-party components. By combining patented static, dynamic and manual testing, extensive eLearning capabilities, and advanced application analytics, Veracode enables scalable, policy-driven application risk management programs that help identify and eradicate numerous vulnerabilities by leveraging best-in-class technologies from vulnerability scanning to penetration testing and static code analysis. Veracode delivers unbiased proof of application security to stakeholders across the software supply chain while supporting independent audit and compliance requirements for all applications no matter how they are deployed, via the web, mobile or in the cloud. Veracode works with customers in more than 80 countries worldwide representing Global 2000 brands. For more information, visit www.veracode.com, follow on Twitter: @Veracode or read the Veracode Blog.
Build.com is the leading online-only home improvement retailer, creating a smarter shopping experience for consumers and professionals. The site offers more than 700,000 top-quality, highly-customizable products, and is the category leader in plumbing, lighting, door hardware and ventilation. The site is a one-stop destination for any home improvement project, featuring DIY tips, how-to videos and a dedicated staff of customer care representatives available seven days a week. Build.com was founded in 2000, and is headquartered in Chico, CA. For more information on Build.com, visit the company’s corporate site, http://corp.build.com, and its Facebook page, http://www.facebook.com/BuildDotCom.
Latest Cloud Developer Stories
Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
SYS-CON Featured Whitepapers
Most Read This Week