Better Together: SAST and IAST

Presented by

Susan St. Clair, Technical Services Engineer

About this talk

With the rapidly changing market, many companies are adopting DevOps processes to keep up with shrinking release cycles. With this change, old software security methodologies such as dynamic testing and pen testing are struggling to keep up. This doesn't mean that we don't need dynamic testing, rather that companies are searching out solutions that can keep pace with modern DevOps processes. IAST is the only dynamic solution that fits the speed of DevOps. It is fast and continuous, finding vulnerabilities in runtime environments. But IAST is only one part of the software security puzzle. For full coverage, from SDLC integration to runtime environments, you need synergy between your solutions. Checkmarx offers a synergy with between IAST and SAST that cannot be achieved elsewhere. The two solutions working together improve the quality of results and allow easier and more precise prioritization, leading to easier and shorter remediation. Join Susan St. Clair, Technical Services Engineer at Checkmarx, to get a better understanding on why IAST and SAST are better together. By joining you will: - Gain a better understand of IAST technologies and their impact on the market - Learn about the advantages of IAST and SAST working together as part of the Software Exposure Platform - Dive into a case study on the subject - Understand what to look for when evaluating IAST and SAST products
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (82)
Subscribers (15243)
Checkmarx is constantly pushing the boundaries of Application Security Testing to make security seamless and simple for the world’s developers and security teams. As the AppSec testing leader, we deliver the unparalleled accuracy, coverage, visibility, and guidance our customers need to build tomorrow’s software securely and at speed.