Fortify Software has announced the launch of a software security suite and a hosted software security solution.
The latest release of Fortify 360 includes governance capabilities allowing enterprises to fully manage their organisation-wide software security assurance effort.
Meanwhile, Vendor Security Management provides enterprises with Fortify's analysis technologies through a software-as-a-service offering, enabling companies to inspect the security of applications when source code is not available from commercial software vendors.
Roger Thornton, co-founder and CTO of Fortify Software, said: “One of the biggest challenges to implementing a software security assurance program today is management. Today's environment requires security professionals to work with development, legal and executive teams, making the process of securing applications complex. Automation is the only way to ensure the efficiency of any software initiative which requires an ability to give full visibility across all software assurance activities.
“For most organisations, third-party software represents a majority of their deployed applications, but often they have little visibility into the security of that software aside from constant, disruptive patches.
“Businesses today need to throw off that reactive mode of vendor management and adopt a preventative security approach that analyses third-party software for vulnerabilities during the procurement or upgrade process and demand that significant problems be addressed prior to acceptance.”