Snyk – a leader in developer security – announced recently it agreed to acquire Enso Security, a pioneer in the industry’s first Application Security Posture Management (ASPM) solution. This acquisition is subject to customary closing conditions and is expected to close in Q2 2023.
With the launch of Snyk’s newest innovation called Insights – a unique prioritization capability with code-to-cloud application intelligence, global enterprises can now more effectively manage their overall AppSec posture. Together these new capabilities will provide Snyk customers with the tools they need to effectively manage and govern a developer security program at scale.
The Enso Security acquisition is part of SnykLaunch June 2023, which is a range of new innovations that further strengthen the Snyk Developer Security Platform. Additional highlights in the SnykLaunch June 2023 lineup include:
— Insights: Provides AppSec teams with exponentially more effective prioritization of security issues by leveraging code-to-cloud application intelligence, allowing them to effectively focus on the top risks for their particular organization; and,
— DeepCode AI: Creates validated fixes as Snyk identifies issues in both human-written and AI-generated code, crucial for AppSec teams currently scrambling to securely enable the explosion of new generative AI coding assistants.
ASPM is becoming as a priority across enterprises as application environments become more complex, along with modern developers using a variety of different tools and methods to create their code. And as a result, many enterprises today face thousands of logged security issues but remains uncertain surrounding the coverage of their applications. So security teams lack the visibility to understand the potential business impact of these issues, thus wasting precious resources without ultimately improving their software supply chain security.
Snyk will now utilize Enso’s ASPM capabilities (together with Insights) to offer the first and only developer security platform providing a holistic view of application security posture. And regardless of the security tooling currently in place, developer-first ASPM will orchestrate coverage throughout the entire software development lifecycle, with prioritization that powerfully combines both business impact and risk.
Following the acquisition of DeepCode in 2020, DeepCode AI became the backbone of Snyk Code. Powering the Snyk platform, DeepCode AI leverages multiple AI models and is trained on security-specific data, curated by top security researchers to provide Snyk’s customers with important AI productivity gains without the security drawbacks. And over 100,000 organizations are currently leveraging the benefits of DeepCode AI, including more than 1,700 Snyk Code customers.
Since then, Snyk continuously innovated in this realm, most recently with the introduction of DeepCodeAI Fix – which has already attracted 150 paying customers since a preview was opened last month. Starting in Snyk Code, DeepCodeAI Fix utilizes Snyk’s proprietary AI to suggest secure code fixes that developers can implement with a click, eliminating the need to do their own research and dramatically improving efficiency. And an additional new DeepCode AI capability allows application security users to interact and directly leverage Snyk’s AI to write custom code queries, further accelerating the process of creating custom rules and policies.
KEY QUOTES:
“As DevSecOps becomes increasingly mainstream, Snyk is committed to continuing to build upon its market leadership by adding important new capabilities that allow security leaders to grow and manage their global developer security programs at scale. We look forward to welcoming the innovative Enso team as our newest Snykers. We are fully aligned in our shared vision to help more organizations stay ahead of their competition by increasing their pace of innovation securely by default.”
— Peter McKay, CEO, Snyk
“Our disruptive developer-first approach has become a game changer for application security. With these new AI and ASPM capabilities, we’re excited to now help more enterprises achieve greater supply chain security transparency, allowing them to eliminate crucial security coverage gaps across their business.”
— Manoj Nair, Chief Product Officer, Snyk
“When it comes to developer productivity gains, the recent explosion of generative AI innovation has been welcomed by many with a mixture of enthusiasm and relief. As a security leader, however, my foremost responsibility is to ensure that all of the code we create, whether AI-generated or human-written, is secure by design. By using Snyk Code’s AI static analysis and its latest innovation, DeepCodeAI Fix, our development and security teams can now ensure we’re both shipping software faster as well as more securely.”
— Steve Pugh, CISO, ICE/NYSE
