DATA SECURITY, ENTERPRISE SECURITY, SOFTWARE SECURITY
DoControl | February 03, 2023
On February 2, 2023, DoControl, a leading automated software-as-a-service (SaaS) security provider, announced the release of its no-code SaaS security platform on AWS Marketplace, an online catalog that simplifies the provisioning, procurement, and governance of third-party data, software and services. The platform enables joint customers to better protect their business-critical assets by setting up a foundational layer of preventative data access security controls directly through the AWS Marketplace.
Individual SaaS applications' native security features are usually poor and do not provide a consistent way to apply data access controls across all SaaS application types. DoControl provides a single security strategy that centralizes the enforcement of least privilege - beyond the network, identity, and device levels - across the entire estate of an enterprise's SaaS applications. Customers with AWS deployments may now use DoControl solutions to safeguard all shared data and files accessed by every identity or entity, including internal employees, third-party collaborators, and third-party OAuth applications.
On average, an enterprise has approximately 200 applications in use, with hundreds or thousands of internal and external collaborators. Therefore, data security is of utmost importance across these applications (file-sharing, file storage, messaging, and so on), as breaches can result in lost revenue, severe brand damage, regulatory fines and other financial consequences.
DoControl offers SaaS asset management, continuous monitoring, and automated security workflows to security and IT teams to prevent data breaches. In addition, DoControl lowers the physical toil and complexity that security and IT professionals face on a daily basis by replacing manual effort with automation.
Founded in 2020, DoControl is a No-Code SaaS Security Platform that provides organizations with automated, self-service tools needed for SaaS applications data access monitoring, orchestration, and remediation. It takes a distinctive, customer-focused approach to the labor-intensive challenge of security risk management and data exfiltration prevention in popular SaaS applications. DoControl helps lower the work overload and complexity that Security and IT teams face on a daily basis by replacing manual work with automation. The company is backed by investors, including StageOne Ventures, Insight Partners, RTP Global, Cardumen Capital, and CrowdStrike's CrowdStrike Falcon Fund.
DATA SECURITY,PLATFORM SECURITY,SOFTWARE SECURITY
Mendix | January 24, 2023
Mendix, a Siemens business and world leader in modern enterprise app development, and Software Improvement Group (SIG), a unique technology and advisory firm for software quality, security, and improvement, have announced the launch of Mendix Quality & Security Management (QSM), a new cybersecurity solution that provides continuous deep-dive insights into security and code quality to address risks and vulnerabilities immediately.
Sigrid®, SIG's software assurance guidance platform, powers Mendix QSM. It delivers a complete perspective on the effect of security findings on business goals by combining more than 20 top-tier security scanning technologies. With Mendix QSM, the users can scan their Mendix apps, including third-party libraries, for security flaws and incorrectly configured security models, rank for compliance with major industry standards such as OWASP, ISO 5055, and PCI, and receive risk mitigation recommendations and clear guidance.
Mendix QSM is based on application model static analysis. SIG experts have mapped Mendix models to the ISO 25010 maintainability model using Mendix model metadata. This enables its applications to be compared against a database of thousands of projects, including open-source initiatives. Mendix QSM also presents a five-star rating of the quality of the software.
Mendix is an industry-leading low-code application development platform for enterprises. With Mendix, you can transform a spreadsheet into an app, establish a portfolio of enterprise-wide apps, and upgrade a core system, among other things. In addition, the platform provides continuous collaboration between software developers and users, speeds up the application development lifecycle, and enables iterative deployment at scale. As a result, businesses can rapidly develop modern, adaptable applications with a tool that maintains the highest levels of security, quality, and governance. The platform has been used by over 4,000 of the world's leading enterprises. Mendix is a division of Siemens.
About Software Improvement Group (SIG)
Software Improvement Group (SIG) assists companies in gaining confidence in the technology they trust. Its mission is to get the software right for a healthier digital world by combining intelligent technology with human expertise. It drills into the build quality of enterprise software and architecture by monitoring, measuring, and benchmarking it against the world's largest software analysis database. As a result, organizations can use software assurance to uncover the variables driving the total cost of ownership of the software and make fact-based decisions to lower costs, reduce risk, improve time to market, and accelerate digital transformation.
DATA SECURITY, PLATFORM SECURITY, SOFTWARE SECURITY
Dremio | February 01, 2023
On January 31, 2023, Dremio, the leading simple and open data lakehouse, and Privacera, the only open-standards-based data governance and security solution provider, announced their latest integration, which expands advanced data governance and security capabilities for customers building modern data applications on top of data lakehouses.
As data lakehouses become more popular, it is becoming increasingly essential to manage and organize safe data access while also adhering to complicated regulatory regulations across all data assets. The new integration now allows Joint clients to expedite secure and governed analytics by decreasing manual processes while automating stringent compliance for contemporary data cooperation, which is especially important in highly regulated industries like financial services.
The enhanced integration proffers joint clients with the following capabilities:
Ensuring scalability and performance
By pushing down policies written in Privacera into Dremio, the native integration allows quick query performance and scalability.
Enhanced data security and governance capabilities
The connector enables enterprises to implement attribute-based access control (ABAC), discovery for tagging and data classification, data encryption, row-level filtering and masking, canned reports and centralized auditing.
Applying Consistent policy administration across Dremio and the majority of hybrid and multi-cloud data sources
Customers can now establish and enforce data access policies and classifications once and then deploy them anywhere.
Founded in 2015, Dremio is a simple, open data lakehouse that offers self-service analytics, data warehouse capability, and data lake flexibility across all data. It boosts agility with a novel data-as-code approach that enables Git-style data experimentation, version control, and governance. In addition, it removes data silos by allowing searches across data lakes, databases, and data warehouses, as well as easing ingestion into the lakehouse. Dremio is employed by hundreds of enterprises, including three of the Fortune 500, to offer mission-critical BI on the data lake. The company is the inventor of Apache Arrow and is on a quest to redefine SQL for data lakes and meet clients where they are on their cloud journey.
Founded in 2016, Privacera is the first company to offer a SaaS-based data governance and security solution that unifies privacy and compliance across various cloud services such as Azure, AWS, Databricks, GCP, Starburst and Snowflake. It assists businesses in making efficient and responsible use of data by guiding them through their data journey. Privacera, founded by the creators of Apache Ranger™ and Apache Atlas™, is often referred to as "Apache Ranger in the Cloud." Fortune 500 customers in the insurance, finance, life sciences, media, retail, and consumer industries, as well as government agencies, use the Privacera platform to mask sensitive data, automate sensitive data discovery, and manage high-fidelity policies at petabyte scale on-premises and in the cloud.