Veracode, the largest global provider of application security testing solutions, has secured its leadership position in the market for another year, closing 2021 with 13 percent revenue growth year over year. Once again, the company outperformed the “rule of 40”—a key success metric for SaaS businesses that analyzes growth rate plus profit margin—demonstrating the solid performance of a best-in-class software company.
Also Read: Paysafe Strengthens iGaming Market Leadership With New York Entry
“This past year we’ve seen the continued acceleration of digital transformation, with software development teams under more pressure than ever to deploy quickly. The need for security in the software supply chain has never been greater,” said Sam King, CEO of Veracode. “Our analysis shows that customers have shifted security left and are integrating continuous software security testing into their development lifecycle. They are also paying increased attention to securing the extended software supply chain of open source and third-party software.”
Veracode focuses on bringing development and security teams together by streamlining AppSec workflows to make DevSecOps a seamless experience while simultaneously providing a 360-degree view of security posture through powerful reporting and analytics. In 2021, the company bolstered its executive leadership to accelerate innovation and growth worldwide with the appointments of Brian Roche as Chief Product Officer and Pete Harteveld as Chief Revenue Officer. Alison Bayiates was also promoted to Chief Human Resources Officer. Each executive brings more than 20 years of experience and deep expertise in their field.
Innovation in Action
Through a cost-effective, scalable, cloud-native SaaS architecture, Veracode’s customers benefit from anonymized, aggregated scan data that enables them to find and fix flaws earlier in the software development life cycle. Notable innovations from 2021 include:
An advanced API scanning tool that allows organizations to find and fix vulnerabilities in application programming interfaces—the fastest-growing attack surface
Expanded integrations with dozens of technology providers through the Veracode Technology Alliance Program
Complimentary trial option of Veracode Security Labs Enterprise Edition, the company’s hands-on developer training solution
European Region, a cloud-based instance in Germany, for organizations that require their data to reside geographically in Europe
The Hacker Games, a competition launched to help tackle the global cybersecurity skills gap by challenging university student coders to find and fix dangerous security flaws
Public listing on the AWS Marketplace, enabling the company to sell its solutions through AWS Marketplace private offers
Cybersecurity Takes Center Stage
The past year has seen prominent data breaches and zero-day exploits put software security firmly in the spotlight. Headline-grabbing global attacks, such as those on the Colonial Pipeline and Microsoft Exchange, drove the White House to release an executive order on cybersecurity. More recently in early December 2021, arguably the most serious zero-day vulnerability ever, Log4j, left millions of people and organizations worldwide wondering how to reduce their risk exposure. “The increase in impact and volume of cyberattacks has highlighted the importance of a standardized and structured security program that minimizes systemic risk in software,” King said.
Seventy percent of application code comes from open source components,* yet according to Veracode’s State of Software Security report, 79 percent of the time third-party libraries are never updated after being included in software. Forrester, a leading global research and advisory firm, predicts software composition analysis (SCA) will experience the greatest growth in security scanning tools, at 25 percent CAGR from 2020 to 2025.*
Derek Costa, Vice President of IT Infrastructure at pharmacy integrator and care provider, Shields Health Solutions, said, “Making our software secure couldn’t be simpler with Veracode. Not only does Veracode software composition analysis reduce false positives by prioritizing vulnerabilities, it also looks for vulnerabilities in dependencies several layers deep. The product has saved us many hours of work by enabling us to detect open source vulnerabilities with extreme ease and accuracy, making DevSecOps a seamless experience.”