The news that private equity business Thoma Bravo is to acquire our rivals over at Veracode underlines that the application security space is quickly becoming one of the hottest sectors in the entire security industry.
It represents another very significant investment in our market by the well-respected PE business, following hot on the heels of its recently-announced purchase of firewall vendor Imperva for $2.1 billion. And earlier this summer, Imperva itself was on the acquisition trail, with its purchase of DevOps security business Prevoty.
From our perspective, it’s worth noting that this kind of acquisition activity has a strong rationale behind it, and that application security businesses that don’t just offer a single technology but a variety of application security solutions are ultimately the most successful and valuable. Veracode has static application security testing (SAST), dynamic application security testing (DAST) and software composition analysis (SCA). Imperva offers web application firewalls (WAF) and runtime application self-protection (RASP). This approach matches our strategy to offer a complete product solution platform to help solve our customer needs.
The growing importance of DevSecOps as a specialist discipline, for example, is also significant. We believe that it’s a great time to be strongly positioned to meet the needs of the many businesses who are investing heavily in DevOps and need their systems to be secure.
Veracode’s recent State of Software Security report found that DevSecOps can overcome the volume and persistence of software flaws—supporting WhiteHat’s own 2018 Application Security Statistics Report findings, which served as a call to arms for DevOps teams. It revealed that serious vulnerabilities continue to increase across all major industries. Additionally, enterprises are still struggling with long windows of exposure to these vulnerabilities, and high times to fix, which has driven up security risk levels compared with last year’s report.
The efforts we are making in the DevSecOps space are an important part of our strategy, and we are releasing new versions of SAST and are expanding the reach of our SCA to meet the DevSecOps needs of our customers.
Here at WhiteHat, application security is front of mind, and we believe we are in the right space at the right time. We are focused on winning more new customers, and retaining, then growing, the ones we have, plus building out our channel strategy to support companies of all sizes.
This is an exciting time, and I believe that acquisition news such as this propels the market forward as a whole. We are delighted to be a growing part of it.