This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Corporate Supporter Bios"

From OWASP
Jump to: navigation, search
(Contributor Corporate Members)
(updated scsk bio)
 
(123 intermediate revisions by 3 users not shown)
Line 1: Line 1:
 
Disclaimer: Corporate Supporter Bios are not endorsements and reflect the message of the supporter only.
 
Disclaimer: Corporate Supporter Bios are not endorsements and reflect the message of the supporter only.
 +
 +
== '''Elite Corporate Members''' ==
 +
{| class="wikitable"
 +
|-
 +
| {{MemberLinksv2|link=https://www.allstate.com/|logo=All line hor tag cmyk pos.jpg}} ||Allstate Corporation is the largest publicly held personal lines property and casualty insurer in America, serving more than 16 million households nationwide.  Founded in 1931, Allstate has been dedicated to protecting our customers from life’s uncertainties and preparing them for the future for more than 85 years.  As the needs of our customers evolve, so does our technology and security practices to ensure our customers remain in good hands. ||https://www.allstate.com/
 +
|-
 +
| {{MemberLinksv2|link=https://www.pwc.co.uk/cybersecurity|logo= Pwc.png}} ||Our purpose is to build trust in society and solve important problems. In today's digital world that requires a focus on cybersecurity in order to build a secure digital society. We help clients across society to understand their cybersecurity risk; build and assure their defenses; identify and respond to attacks, and to navigate the complex legal and regulatory environment for cybersecurity. For more information please visit www.pwc.co.uk/cybersecurity ||http://www.pwc.co.uk/cybersecurity
 +
|}
  
 
== '''Premier Corporate Members''' ==
 
== '''Premier Corporate Members''' ==
Line 9: Line 17:
 
| {{MemberLinksv2|link=http://www.adobe.com|logo=Adobe_logo_standard_for_Tasha.jpg|size=300px90px}} ||Adobe is the global leader in digital marketing and digital media solutions. Our tools and services allow our customers to create groundbreaking digital content, deploy it across media and devices, measure and optimize it over time, and achieve greater business success. We help our customers make, manage, measure, and monetize their content across every channel and screen. ||http://www.adobe.com/
 
| {{MemberLinksv2|link=http://www.adobe.com|logo=Adobe_logo_standard_for_Tasha.jpg|size=300px90px}} ||Adobe is the global leader in digital marketing and digital media solutions. Our tools and services allow our customers to create groundbreaking digital content, deploy it across media and devices, measure and optimize it over time, and achieve greater business success. We help our customers make, manage, measure, and monetize their content across every channel and screen. ||http://www.adobe.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.cmegroup.com/|logo=CME_Group_logo_300px_wide_(2).png}} ||As the world’s leading and most diverse derivatives marketplace, CME Group (www.cmegroup.com) is where the world comes to manage risk. Through its exchanges, CME Group offers the widest range of global benchmark products across all major asset classes, including futures and options based on interest rates, equity indexes, foreign exchange, energy, agricultural products and metals.  CME Group provides electronic trading globally on its CME Globex platform.  The company also offers clearing and settlement services through its clearinghouses CME Clearing and CME Clearing Europe.  CME Group’s products and services ensure that businesses around the world can effectively manage risk and achieve growth. ||http://www.cmegroup.com/
+
|{{MemberLinksv2|link=https://www.hackerone.com/|logo=HackerOne_Logo_.jpg}} ||HackerOne (www.hackerone.com) is the #1 hacker-powered security platform, helping organizations receive and resolve critical vulnerabilities before they can be exploited. More than 1,000 organizations, including the U.S. Department of Defense, U.S. General Service Administration, General Motors, Twitter, GitHub, Nintendo, Panasonic Avionics, Qualcomm, Square, Starbucks, Dropbox and the CERT Coordination Center trust HackerOne to find critical software vulnerabilities. HackerOne customers have resolved over 57,000 vulnerabilities and awarded over $22M in bug bounties. HackerOne is headquartered in San Francisco with offices in London and the Netherlands. ||https://www.hackerone.com/
|-
 
| {{MemberLinksv2|link=http://www8.hp.com/us/en/software-solutions/application-security/index.html|logo=FORTIFY_LOGO_MED.jpg|size=300px90px}} ||Fortify is the only solution that secures and protects code throughout the entire development lifecycle of any type of software—from development to testing, release to production and every iteration in between. Fortify static, dynamic, interactive, and runtime security testing technologies are available on demand or through several licensing models, offering organizations the flexibility needed to build an end-to-end software security assurance program.
 
||http://www8.hp.com/us/en/software-solutions/application-security/index.html
 
 
|-
 
|-
| {{MemberLinksv2|link=http://www.qualys.com|logo=Qualys_2015_Logo.jpg |size=150px45px}} || Qualys, Inc. (NASDAQ: QLYS) is a pioneer and leading provider of cloud-based security and compliance solutions with over 8,800 customers in more than 100 countries, including a majority of each of the Forbes Global 100 and Fortune 100. The Qualys Cloud Platform and integrated suite of solutions help organizations simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand and automating the full spectrum of auditing, compliance and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including Accenture, BT, Cognizant Technology Solutions, Dell SecureWorks, Fujitsu, HCL Comnet, Infosys, NTT, Optiv, Tata Communications, Verizon and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA). For more information, please visit www.qualys.com. Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies. ||http://www.qualys.com
+
| |{{MemberLinksv2|link=https://www.netsparker.com/|logo=Netsparker-logo-transparent-h1000px-color.png}} ||Netsparker develops an industry leading automated web application security scanner. Available as Windows desktop software and as a Cloud service, the Netsparker scanner is very easy to use and its proof-based vulnerability scanning technology enables you to easily and automatically detect SQL Injection, Cross-site scripting and other vulnerabilities in your websites, web applications and web services. Netsparker’s unique scanning, detection and auto exploitation techniques allow it to be dead accurate. Therefore you do not have to waste time manually verifying the scanner’s findings and instead can focus on fixing the identified vulnerabilities. Netsparker is trusted and used by world renowned companies such as Samsung, Ernst & Young, Skype, NASA, ISACA and ING Bank. || https://www.netsparker.com
 
|-
 
|-
| {{MemberLinksv2|link=https://www.salesforce.com|logo=Salesforce_logo.png|size=300px90px}} || ||http://www.salesforce.com
+
| {{MemberLinksv2|link=http://www.qualys.com|logo=Qualys-1_-_small_(2).jpg}} || Qualys is a pioneer and leading provider of cloud-based security and compliance solutions. The Qualys Cloud Platform and its integrated apps - including Web Application Scanning (WAS) - help businesses simplify security operations and lower the cost of compliance by delivering critical security intelligence and automating the full spectrum of auditing, compliance, and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including Accenture, BT, Cognizant Technology Solutions, Deutsche Telekom, Fujitsu, HP Enterprise, IBM, Infosys, NTT, Optiv, SecureWorks, Tata Communications, Verizon, and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA).||https://www.qualys.com
 
|-
 
|-
| {{MemberLinksv2|link=https://securityinnovation.com|logo=SIlogostacked.png}} || Since 2002, organizations have relied on Security Innovation for their unique software and application security expertise to help secure and protect sensitive data in the most challenging environments - automobiles, desktops, web applications, mobile devices and in the cloud. Recognized as a Leader in the Gartner Magic Quadrant for Security Awareness for the third year in a row, Security Innovation is dedicated to making the world (and your organization) a safer place, one employee and one application at a time. Security Innovation is privately held and headquartered in Wilmington, MA USA. For more information, visit www.securityinnovation.com. ||https://securityinnovation.com
+
| {{MemberLinksv2|link=https://www.salesforce.com/|logo=Salesforce_logo.png|size=300px90px}} ||Salesforce is the world’s #1 customer relationship management (CRM) platform. Our cloud-based applications for sales, service, marketing, and more don’t require IT experts to set up or manage — simply log in and start connecting to customers in a whole new way. ||https://www.salesforce.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.signalsciences.com|logo= Signal_Sciences_Logo_(300px).png|size=300px90px}} ||Signal Sciences is the industry’s first Web Protection Platform using both Next Generation WAF as well as RASP technologies. Signal Sciences WPP was built in response to our own frustrations of trying to use legacy WAFs while enabling business initiatives like DevOps, cloud adoption and CI/CD. The Signal Sciences NGWAF works seamlessly across cloud, physical, and containerized infrastructure, providing security without breaking production traffic. ||http://www.signalsciences.com
+
| {{MemberLinksv2|link=http://www.signalsciences.com|logo= Sigsci-logo_primary_(1).png|size=300px90px}} ||Signal Sciences secures the most important web applications, APIs, and microservices of the world's leading companies. Our next-gen WAF and RASP help you increase security and maintain site reliability without sacrificing velocity, all at the lowest total cost of ownership. Learn how our patented approach can help you. ||http://www.signalsciences.com
 
|-
 
|-
| |{{MemberLinksv2|link=http://waratekinc.com/|logo=Waratek_Horz_Proc201.jpg}} ||Traditional security approaches are not enough to protect your applications and your customers’ data from today’s threats. Waratek is an award-winning pioneer in the next generation of application security solutions known as Runtime Application Self-Protection or RASP. Based on virtualization, Waratek’s solutions are highly accurate, easy to install, simple to operate, and do not slow application performance – providing protection against known and unknown vulnerabilities in current and legacy software. Based in Dublin, Ireland and Atlanta, Georgia, USA, Waratek is the winner of the 2015 RSA Innovation Sandbox Award. || http://waratekinc.com
+
|||||
 
|-
 
|-
 
|}
 
|}
 +
 
==''' Contributor Corporate Members '''==
 
==''' Contributor Corporate Members '''==
 
{| class="wikitable"
 
{| class="wikitable"
Line 33: Line 39:
  
 
|-
 
|-
| {{MemberLinksv2|link=https://www.accenture.com|logo= Accenture Logo.png}} ||Accenture is a leading global professional services company, providing a broad range of services and solutions in strategy, consulting, digital, technology and operations. Combining unmatched experience and specialized skills across more than 40 industries and all business functions—underpinned by the world’s largest delivery network—Accenture works at the intersection of business and technology to help clients improve their performance and create sustainable value for their stakeholders. With more than 394,000 people serving clients in more than 120 countries, Accenture drives innovation to improve the way the world works and lives. Visit us at www.accenture.com. || https://www.accenture.com
+
| {{MemberLinksv2|link=http://www.acunetix.com|logo=Acunetix_logo_200.png‎|size=150x45px}} ||Acunetix’s team of experienced engineers developed a lead in website, web application, and Internet-facing server analysis and vulnerability detection. Available both on-premise and online, Acunetix uses deep crawling techniques to detect exploitable vulnerabilities such as SQL injection, and all forms of Cross-Site scripting – while providing concise vulnerability reports and information on how to fix them allowing you to protect your business against impending hacker attacks. Acunetix customers include Cisco, NASA, American Express, Sony, HSBC, The Pentagon, Skype, and many more. You can find us online at www.acunetix.com.||http://www.acunetix.com
 +
|-
 +
|{{MemberLinksv2|link=http://www.altitudenetworks.com/|logo=Altitude_Networks.jpg}} ||Altitude Networks tackles data security in the cloud to protect enterprises against unauthorized data access, accidental or malicious sharing to unintended individuals, and data theft.||http://www.altitudenetworks.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.acunetix.com|logo=Acunetix_logo_200.png‎|size=150x45px}} ||Acunetix’s team of experienced engineers developed a lead in website, web application, and Internet-facing server analysis and vulnerability detection. Available both on-premise and online, Acunetix uses deep crawling techniques to detect exploitable vulnerabilities such as SQL injection, and all forms of Cross-Site scripting – while providing concise vulnerability reports and information on how to fix them allowing you to protect your business against impending hacker attacks. Acunetix customers include Cisco, NASA, American Express, Sony, HSBC, The Pentagon, Skype, and many more. You can find us online at www.acunetix.com.||http://www.acunetix.com
+
|{{MemberLinksv2|link=https://aon.com/cyber-solutions|logo=Aon_Logo_Red_Tagline_RGB_-_Edited.png}} ||Aon’s Cyber Solutions offers holistic cyber security, risk and insurance management, investigative skills, and proprietary technologies to help clients uncover and quantify cyber risks, protect critical assets, and recover from cyber incidents.
 +
Cyber security services provided by Stroz Friedberg Limited and its affiliates. Cyber risk services provided by Aon UK Limited and its affiliates
 +
| https://aon.com/cyber-solutions
 
|-
 
|-
| {{MemberLinksv2|link=https://www.arxan.com/|logo=Arxan_Logo_for_OWASP-_Resized.jpg}} || Arxan is the trusted global leader in end- to- end Application Protection and Management solutions for Mobile, JavaScript, IoT and other applications that reside in unsecured environments. We protect our customers against financial loss, brand damage, fraud, IP theft, stolen credentials, fraudulent transactions, unauthorized access, non-compliance with regulatory and industry standards. Arxan’s enterprise level solutions enable the trust our customers need  to confidently build and distribute their most valuable applications.
+
|{{MemberLinksv2|link=https://www.arxan.com/|logo=Arxan-logo-stacked_tagline_CMYK.png}} ||Arxan, the global trusted leader of application protection solutions, delivers the confidence to build, deploy, and manage an organization’s most innovative and valuable applications. Currently protecting more than 1 billion application instances across industries including financial services, mobile payments, healthcare, automotive, gaming, and entertainment, the company provides the industry’s most comprehensive application protection solution. Unlike legacy security providers that rely on perimeter-based barriers to keep bad actors out, Arxan protects applications at the source and binary code level to expand the area of trust and provides a broad range of enterprise services and patented security capabilities such as code hardening, obfuscation, encryption, and Whitebox cryptography. Founded in 2001, the company is headquartered in North America with global offices in EMEA and APAC. ||https://www.arxan.com/
 
 
We are currently protecting applications running on more than 1 billion devices across a range of industries, including: financial services, mobile payments, and healthcare (connected medical devices)
 
 
 
The company’s headquarters and engineering operations are based in San Francisco with global offices in EMEA and APAC.
 
|https://www.arxan.com
 
 
|-
 
|-
| {{MemberLinksv2|link=https://www.aspectsecurity.com|logo=Aspect_Logo.png‎‎|size=150x45px}} ||Aspect Security, founded in 2002, is a consulting firm focused exclusively on application security products and services. We help ensure that the software that drives business is protected against hackers. Aspect’s Security Engineers analyze, test and validate approximately 5,000,000 lines of code a month, most of which are critical to the national infrastructure. Our work unearths over 10,000 vulnerabilities every year across a wide range of technologies and architectures. Our recommendations dramatically improve our clients’ security posture. We support a worldwide clientele with critical applications in the government, defense, financial, healthcare, services and retail sectors. Our educational division has taught tens of thousands of people around the world how to build, test, and deploy secure applications, making us a world leader in application security training. Flexible delivery options include instructor-led training either in-person or via webcast, or, on-demand through our innovative eLearning curriculum. Aspect Security’s principals are pioneers in the field, having started one of the world’s first application security practices in 1998. They conceived of several industry-leading standards, such the OWASP Top Ten, WebGoat, the Application Security Verification Standard (ASVS), Risk Rating Methodology and Enterprise Security API (ESAPI).  These free and open materials are downloaded over 50,000 times a month. We are a founding member of the Open Web Application Security Project (OWASP) in support of educating organizations about the ever-changing threat landscape and how to properly build and secure applications.  Headquartered in Columbia, MD, our personnel are located throughout the United States serving our worldwide clientele. ||https://www.aspectsecurity.com
+
|{{MemberLinksv2|link=https://avatao.com/|logo=Avataologo_blue.png}} ||Avatao is an online training platform for building secure software. It offers a rich library of hands-on IT security exercises for software engineers to teach secure programming from design to deployment in a fun and intuitive way. Educating for secure software can significantly improve software quality, increase trust in a company’s brand, reduce development costs and reduce the risks of suffering significant losses from cyber-attacks. In today’s world, secure software development practices are a basic requirement and we believe the solution should be integrated into the ground roots of software development teams. The platform can be used to provide security awareness to software engineers, to enrich existing IT security training, meetups or allow self-directed learning for continuous professional development. Avatao hackathons are also an excellent method to discover talented developers and engage and build brand awareness in the community. Avatao is a creation out of CrySyS Lab, world-renowned experts in IT security. Learning communities like business teams use Avatao for an improved and efficient learning experience. Mid-size and large software and financial companies use Avatao’s gamified online training to organize security hackathons, onboard new hires or upskill software developers to build secure software. The Avatao platform was publicly launched in 2016 for end-users and business customers. Initial customers include LogMeIn (US), Prezi (HU), Microsec (HU), Emarsys (HU), Photobox (UK), and many other companies are piloting the platform including Fortune 100 companies. Avatao currently has 5000+ users and 500+ exercises. ||https://avatao.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.astechconsulting.com|logo=Astech.jpg‎|size=150x45px}} ||AsTech has been helping companies manage Internet risk since 1997 - from vulnerability discovery through optimizing a Secure Software Development Lifecycle. By understanding our clients’ unique risk appetites and business objectives, our processes bring strategic focus to application security initiatives.  AsTech provides source code security assessments, graybox vulnerability testing, source code risk remediation and secure development training.  We also offer process automation and integration services application security eco-systems - enabling communication between vulnerability scanners, WAFs, GRC platforms, and bug-tracking systems. We deliver scalable, customized solutions designed to meet your organization’s unique requirements. Visit: www.astechconsulting.com Call: 1.888.777.5995 Twitter: @AsTech_infosec LinkedIn: http://www.linkedin.com/company/astech-consulting ||http://www.astechconsulting.com
+
|{{MemberLinksv2|link=https://www.avinetworks.com|logo=Avi_logo_White_hiRes.jpg}} ||Avi Networks completes enterprises’ digital transformation with its software load balancer, intelligent Web Application Firewall, and modern application services. The Avi Vantage Platform is deployed across data centers and clouds, delivering better elasticity, intelligence, and cost savings by providing granular per-tenant and per-app services. Customers enjoy 5X faster application rollouts, actionable analytics, and 70% lower costs. ||https://www.avinetworks.com
 
|-
 
|-
| {{MemberLinksv2|link=https://www.blackducksoftware.com/|logo=BlackDuck_2017_Logo.png|size=150x45px}} ||Organizations worldwide use Black Duck’s industry-leading products to automate the process of securing and managing open source software, eliminating the pain related to security vulnerabilities, compliance and operational risk. Black Duck is headquartered in Burlington, MA, and has offices in San Jose, CA, London, Frankfurt, Hong Kong, Tokyo, Seoul and Beijing. For more information, visit www.blackducksoftware.com. ||https://www.blackducksoftware.com
+
| |{{MemberLinksv2|link=https://www.brinqa.com/|logo=Brinqa_Logo.png}} ||Brinqa is a leading provider of unified risk management – enabling stakeholders, governance organizations, and infrastructure and security teams to effectively manage technology risk at the speed of business. Brinqa software and cloud services leverage an organization’s existing investment in systems, security, and governance programs to identify, measure, manage and monitor risk. With Brinqa, organizations are reducing response time to emerging threats, impact to the business, and technology risk and compliance costs by over 50% through real-time risk analytics, automated risk assessments, prioritized remediation, actionable insights, and improved communication. Founded in 2008 by industry leaders in risk management with a proven track record in delivering cutting edge, innovative and cost-effective solutions. Brinqa’s award-winning software and cloud services are trusted by fortune 500 companies across risk disciplines such as information technology risk, vendor risk, and regulatory compliance risk. Brinqa is headquartered in Austin, Texas and has a global presence. ||https://www.brinqa.com/
 
|-
 
|-
|{{MemberLinksv2|link=http://www.brocade.com/vadc|logo=Brocade_logo.png}} || ||http://www.brocade.com/vadc
+
| {{MemberLinksv2|link=https://www.bugcrowd.com/|logo=Bugcrowd-logo-150-50.png}} || ||https://www.bugcrowd.com/
 
|-
 
|-
 
| {{MemberLinksv2|link=http://www.ca.com/us/default.aspx|logo=CA_logo_150x168px.jpg}} ||CA Technologies helps customers succeed in a future where every business—from apparel to energy—is being rewritten by software. From planning to development to management to security, at CA we create software that fuels transformation for companies in the application economy. Learn more at https://www.ca.com/us.html || https://www.ca.com/us.html
 
| {{MemberLinksv2|link=http://www.ca.com/us/default.aspx|logo=CA_logo_150x168px.jpg}} ||CA Technologies helps customers succeed in a future where every business—from apparel to energy—is being rewritten by software. From planning to development to management to security, at CA we create software that fuels transformation for companies in the application economy. Learn more at https://www.ca.com/us.html || https://www.ca.com/us.html
 
|-
 
|-
| |{{MemberLinksv2|link=https://www.checkmarx.com/|logo=Checkmarx logo b.jpg}} ||Checkmarx is an Application Security software company, whose mission is to provide enterprise organizations with application security testing products and services that empower developers to deliver secure applications. Amongst the company's 1,000 customers are 5 of the world's top 10 software vendors and many Fortune 500 and government organizations. Checkmarx CxSAST is a highly accurate and flexible Source Code Analysis product that allows organizations to automatically scan un-compiled/un-built code and identify hundreds of security vulnerabilities in the most prevalent coding languages. Learn more at www.checkmarx.com. ||https://www.checkmarx.com
+
| |{{MemberLinksv2|link=https://www.cequence.ai/|logo=Cequence-logo-blue-horizontal-full_-_Edited.jpg}} || Cequence Security is a venture-backed cybersecurity software company founded in 2015 and based in Sunnyvale, CA. Its mission is to transform application security by consolidating multiple innovative security functions within an open, AI-powered software platform that protects customers web, mobile, and API-based applications – and supports today’s cloud-native, container-based application architectures. The company is led by industry veterans that previously held leadership positions at Palo Alto Networks and Symantec. Customers include F500 organizations across multiple vertical markets, and the solution has earned multiple industry accolades. Learn more at www.cequence.ai. ||https://www.cequence.ai/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.ciphertechs.com|logo=CipherTechs_logo_USA_72dpi-01.png}} ||Headquartered in downtown Manhattan, CipherTechs, Inc. is a privately held information security services provider. We focus on delivering security solutions for businesses harnessing the power of Internet communications. We audit, design and implement information security solutions in areas of IP networking, firewalls, application security, risk assessment, traffic management, encryption, redundancy and strong authentication. ||http://www.ciphertechs.com
+
| |{{MemberLinksv2|link=https://www.checkmarx.com/|logo=Checkmarx-logo-2019-horizontal - Edited.png}} ||Checkmarx is an Application Security software company, whose mission is to provide enterprise organizations with application security testing products and services that empower developers to deliver secure applications. Amongst the company's 1,000 customers are 5 of the world's top 10 software vendors and many Fortune 500 and government organizations. Checkmarx CxSAST is a highly accurate and flexible Source Code Analysis product that allows organizations to automatically scan a un-compiled/un-built code and identify hundreds of security vulnerabilities in the most prevalent coding languages. Learn more at www.checkmarx.com. ||https://www.checkmarx.com
 
|-
 
|-
| |{{MemberLinksv2|lnk=https://www.cloudflare.com/|logo=Cloudflare_logo.png}} ||Cloudflare, Inc. (www.cloudflare.com / @cloudflare) is on a mission to help build a better Internet. Today the company runs one of the world’s largest networks that powers more than 10 trillion requests per month, which is nearly 10 percent of all Internet requests for more than 2.5 billion people worldwide. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Websites powered by Cloudflare have all web traffic routed through its intelligent global network, which gets smarter with each new site added. As a result, they see significant improvement in performance and a decrease in spam and other attacks. Cloudflare was recognized by the World Economic Forum as a Technology Pioneer, named the Most Innovative Network & Internet Technology Company for two years running by the Wall Street Journal, and ranked among the world's 50 most innovative companies by Fast Company. Headquartered in San Francisco, CA, Cloudflare has offices in Austin, TX, Champaign, IL, Washington, DC, London, and Singapore. ||https://www.cloudflare.com
+
| {{MemberLinksv2|link=http://codedx.com/|logo=CodeDx-logo (1) (1).png|size=150x45px}} ||Code Dx is committed to reducing barriers to effective application security. Our automated application vulnerability correlation and management tools help find and fix insecure code faster, with less effort and a smaller team. Focus your precious resources on developing valuable new features, and ship secure code faster and more often. For more information, please visit https://codedx.com/ ||https://codedx.com/
 
|-
 
|-
| |{{MemberLinksv2|link=https://cobalt.io|logo=Cobalt_logo2.png}} ||Cobalt Labs Inc., provides a new and effective application security solution for modern organizations. Headquartered in San Francisco and launched in 2013, Cobalt leverages a global intelligent community of security researchers to deliver agile application security services such as pen tests and curated private bug bounties. Cobalt customers include leading online businesses such as Wix (NASDAQ: WIX), GoDaddy (NYSE: GDDY) and Paysafe Group (LON: PAYS). For more information, visit https://cobalt.io
+
| {{MemberLinksv2|link=https://www.contrastsecurity.com/|logo=Contrast_Logo_New.jpg}} ||Contrast Security delivers the world’s fastest application security software that eliminates the single greatest security risk to enterprises today. Industry research shows that application security flaws are the leading source of data breaches. Contrast can be deployed, automatically discover applications and identify vulnerabilities within seven minutes. Relying on sensors instead of expensive security experts, Contrast runs continuously and is 10 times more accurate than the competition. Unlike tedious, painful and slow legacy approaches, Contrast analyzes a complete portfolio of running applications simultaneously in real-time at any scale. As a result, organizations can act faster against threats and immediately reduce risk. More information on Contrast Security can be found at http://www.contrastsecurity.com/.  || http://www.contrastsecurity.com/
||https://cobalt.io
 
 
|-
 
|-
| {{MemberLinksv2|link=https://www.contrastsecurity.com/|logo=Contrast_Logo_New.jpg}} ||Contrast Security delivers the world’s fastest application security software that eliminates the single greatest security risk to enterprises today. Industry research shows that application security flaws are the leading source of data breaches. Contrast can be deployed, automatically discover applications and identify vulnerabilities within seven minutes. Relying on sensors instead of expensive security experts, Contrast runs continuously and is 10 times more accurate than the competition. Unlike tedious, painful and slow legacy approaches, Contrast analyzes a complete portfolio of running applications simultaneously in real time at any scale. As a result, organizations can act faster against threats and immediately reduce risk. More information on Contrast Security can be found at http://www.contrastsecurity.com/. || http://www.contrastsecurity.com/
+
| {{MemberLinksv2|link= https://www.cybozu.com/|logo=Cybozu_Logo_2017.png}} ||Cybozu is a Japanese cloud computing vendor founded in 1997. Its service supports effective team collaboration hence our services are widely used from large-scaled teams like multinational enterprises to small-scaled teams like volunteer groups, clubs even families. “kintone” is one of the Cybozu’s key products released in 2011. It is called "no-code application platform" which makes work more productive through business applications. It is recognized as one of the leading vendors in” Gartner 2016 Enterprise application Platform as a Service (aPaaS), Worldwide Magic Quadrant”. Cybozu has been focusing on security enhancement. It has started "bug bounty project" in 2013 to find any vulnerabilities which may exist in its product in order to provide its customers with the most secure service possible. || https://www.cybozu.com/
 
|-
 
|-
|{{MemberLinksv2|link=https://www.creditkarma.com|logo=Credit_Karma.jpg}} ||Credit Karma is re-engineering one of the largest industries in the world: consumer finance. At Credit Karma, we believe it is a fundamental right that all consumers should have free and comprehensive access to their credit and financial data, giving them the resources and information they need to easily take control of their financial health. We’re building a platform that brings new levels of transparency and certainty to consumer credit and finance with daily monitoring, data-driven consumer resources and personalized financial recommendations. ||https://www.creditkarma.com/careers#/
+
|{{MemberLinksv2|link= https://www.delltechnologies.com/en-us/index.htm |logo=DellTech_Logo_resized.png}} || Dell Technologies (NYSE: DELL) unique family of businesses that helps organizations and individuals build their digital future and transform how they work and live.  The company provides customers with the industry's broadest and most innovative technology and services portfolio spanning from edge to core to cloud. The Dell Technologies family includes Dell, Dell EMC, Pivotal, RSA, SecureWorks, Virtustream and VMware. ||https://www.delltechnologies.com/en-us/index.htm
 
|-
 
|-
| {{MemberLinksv2|link= https://www.cybozu.com/|logo=Cybozu_Logo_2017.png}} ||Cybozu is a Japanese cloud computing vendor founded in 1997. Its service supports effective team collaboration hence our services are widely used from large-scaled teams like multinational enterprises to small-scaled teams like volunteer groups, clubs even families. “kintone” is one of the Cybozu’s key products released in 2011. It is called "no-code application platform" which makes work more productive through business applications. It is recognized as one of the leading vendors in” Gartner 2016 Enterprise application Platform as a Service (aPaaS), Worldwide Magic Quadrant”. Cybozu has been focusing on security enhancement. It has started "bug bounty project" in 2013 to find any vulnerabilities which may exist in its product in order to provide its customers with the most secure service possible. || https://www.cybozu.com/
+
| {{MemberLinksv2|link=http://www.denimgroup.com|logo=Dg_logo_stacked_hires_-_Edited.png}} ||Denim Group is the leading independent application security firm, serving as a trusted advisor to customers on matters of application risk and security. The company helps organizations assess and mitigate application security risk. Denim Group’s flagship ThreadFix platform accelerates the process of application vulnerability remediation, reflecting the company’s rich understanding of what it takes to fix application vulnerabilities faster.||http://www.denimgroup.com
 
|-
 
|-
| {{MemberLinksv2|link=http://www.denimgroup.com|logo=Denim-group.png|size=150x45px}} ||Denim Group is a custom software development firm skilled in large-scale development projects across multiple platforms, languages and applications. What makes Denim Group unique is that the company brings significant core competencies in software security to the table, offering an innovative blend of secure software development, testing and training capabilities that protect a company’s biggest asset, its data. Denim Group customers span an international client base of commercial and public sector organizations across the financial services, banking, insurance, healthcare and defense industries. Its depth of experience building large-scale software development systems in a secure fashion has made the company's leaders recognized experts in their fields. Denim Group has been recognized as one of the 5,000 Fastest Growing Company's by Inc. Magazine several years in a row, and has won multiple awards including its recent accolades as one of the best places to work in San Antonio.||http://www.denimgroup.com
+
| {{MemberLinksv2|link=https://duo.com/|logo=Duo_Logo_-_Green_(1).png}} ||Duo Security helps defend organizations against data breaches by making security easy and effective. Duo Beyond, the company's category-defining zero-trust security platform, enables organizations to provide trusted access to all of their critical applications, for any user, from anywhere, and with any device. The company is a trusted partner to more than 10,000 customers globally, including Dresser-Rand, Etsy, Facebook, K-Swiss, Random House, Yelp, Zillow, Paramount Pictures, and more. Founded in Michigan, Duo has offices in Ann Arbor and Detroit, as well as growing hubs in Austin, Texas; San Mateo, California; and London, UK.||https://duo.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.distilnetworks.com|logo=Distil-flat-logo-2.png}} ||Distil Networks, the global leader in bot detection and mitigation, is the only easy and accurate way to protect web applications from bad bots, API abuse, and fraud. With Distil, you automatically block 99.9% of malicious traffic without impacting legitimate users. Distil Web Security defends websites against web scraping, brute force attacks, competitive data mining, account takeovers, online fraud, unauthorized vulnerability scans, spam, man-in-the-middle attacks, digital ad fraud, and downtime. Distil API Security protects all types of APIs including those serving web browsers, mobile applications, and Internet of Things (IoT) connected devices. Distil API Security defends APIs against developer errors, integration bugs, automated scraping, and web and mobile hijacking. For more information on Distil Networks, visit us at http://www.distilnetworks.com or follow @DISTIL on Twitter. ||http://www.distilnetworks.com
+
|{{MemberLinksv2|link=https://www.entrustdatacard.com/|logo=Entrust DataCard logo.png|size=150x45px}} ||Consumers, citizens and employees increasingly expect anywhere-anytime experiences — whether they are making purchases, crossing borders, accessing e-gov services or logging onto corporate networks. Entrust Datacard offers the trusted identity and secure transaction technologies that make those experiences reliable and secure. Solutions range from the physical world of financial cards, passports and ID cards to the digital realm of authentication, certificates, and secure communications. With more than 2,000 Entrust Datacard colleagues around the world and a network of strong global partners, the company serves customers in 150 countries worldwide. For more information, visit www.entrustdatacard.com. ||https://www.entrustdatacard.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.fico.com|logo=FICO-logo-108px.gif‎‎|size=150x45px}} ||FICO (NYSE:FICO) delivers superior predictive analytics solutions that drive smarter decisions. The company's groundbreaking use of mathematics to predict consumer behavior has transformed entire industries and revolutionized the way risk is managed and products are marketed. FICO's innovative solutions include the FICO® Score — the standard measure of consumer credit risk in the United States — along with industry-leading solutions for managing credit accounts, identifying and minimizing the impact of fraud, and customizing consumer offers with pinpoint accuracy. Most of the world's top banks, as well as leading insurers, retailers, pharmaceutical businesses and government agencies rely on FICO solutions to accelerate growth, control risk, boost profits and meet regulatory and competitive demands. FICO also helps millions of individuals manage their personal credit health through www.myFICO.com. Founded in 1956, FICO introduced analytic solutions such as credit scoring that have made credit more widely available, not just in the United States but around the world. We have pioneered the development and application of critical technologies behind decision management. These include predictive analytics, business rules management and optimization. We use these technologies to help businesses improve the precision, consistency and agility of their complex, high–volume decisions. ||http://www.fico.com
+
| {{MemberLinksv2|link=https://www.facebook.com/whitehat/report/|logo=Facebook-06-2015-Blue-on-White_(2).png}} ||Facebooks AppSec team is focused on discovering vulnerabilities and crafting creative solutions to eliminate them. We achieve this by doing code and design reviews, building tools, and automation, and manage our bug bounty program. Come to our booth to find out more and sign-up to win a FREE Oculus Go. ||https://www.facebook.com/whitehat/report/
 
|-
 
|-
|{{MemberLinksv2|link=http://fortinet.com|logo=Fortinet-Logo-for-OWASP.png‎|size=150x45px}} ||Fortinet (NASDAQ: FTNT) helps protect networks, users and data from continually evolving threats. As a global leader in high-performance network security, we enable businesses and governments to consolidate and integrate stand-alone technologies without suffering performance penalties. Unlike costly, inflexible and low-performance alternatives, Fortinet solutions empower customers to embrace new technologies and business opportunities while protecting essential systems and content. Learn more at www.fortinet.com. || http://fortinet.com  
+
| |{{MemberLinksv2|link=https://www.fortinet.com/|logo=Fortinet-Logo-for-OWASP.png}} || ||https://www.fortinet.com/
 
|-
 
|-
| |{{MemberLinksv2|link=https://www.fraunhofer.de|logo=Fraunhofer_logo.jpg|size=150x45px}} || ||https://www.fraunhofer.de
+
|{{MemberLinksv2|link=https://www.gemalto.com/|logo=Gemalto_Logo.jpg}} || ||https://www.gemalto.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.gosecure.ca|logo=Gosecure_word_red.jpg |size=150x45px}} ||At GoSecure, our reason for being is to protect your IT assets and allow you to focus on business. As a cybersecurity services provider, our offering is focused on increased security operations ROI, cutting-edge security testing for IT and facilitating integrated security in new or existing software and hardware systems. Strengthened by over a decade of experience dedicated exclusively to cybersecurity, our team has had to deal with a wide gamut of security breaches and threats and stands today as a group of leaders in technologically complex security mandates in the industry. We continue to invest in advanced security research with our private and public partners. For us, security only makes sense when it serves the best interest of your organization and helps you reach your goals. You can count on us as your long-term partner in assessing and developing all the elements of your technical security for current and future threats. Our clients recognize us as the partner of choice for operationalization of their security strategy as we excel at making security work “where the rubber meets the road”. We offer a full range of managed security services from our two security operations centers. || http://www.gosecure.ca
+
| {{MemberLinksv2|link=https://gosecure.net/|logo=Logo_Gosecure_(1).png}} || || https: / gosecure.  
 
|-
 
|-
| {{MemberLinksv2|link=http://www.gdssecurity.com|logo=GDS_LOGO_SMALL.jpg‎|size=150x45px}} ||Gotham Digital Science (GDS) is an international security services company specializing in Application and Network Infrastructure security, and Information Security Risk Management. GDS clients number among the largest financial services institutions and software development companies in the world. GDS security specialists work with clients to assess risk and then design, build, and maintain secure applications, networks, and processes. With offices located in New York City and London, GDS seamlessly and efficiently assists clients with operations on both sides of the Atlantic. GDS is a member of CREST, the Council of Registered Ethical Security Testers, as well as a member of the UK Government CHECK scheme, allowing GDS to provide security assurance services to Her Majesty's Government and UK Critical National Infrastructure on systems processing protectively marked information. ||http://www.gdssecurity.com
+
|{{MemberLinksv2|link=https://www.here.com/en|logo=HERE_Logo_MFL_Horizontal_RGB.png|size=150x45px}} ||Mapping has always been about discovery. For centuries, two-dimensional maps guided us through the unknown to our destination. But we are no longer limited by the edges of our physical maps. In 1985, we began with the simple goal to digitize mapping and pioneer in-car navigation systems. Over the next three decades, as NAVTEQ and Nokia, we’ve built a legacy in mapping technology. Today, we're creating living three-dimensional maps that grow upwards, breathing with layers of information and insights. By partnering with world-leading automakers, we are powering 4 out of 5 in-car navigation systems in North America and Europe. But we’re not just on the road. We are capturing the world in three dimensions, readying for an autonomous future. And we’re looking beyond. From autonomous driving to the Internet of Things, we are building the future of location technology through strategic partnerships with industry leaders like Intel, NVIDIA, Mobileye, and Tencent.  With headquarters in Amsterdam and development sites that span Chicago to Berlin and across to Mumbai, we are a global team with a shared passion. From data scientists and software developers to product engineers and mapping specialists, we come together from many different backgrounds to build a better future for location technology. ||https://www.here.com/en
 
|-
 
|-
|{{MemberLinksv2|link=https://www.here.com|logo=HERE_Logo_MFL_Horizontal_RGB.png|size=150x45px}} ||HERE is a leader in navigation, mapping and location experiences. We build high-definition (HD) maps and combine them with cloud technology to help you and your business navigate a complex world with personalised solutions. Anytime, everywhere, across a broad range of devices, operating systems and vehicles.|| https://www.here.com
+
|{{MemberLinksv2|link=https://www.hisolutions.com/|logo=HiSolutions-Logo_150x45.jpg}} ||We combine know-how in the areas of security consulting, IT governance, risk & compliance with conceptual strength, innovation and implementation expertise. In addition to protecting applications and networks, our core competencies also include organizational tasks such as setting up security, risk, and service management system. HiSolutions AG is one of the leading consulting specialists for IT management and information security in Germany. More than 200 experts advise in the areas of security consulting, IT governance, business continuity management, and digitalization. We actively participate in the development of national and international standards and are involved in various research projects and university teachings. ||https://www.hisolutions.com
 
|-
 
|-
| |{{MemberLinksv2|link=http://www.huawei.com/en/|logo=Huawei.jpg}} || ||http://www.huawei.com
+
|{{MemberLinksv2|link=https://www.htbridge.com/|logo=High-Tech_Bridge.png}} ||High-Tech Bridge is a global provider of web and mobile Application Security Testing (AST) services. Our award-winning AST platform ImmuniWeb® combines the genius of Human Intelligence with the power of Artificial Intelligence and Machine Learning. ImmuniWeb® leverages Artificial Intelligence (AI) and Machine Learning (ML) for intelligent automation of application vulnerability scanning and acceleration of application penetration testing. High-Tech Bridge's security experts from our CREST-accredited SOC look for the most complicated application vulnerabilities and attack vectors in instant synchronization and correlation with automated vulnerability scanning. Invented by High-Tech Bridge, this type of hybrid security testing, enhanced with AI/ML, delivers the most comprehensive vulnerability detection rate, continuously reduces human intervention without impacting the quality of testing, and contractually guarantees zero false-positives to every customer. ||https://www.htbridge.com
 
|-
 
|-
|{{MemberLinksv2|link=http://www.imperva.com|logo=IMPV_logo_RGB_300_TRIM-3.jpg|size=150x45px}} ||Imperva® (NYSE:IMPV), is a leading provider of cyber security solutions that protect business-critical data and applications. The company’s SecureSphere, Incapsula and Skyfence product lines enable organizations to discover assets and risks, protect information wherever it lives – in the cloud and on-premises – and comply with regulations. The Imperva Application Defense Center, a research team comprised of some of the world’s leading experts in data and application security, continually enhances Imperva products with up-to-the minute threat intelligence, and publishes reports that provide insight and guidance on the latest threats and how to mitigate them. Imperva is headquartered in Redwood Shores, California. Learn more: http://www.imperva.com, our blog , on Twitter. ||http://www.imperva.com
+
|{{MemberLinksv2|link=https://www.imperva.com/|logo=Imperva_logo.png}} ||Imperva is a leading provider of data and application security solutions that protect business-critical information in the cloud and on-premises. Founded in 2002, we have enjoyed a steady history of growth and success, generating $264 million in 2016, with over 5,200 customers and more than 500 partners in 100+ countries worldwide.||https://www.imperva.com/
 
|-
 
|-
 
|{{MemberLinksv2|link=http://www.informationbuilders.com|logo=IBI_Logo.jpg|size=150x45px}} ||Founded in 1975, Information Builders continues to deliver state-of-the-art technology that is transforming business in all commercial industries, government, and education. We remain one the largest independent, privately held companies in the software industry. Headquartered above Madison Square Garden in New York, Information Builders operates in more than 60 global locations and has built an active customer base of tens of thousands of major installations at the world's leading organizations. Information Builders is not only a major software supplier to our customers, but also a major provider to the leading software vendors in the industry including HP, IBM, Oracle, SAP, Teradata, and many others. In addition to our commitment to superior software engineering, we are equally proud of our people. Some of the most talented and creative professionals in the industry work at Information Builders and are passionate about what they do. In fact, the professionalism and tenure of our employees is often cited as a major differentiator by our customers. Our reputation for customer service has garnered us the highest honors from “CRM” magazine, the SSPA, and the American Business Awards. Our products and services have received top recognition from independent analyst research firms including Gartner, Forrester, Ventana Research, BARC, Butler, Bloor, and The Data Warehouse Institute (TDWI). Most importantly, our customers have received the most information technology and business awards for their accomplishments. More than 50 of our customers have had their information systems inducted into the Smithsonian Institute for superior information technology achievement through the Computerworld Honors Program. http://www.informationbuilders.com/about_us ||http://www.informationbuilders.com
 
|{{MemberLinksv2|link=http://www.informationbuilders.com|logo=IBI_Logo.jpg|size=150x45px}} ||Founded in 1975, Information Builders continues to deliver state-of-the-art technology that is transforming business in all commercial industries, government, and education. We remain one the largest independent, privately held companies in the software industry. Headquartered above Madison Square Garden in New York, Information Builders operates in more than 60 global locations and has built an active customer base of tens of thousands of major installations at the world's leading organizations. Information Builders is not only a major software supplier to our customers, but also a major provider to the leading software vendors in the industry including HP, IBM, Oracle, SAP, Teradata, and many others. In addition to our commitment to superior software engineering, we are equally proud of our people. Some of the most talented and creative professionals in the industry work at Information Builders and are passionate about what they do. In fact, the professionalism and tenure of our employees is often cited as a major differentiator by our customers. Our reputation for customer service has garnered us the highest honors from “CRM” magazine, the SSPA, and the American Business Awards. Our products and services have received top recognition from independent analyst research firms including Gartner, Forrester, Ventana Research, BARC, Butler, Bloor, and The Data Warehouse Institute (TDWI). Most importantly, our customers have received the most information technology and business awards for their accomplishments. More than 50 of our customers have had their information systems inducted into the Smithsonian Institute for superior information technology achievement through the Computerworld Honors Program. http://www.informationbuilders.com/about_us ||http://www.informationbuilders.com
 
|-
 
|-
| {{MemberLinksv2|link=http://www.johnsoncontrols.com/content/us/en/products/building_efficiency/product-security.html|logo=Johnson_Controls.jpg}} ||Johnson Controls is a global diversified technology and industrial leader serving customers in more than 150 countries. Our 130,000 employees create quality products, services and solutions to optimize energy and operational efficiencies of buildings; lead-acid automotive batteries and advanced batteries for hybrid and electric vehicles; and seating components and systems for automobiles. Our commitment to sustainability dates back to our roots in 1885, with the invention of the first electric room thermostat. Through our growth strategies and by increasing market share we are committed to delivering value to shareholders and making our customers successful. In 2015, Corporate Responsibility Magazine recognized Johnson Controls as the #14 company in its annual “100 Best Corporate Citizens” list.”||http://www.johnsoncontrols.com/content/us/en/products/building_efficiency/product-security.html
+
|{{MemberLinksv2|link=https://www.ipswitch.com/|logo=Ipswitch_logo.png}} ||Ipswitch is an IT management software developer for small and medium-sized businesses. The company was founded in 1991 and is headquartered in Burlington, Massachusetts and has operations in Atlanta (Alpharetta) and Augusta, Georgia, American Fork, Utah, Madison, Wisconsin and Galway, Ireland. Ipswitch sells its products directly, as well as through distributors, resellers, and OEMs in the United States, Canada, Latin America, Europe, and the Pacific Rim. ||https://www.ipswitch.com/
 +
|-
 +
|{{MemberLinksv2|link=www.iriusrisk.com|logo=Logo_irius_150_45.png}} ||IriusRisk makes DevSecOps a reality with its pioneering threat modeling and SDL risk management platform. IriusRisk is a powerful tool to ensure security is woven into the design phase and followed up into production. It operates as a central orchestration point for teams to threat model and manage risk with real-time updates throughout the SDL. Built for integration, simplicity, scale, and speed, IriusRisk is the glue to bind Security, Operations & Development together. IriusRisk is a trusted partner of some of the largest financial institutions in the world and we pride ourselves on being fast to adapt, agile, flexible, responsive and ahead of the curve. IriusRisk operates globally and stands ready to partner with you. Contact us for more information and to request a demo. || www.iriusrisk.com
 +
|-
 +
| {{MemberLinksv2|link=http://www.johnsoncontrols.com/content/us/en/products/building_efficiency/product-security.html|logo=Johnson_Controls.jpg}} ||Johnson Controls is a global diversified technology and industrial leader serving customers in more than 150 countries. Our 130,000 employees create quality products, services, and solutions to optimize energy and operational efficiencies of buildings; lead-acid automotive batteries and advanced batteries for hybrid and electric vehicles; and seating components and systems for automobiles. Our commitment to sustainability dates back to our roots in 1885, with the invention of the first electric room thermostat. Through our growth strategies and by increasing market share we are committed to delivering value to shareholders and making our customers successful. In 2015, Corporate Responsibility Magazine recognized Johnson Controls as the #14 company in its annual “100 Best Corporate Citizens” list.”||http://www.johnsoncontrols.com/content/us/en/products/building_efficiency/product-security.html
 
|-
 
|-
| {{MemberLinksv2|link=https://jscrambler.com/en/|logo=Jscrambler_Logo.png}} ||Jscrambler is the leader in JavaScript Application Integrity and the only to offer RASP capabilities to your JS applications.As JavaScript becomes the standard for building websites, hybrid mobile applications, or other application types, most of the code is still completely exposed. With Jscrambler you can make your application self-defensive and resilient to both tampering and reverse-engineering attempts. Jscrambler is trusted by hundreds of companies (including Fortune 500) around more than 130 countries and is supported by a team of JS experts. ||https://jscrambler.com/en/
+
| {{MemberLinksv2|link=https://jscrambler.com/en/|logo=Jscrambler-logo.jpg}} ||Jscrambler is the leader in JavaScript Application Integrity and the only to offer RASP capabilities to your JS applications.As JavaScript becomes the standard for building websites, hybrid mobile applications, or other application types, most of the code is still completely exposed. With Jscrambler you can make your application self-defensive and resilient to both tampering and reverse-engineering attempts. Jscrambler is trusted by hundreds of companies (including Fortune 500) around more than 130 countries and is supported by a team of JS experts. ||https://jscrambler.com/en/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.kiuwan.com/|logo=Kiuwan_Logo_150x45.png}} ||Kiuwan provides an end-to-end Software Analytics platform that offers objective data to make informed decisions ro secure, analyze and control the entire SDLC of any application portfolio. With Kiuwan Code Security, the scope in threat mitigation is unparalleled, with over 4000+ custom rules, ability to suppress defects and create tailored action plans while meeting the most stringent industry standard requirements. In constant evolution, it boasts broad language support and integration with Jira, Jenkins and Github to name but a few of the possibilities brought about by the platform. ||https://www.kiuwan.com/
+
|{{MemberLinksv2|link=https://www.kennasecurity.com/|logo=Kenna_Security_Logo.png}} ||Kenna Security provides a Risk and Vulnerability Intelligence platform that accurately measures risk and prioritizes remediation efforts before an attacker can exploit an organization’s weaknesses. Kenna accomplishes this by automating the integration of customer’s vulnerability scan data with exploit intelligence data from multiple sources, including 0-day data. Kenna then analyzes the data against active Internet breaches to identify the most critical threats before hackers can attack. 
 +
||https://www.kennasecurity.com/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.nccgroup.trust/us/|logo=NCC_.png}} || ||https://www.nccgroup.trust/us
+
| {{MemberLinksv2|link=https://www.kiuwan.com/|logo=Kiuwan_Logo_150x45.png}} ||Kiuwan provides an end-to-end Software Analytics platform that offers objective data to make informed decisions to secure, analyze and control the entire SDLC of any application portfolio. With Kiuwan Code Security, the scope in threat mitigation is unparalleled, with over 4000+ custom rules, ability to suppress defects and create tailored action plans while meeting the most stringent industry standard requirements. In constant evolution, it boasts broad language support and integration with Jira, Jenkins, and Github to name but a few of the possibilities brought about by the platform. ||https://www.kiuwan.com/
 
|-
 
|-
| |{{MemberLinksv2|link=https://www.netsparker.com/|logo=Netsparker_Logo.png}} ||Netsparker develops an industry leading automated web application security scanner. Available as Windows desktop software and as a Cloud service, the Netsparker scanner is very easy to use and its proof-based vulnerability scanning technology enables you to easily and automatically detect SQL Injection, Cross-site scripting and other vulnerabilities in your websites, web applications and web services. Netsparker’s unique scanning, detection and auto exploitation techniques allow it to be dead accurate. Therefore you do not have to waste time manually verifying the scanner’s findings and instead can focus on fixing the identified vulnerabilities. Netsparker is trusted and used by world renowned companies such as Samsung, Ernst & Young, Skype, NASA, ISACA and ING Bank. || https://www.netsparker.com
+
| {{MemberLinksv2|link=http://mediatrust.com/|logo=TMT_Horiz_ShieldLogo_RGBGradient-Tagline_-_Edited.png}} || ‎The Media Trust is on a mission: fixing the internet. To make the internet a healthier, more valuable place for businesses, governments and consumers, The Media Trust’s centralized platform provides real-time visibility and insight into non-compliant activity and threats operating in enterprise website and mobile app environments. With an emphasis on third-party code beyond libraries, the platform identifies all executing code (including code from first, third and nth parties), analyzes its behavior, assesses compliance with company policies, and resolves violating behavior. The ability to manage third-party digital risk helps defend against website breaches which can lead to regulatory fines, revenue loss, and reputational harm. ||http://mediatrust.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.netspi.com|logo=Netspi_logo.png‎|size=150x45px}} ||NetSPI is a privately held information-security consulting company founded in 2001. By using its consulting team's deep security knowledge and its CorrelatedVM vulnerability management & reporting solution, the company is a trusted advisor to large enterprises. NetSPI provides a range of assessment and advisory services designed to analyze and mitigate risks and ensure compliance with relevant regulations and industry standards. Clients include large financial services firms, retailers, healthcare organizations and technology companies. ||http://www.netspi.com
+
|{{MemberLinksv2|link=https://about.mercari.com/en/|logo=Mercari_service_primary_horizontal_(1).png}} ||Mercari is a C2C marketplace app that makes it easy for people to safely sell and ship their things. Launched in 2013, it's now among the largest peer-to-peer selling platforms globally. From fashion to toys, shoes to electronics and beyond, Mercari's mission is to ‘create value in a global marketplace where anyone can buy and sell’. ||https://about.mercari.com/en/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.oneconsult.com/en/|logo=OneConsult_2016_logo.png}}||Oneconsult AG is a renowned Swiss cyber security consulting company with offices in Switzerland (Zurich and Bern) and Germany (Munich). We specialize in information and IT security and are your trustworthy partner for identifying, assessing, preventing and addressing information and IT security threats. Our core services are [https://www.google.com/url?hl=en&q=https://www.oneconsult.com/de/penetration-test/&source=gmail&ust=1488635091795000&usg=AFQjCNHT4_l9HYlrLc568oJ1-pTSy2SUgw penetration tests], [https://www.oneconsult.com/de/iso-27001-security-audit/ ISO 27001 security audits] and 24/7 [https://www.oneconsult.com/de/it-forensik/ incident response/IT forensics]. To protect your organization and mitigate specific information security risks, Oneconsult also offers practical [https://www.oneconsult.com/de/security-consulting/ security consulting], [https://www.google.com/url?hl=en&q=https://www.oneconsult.com/de/security-training/&source=gmail&ust=1488635091795000&usg=AFQjCNHd52-87vhi7orTxcf8RkgoyKaJBw security training] and [https://www.google.com/url?hl=en&q=https://www.oneconsult.com/de/security-officer-services-de/&source=gmail&ust=1488635091795000&usg=AFQjCNE8pHSSVwDSinsZurW1nI3eAjkmpw virtual security officer services]. Our technical tests for office IT, SCADA/ICS  and IoT devices cover (mobile) application penetration tests, ethical hacking, client audits, configuration and code reviews as well as reverse engineering and targeted exploit development for APT audits. Oneconsult’s dedicated security research team detects dozens of zero-day vulnerabilities per year in standard software. We have dedicated IT security researchers and a large team of certified penetration testers (OPST, OSCP, etc.), digital forensics experts (GCFE, GREM, etc.) and ISO security auditors (ISO 27001 Lead Auditor). Oneconsult has already carried out [https://www.google.com/url?hl=en&q=https://www.oneconsult.com/de/referenzen/&source=gmail&ust=1488635091795000&usg=AFQjCNGPj8y94YuINuIcVOziXFgszCDXKw 1300+ security projects] since 2003 and has become a trusted provider to 300+ organizations worldwide covering a wide variety of industries.||English: https://www.oneconsult.com/en/
+
| {{MemberLinksv2|link=http://www.netspi.com|logo=NETSPI_Logo_2017_PNG-01.png|size=150x45px}} ||NetSPI is a privately held information-security consulting company founded in 2001. By using its consulting team's deep security knowledge and its CorrelatedVM vulnerability management & reporting solution, the company is a trusted advisor to large enterprises. NetSPI provides a range of assessment and advisory services designed to analyze and mitigate risks and ensure compliance with relevant regulations and industry standards. Clients include large financial services firms, retailers, healthcare organizations and technology companies. ||http://www.netspi.com
 +
|-
 +
|{{MemberLinksv2|link=https://www.nowsecure.com/|logo=NowSecure150x45.png}} ||Only the NowSecure Platform delivers automated 360-degree coverage of mobile app security testing with the speed and depth modern enterprises require. The world’s most demanding organizations and advanced security teams trust NowSecure to identify the broadest array of security, privacy, and compliance gaps in custom, third-party, and business-critical mobile apps. ||https://www.nowsecure.com/
 +
|-
 +
| {{MemberLinksv2|link=https://www.oneconsult.com/en/|logo=Oneconsult_2018_logo.png|size=150x45px}}‎ ||Oneconsult group is your renowned Swiss cyber security services partner since 2003 with offices in Switzerland and Germany and 1500+ completed [https://www.google.com/url?hl=en&q=https://www.oneconsult.com/en/references/&source=gmail&ust=1518265556865000&usg=AFQjCNGmU2gOkH7NZzNBJMr-Fa6VUzw5NQ security projects] worldwide. Get expert advice from an owner-managed and vendor-independent consultancy with 35+ highly [https://www.oneconsult.com/en/team/ qualified cyber security experts], including certified penetration testers (OPST, OPSA, OSCP, OSCE, GXPN), digital forensics specialists (GCFA, GCFE, GREM), ISO security auditors (ISO 27001 Lead Auditor, ISO 27005 Risk Manager) and dedicated IT security researchers to solve even your most demanding information security challenges. Together we address your external and internal threats such as malware infections, hacker attacks and APT as well as digital fraud and data leakage with core services like [https://www.google.com/url?hl=en&q=https://www.oneconsult.com/en/penetration-test-en/&source=gmail&ust=1518265556866000&usg=AFQjCNHi0GC7EXHERYWB4vQF3qRgnoPMbg penetration tests / ethical hacking, real-life APT tests] and [https://www.oneconsult.com/en/iso-27001-security-audit/ ISO 27001 security audits]. In case of emergency, One consults [https://www.oneconsult.com/en/incident-response-it-forensics/ incident response & IT forensics] team supports you with around-the-clock expert assistance (24 h x 365 days).||English: https://www.oneconsult.com/en/
 
Deutsch: https://www.oneconsult.com/de/
 
Deutsch: https://www.oneconsult.com/de/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.optiv.com|logo=Optiv Logo.jpg|size=150x45px}} ||Created from the merger of Accuvant and FishNet Security, Optiv is the largest comprehensive pure-play cyber security solutions provider in North America. We help clients plan, build and run successful cyber security programs that achieve business objectives through our depth and breadth of cyber security offerings, extensive capabilities and proven expertise in cyber security strategy, managed security services, incident response, risk and compliance, security consulting, training and support, integration and architecture services, and security technology. A Blackstone (NYSE: BX) portfolio company, we have served more than 12,000 clients of various sizes across multiple industries, offer an extensive geographic footprint, and have premium partnerships with more than 300 of the leading security technology manufacturers. || https://www.optiv.com/
+
| {{MemberLinksv2|https://www.oracle.com/index.html|logo=Oracle_Logo_150_30.jpg}}||    ||https://www.oracle.com/index.html
 +
|-
 +
|{{MemberLinksv2|link= https://www.oxfordwebapps.co.uk/|logo=Oxfordwebapps-owasp-logo.png}} ||Since 1995 we have always developed the most up-to-date and progressive digital solutions designed to empower people. Our mission is to deploy the latest proven technology to deliver unique products with astounding performance. Our Oxford based team are responsible for delivering our full range of services which includes the design, development, hosting, supporting and testing of interactive Web Applications and websites.||https://www.oxfordwebapps.co.uk/
 +
|-
 +
|{{MemberLinksv2|link=https://www.panasonic.com/|logo=Panasonic_Logo.jpg}} ||100 years ago, Panasonic started with a desire to create things with value. Since then, the challenge has continued into various fields including home appliances to realize "A Better Life, A Better World".
 +
Considering product security as part of quality management, we have strived to improve the security of products. Specific activities include threat analysis during the design process, and vulnerability testing before shipment. After shipment, Panasonic PSIRT: Product Security Incident Response Team works to respond to incidents toward a quick resolution.
 +
To provide products that our customers can use with peace of mind, we will continue product security initiatives.
 +
||https://www.panasonic.com/
 +
|-
 +
|{{MemberLinksv2|link=http://tech.pingan.com/en/|logo=PingAn_Logo.png}} ||Ping An Technology (PATech), a wholly-owned subsidiary of Ping An Group, is committed to using AI, intelligent cognition, blockchain, cloud and other cutting-edge technologies to create a new cloud-based human life. PATech is the high-tech core and tech business incubator among Ping An Group, and be responsible for the development and operation of the critical platforms and services for the Group.  As an independent entity, with smart technology as a means and smart manufacturing as a blueprint, PATech focuses on the finance, healthcare and smart city areas, applies the technological capabilities certified by international authoritative certifications to actual business scenarios. || http://tech.pingan.com/en/
 +
|-
 +
| {{MemberLinksv2|link=http://www.rakuten.com|logo=Rakuten-Global-150x45_72dpi.JPG}} ||Rakuten, Inc. and its consolidated subsidiaries and affiliates ("Rakuten Group") are full-line Internet services companies. Since its founding in 1997, Rakuten, Inc. ("Rakuten") has spent a decade evolving its business model centered on e-commerce, to create a market completely new to Japan. The Rakuten Group is focusing on two approaches, in particular, to target growth in the decade to come. The first is to empower people and society through continuous innovation and business operations based on our five concepts of success. The second is to establish a "Rakuten eco-system" which enables us to maximize our customers lifetime value and leverage synergies. Guided by the key phrase "more than Web", the Rakuten Group is taking on the challenge of creating new value by driving convergence between the Internet and traditional "bricks and mortar" businesses. ||http://www.rakuten.com
 +
|-
 +
| {{MemberLinksv2|link=https://salt.security/ |logo=Salt_Logo@4x_-_Edited.png}} || Salt Security makes it safe to innovate by protecting the APIs at the core of every SaaS, web, mobile, microservices and IoT application. Our API Protection Platform is deployed in minutes, and requires no configuration or customization. We use patented behavioral protection to automatically and continuously discover and learn the granular behavior of each unique API to ensure protection. The company was founded in 2016 by alumni of the Israeli Defense Forces (IDF) and serial cybersecurity executives. In 2019 Salt Security was selected as a finalist for the RSA Innovation Sandbox and as the winner of the OWASP Innovation Fair.  ||https://salt.security/
 +
|-
 +
| {{MemberLinksv2|link=http://www.scsk.jp/index_en.html|logo=SCSK_Logo.jpg}} ||  SCSK provides a full lineup of services to support any area of IT solution required for businesses from system integration to IT infrastructure implementation, IT management, BPO(business process outsourcing), and IT hardware and software sales.In addition, we take advantage of the capability to support a global IT system network for customers including Sumitomo Corporation, aiming for further leaps ahead as a global IT services company. ||http://www.scsk.jp/index_en.html
 
|-
 
|-
| {{MemberLinksv2|link=http://www.oracle.com/us/support/assurance/index.html|logo=Oracle.jpg|size=150x45px}} ||Oracle is shifting the complexity from IT, moving it out of the enterprise by engineering hardware and software to work together—in the cloud and in the data center. By eliminating complexity and simplifying IT, Oracle enables its customers—400,000 of them in more than 145 countries around the world—to accelerate innovation and create added value for their customers. By engineering out the complexity that stifles business innovation, Oracle is engineering in speed, reliability, security, and manageability. The result is best-in-class products throughout an integrated stack of hardware and software, with every layer designed and engineered to work together according to open industry standards. Oracle's complete, open, and integrated solutions offer extreme performance at the lowest cost—all from a single vendor. Encompassing every phase of the product development lifecycle, Oracle Software Security Assurance is Oracle's methodology for building security into the design, build, testing, and maintenance of its products.  Oracle's goal is to ensure that Oracle's products, as well as the customer systems that leverage those products, remain as secure as possible.||http://www.oracle.com/us/support/assurance/index.html
+
|{{MemberLinksv2|link=https://www.securebrain.co.jp/eng/|logo=SBC_Hitachi_Group1_-_Edited.png}} ||SecureBrain (A Hitachi Group Company) is a leader in providing software and services to help protect enterprises and their customers against cybercrime including online fraud and malware attacks.
 +
To ensure that our customers are always protected from the latest trend of cybercrime, SecureBrain has its own advanced security research center. Team of security researchers works closely with many Japanese government research agencies to research and develop solutions against the latest cyber threats.  
 +
||https://www.securebrain.co.jp/eng/  
 
|-
 
|-
|{{MemberLinksv2|link=http://www.panasonic.com|logo=Panasonic_logoCorrectSize-Shape.jpg|size=150x45px}} || ||http://www.panasonic.com
+
|{{MemberLinksv2|link=https://www.securityjourney.com/|logo=Security_journeylogo_(1).png}}||Security Journey is the leader in application security education using security belt programs. We guide our clients – many in tech, healthcare, and finance – to building long-term, sustainable application security culture. We incorporate everything you need to deploy and manage an education program.
 +
Our cloud-based platform delivers application security lessons from an ever-growing library of content, provides hands-on, immersive experiments, measures student and organizational growth, rewards student achievements, and transforms an enterprise’s security culture.
 +
We promote security awareness organization-wide with learning that is engaging, motivating, and fun. In short, we provide security education developers, testers, and managers love. 
 +
||https://www.securityjourney.com/
 
|-
 
|-
|{{MemberLinksv2|linkhttps://www.parasoft.com/compliance/security//|logo=Parasoft2017Logo150x24.png|size=150x45px}} ||Parasoft helps organizations perfect today’s highly connected applications by automating time-consuming testing and analysis tasks while providing management the analytics necessary to focus on what matters – eliminating the deployment of security vulnerabilities that could lead to system failure, data loss, and loss of life.  Parasoft’s software security solution analyzes code, generates and executes tests, and processes the data collected throughout the SDLC to ensure compliance with security policy across all layers of the software stack. In addition, Parasoft can analyze and automatically prioritize defects that lead to security vulnerabilities and kick-off security verification and remediation tasks across the team. Learn more at www.parasoft.com/appsec||https://www.parasoft.com/appsec.
+
|{{MemberLinksv2|link=https://securecodewarrior.com/|logo=Scw_white_v_(3).png}} ||Secure Code Warrior is a global security company that makes software development better and more secure. Our vision is to empower developers to be the first line of defense in their organization by making security highly visible and providing them with the skills and tools to write secure code from the beginning. We have built a powerful platform that moves the focus from reaction to prevention, training and equipping developers to think and act with a security mindset as they build and verify their skills, gain real-time advice and monitor skill development. Our customers include financial institutions, telecommunications providers and global technology companies in Europe, North America and the Asia Pacific. To learn more, visit https://securecodewarrior.com<nowiki/>.||https://securecodewarrior.com/
 
|-
 
|-
|{{MemberLinksv2|link=https://www.peachfuzzer.com/|logo=Peach_Logo_Sans_Fuzzer_Classic_dark_leaf_no_bg_-_OWASP.png}} ||Peach Tech provides advanced security testing solutions and leading-edge products, such as the innovative + automated Peach APISecurity: Peach API Security intelligently executes a series of fuzz tests and passive security tests on your web APIs. Comprehensive test results empower your team to mitigate security vulnerabilities. Each uncovered vulnerability includes actionable data. Peach APISecurity supports many CI systems and test suites, and transforms unit tests into security tests. We also developed the robust fuzzing platform Peach Fuzzer. We customize testing strategies for security-minded clients engaged in all stages of development. Leverage the power of Peach Tech to secure your world. ||https://www.peachfuzzer.com/
+
| |{{MemberLinksv2|link=http://www.securitycompass.com/|logo=Securitycompass-stacked_(1).jpg}} ||Security Compass is a leader in helping customers proactively manage cybersecurity risk without slowing down their business.  Offering Advisory Services, Training, and SD Elements, an award-winning policy to procedure platform for security and compliance. Security Compass enables organizations to rapidly and efficiently deliver technology that's secure by design. Security Compass serves some of the world's largest businesses including seven of the 15 largest financial institutions and four of the 10 largest technology companies in North America.  
 +
||http://www.securitycompass.com
 
|-
 
|-
| {{MemberLinksv2|link=https://www.ptsecurity.com/ww-en/|logo=Positive_Technologies_Logo.PNG|size=150x45px}} ||Positive Technologies is an international application security company with over 1000 customers and ten offices on four continents. Founded on research undertaken in one of Europe’s largest specialist laboratories, our intelligent technology is capable of thinking like an attacker, predicting exploit attempts and automatically patching vulnerabilities prior to attack. This approach has been recognized by Gartner as visionary. ||https://www.ptsecurity.com/ww-en/
+
| {{MemberLinksv2|link=https://securityinnovation.com|logo=Security_Innovation.png}} || Security Innovation is a pioneer in software security and trusted advisor to its clients. Since 2002, organizations have relied on our assessment and training solutions to make the use of software systems safer in the most challenging environments – whether in Web applications, IoT devices, or the cloud. The company’s flagship product, [https://www.securityinnovation.com/training/cmd-ctrl-cyber-range-security-training/ CMD+CTRL Cyber Range], is the industry’s only simulated Web site environment designed to build the skills teams need to protect the enterprise where it is most vulnerable – at the application layer. Security Innovation is privately held and headquartered in Wilmington, MA USA. For more information, visit [https://www.securityinnovation.com/ www.securityinnovation.com] or connect with us on [https://www.linkedin.com/company/security-innovation/ LinkedIn] or [https://twitter.com/secinnovation Twitter].
 +
||https://securityinnovation.com
 
|-
 
|-
| {{MemberLinksv2|link=http://www.protiviti.com|logo=Protiviti.jpg‎|size=150x45px}} ||Protiviti is a global business consulting and risk consulting firm composed of experts specializing in risk, advisory and transaction services. The firm helps solve problems in finance and transactions, operations, technology, information security & privacy, litigation, governance, risk, and compliance. Protiviti's highly trained, results-oriented professionals provide a unique perspective on a wide range of critical business issues for clients in the Americas, Asia-Pacific, Europe and the Middle East. Protiviti has more than 70 locations worldwide and is a wholly owned subsidiary of Robert Half International Inc. (NYSE: RHI). Founded in 1948, Robert Half International is a member of the S&P 500 index. For additional information about Protiviti, Contact Rocco Grillo at [email protected] / 212.603.8381 ||http://www.protiviti.com
+
| {{MemberLinksv2|link=https://blog.shiftleft.io/|logo=ShiftLeft.png}} ||ShiftLeft is a continuous application security platform, purpose-built for the modern software development life cycle. It combines next-generation static code analysis (to quickly and accurately identify vulnerabilities) with application instrumentation (to protect the application) in an automated workflow. This combination of runtime-informed code analysis and code- informed runtime protection delivers the most accurate, automated, and comprehensive application security solution. || https://blog.shiftleft.io/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.rakuten.com|logo=Rakuten-Global-150x45_72dpi.JPG}} ||Rakuten, Inc. and its consolidated subsidiaries and affiliates ("Rakuten Group") are full-line Internet services companies. Since its founding in 1997, Rakuten, Inc. ("Rakuten") has spent a decade evolving its business model centered on e-commerce, to create a market completely new to Japan. The Rakuten Group is focusing on two approaches in particular to target growth in the decade to come. The first is to empower people and society through continuous innovation and business operation based on our five concepts of success. The second is to establish a "Rakuten eco-system" which enables us to maximize our customers lifetime value and leverage synergies. Guided by the key phrase "more than Web", the Rakuten Group is taking on the challenge of creating new value by driving convergence between the Internet and traditional "bricks and mortar" businesses. ||http://www.rakuten.com ||
+
| {{MemberLinksv2|link=http://www.sonatype.com|logo=Son_logo_main_vertical2x_-_Edited.png}} ||There are a staggering volume and variety of open source and third-party component parts flowing through every development environment in the world. If properly sourced and managed, these components are a tremendous source of energy for accelerating innovation. If not, they lead directly to security vulnerabilities, licensing risks, enormous rework, and waste. With over 120,000 installations and counting, Sonatype’s Nexus products are helping modern development organizations intelligently source, manage, assemble, and maintain open-source and third-party components, so they can improve the quality, security, and speed of their software supply chains.|| http://www.sonatype.com
 
|-
 
|-
| {{MemberLinksv2|link=http://www.rapid7.com|logo=Rapid7_logo_Resized.png}} || Rapid7 is a leading provider of security data and analytics solutions that enable organizations to implement an active, analytics-driven approach to cyber security. We combine our extensive experience in security data and analytics and deep insight into attacker behaviors and techniques to make sense of the wealth of data available to organizations about their IT environments and users. Our solutions empower organizations to prevent attacks by providing visibility into vulnerabilities and to rapidly detect compromises, respond to breaches, and correct the underlying causes of attacks. Rapid7 is trusted by more than 4,150 organizations across 90 countries, including 34% of the Fortune 1000. To learn more about Rapid7 or get involved in our threat research, visit http://www.rapid7.com<nowiki/>.||http://www.rapid7.com
+
| {{MemberLinksv2|link=https://www.stackhawk.com/|logo=Stackhawk_long1x.jpg}} ||StackHawk is dynamic application vulnerability scanning built for modern development teams. With simple configuration, easy invocation via docker command, and interpretable results, StackHawk is built for developers to take control of their AppSec. Learn more at docs.stackhawk.com. ||https://www.stackhawk.com/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.scsk.jp/index_en.html|logo= SCSK Logo scsk.jpg}} ||Japan-based global IT service company, SCSK supplies the whole range of IT solutions, system integration to IT infrastructure implementation, IT management, BPO, IT hardware and software sales.Particularly in security field, SCSK offers full-line Web security solution which is prompt and accurate provision against up-to-date cyber attack with a service brand, “SECURE YOUR SITE ™”. On a mission to contribute to enterprises’ business, SCSK assures the safety of IT system with security-oriented consulting, system design, application development, security system implementation, operation and monitoring. SCSK SOC and CSIRT team strongly support enterprises’ stability on a 24/7 basis. ||https://www.scsk.jp/index_en.html
+
| {{MemberLinksv2|link=https://snyk.io|logo=Copy_of_Snyk_Logo.png}}||Snyk is a developer-first security solution that helps you use open source code and stay secure. Building on its unique vulnerability database, Snyk continuously finds and fixes known vulnerabilities & license violations in open source dependencies and containers. Snyk integrates seamlessly into the developers’ workflow and enables them to own the open source security of their code thus supporting security at scale.||https://snyk.io/
 
|-
 
|-
| |{{MemberLinksv2|link=http://www.securitycompass.com/|logo=Security_Compass_Logo.png}} ||Security Compass focuses on helping you deliver secure software  through deliberate practice while maintaining the speed of your business. Our goal is to help you build secure software by seamlessly unifying your application security needs through eLearning, Security Requirements and Verification. ||http://www.securitycompass.com
+
|{{MemberLinksv2|link=https://developer.springcm.com/|logo=SpringCM_Logo.png}} ||SpringCM delivers an innovative document workflow and management platform, powering the leading contract management application. SpringCM empowers companies to become more productive by reducing the time spent managing mission-critical business documents. Intelligent, automated workflows enable document collaboration across an organization from any desktop or mobile device. Delivered through a secure cloud platform, SpringCM’s document and contract management solutions work seamlessly with Salesforce or as a standalone solution. Every day, more than 600 companies use SpringCM to improve customer experience and get more done, faster. For more information about SpringCM, visit [http://www.springcm.com www.springcm.com]. ||https://developer.springcm.com/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.sig.eu/en/|logo=SIG_LOGO_RGB_250.jpg|size=150x45px}} ||'''Getting Software Security Right''' At the Software Improvement Group(SIG) we believe that the key to control software security and privacy is in the source code. Therefore, our experts perform systematic reviews to measure security as an ISO 25010 software quality and evaluate how the development process facilitates secure coding. Next, we provide insight into security and privacy business risks, and how to deal with them step by step, to structurally reduce probability and impact of incidents. These steps typically include improvement of the software process and its management, to gain security and privacy by design. This television item provides an overview of SIG's vision on software security: https://lnkd.in/dSi4-k7 || https://www.sig.eu/en/
+
| {{MemberLinksv2|link=https://www.symantec.com/https://www.symantec.com/|logo=NI-SYM_Horiz_web150x40.jpg}} ||Symantec Corporation (NASDAQ: SYMC), the world’s leading cybersecurity company, helps organizations, governments, and people secure their most important data wherever it lives. Organizations across the world look to Symantec for strategic, integrated solutions to defend against sophisticated attacks across endpoints, cloud, and infrastructure. Likewise, a global community of more than 50 million people and families rely on Symantec’s Norton and LifeLock product suites to protect their digital lives at home and across their devices. Symantec operates one of the world’s largest civilian cyber intelligence networks, allowing it to see and protect against the most advanced threats. For more information, please visit www.symantec.com. ||https://www.symantec.com
 
|-
 
|-
| {{MemberLinksv2|link=https://www.smartrac-group.com/|logo=Smartrac_logo.jpg|size=150x45px}} || ||https://www.smartrac-group.com
+
| {{MemberLinksv2|link=https://www.synopsys.com/|logo=Synopsys_Logo.jpg}} || Synopsys technology is at the heart of innovations that are changing the way we live and work. The Internet of Things. Autonomous cars. Wearables. Smart medical devices. Secure financial services. Machine learning and computer vision. These breakthroughs are ushering in the era of Smart, Secure Everything―where devices are getting smarter, everything’s connected, and everything must be secure. Powering this new era of technology are advanced silicon chips, which are made even smarter by the remarkable software that drives them. Synopsys is at the forefront of Smart, Secure Everything with the world’s most advanced tools for silicon chip design, verification, IP integration, and application security testing. Our technology helps customers innovate from Silicon to Software, so they can deliver Smart, Secure Everything. ||https://www.synopsys.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.sonatype.com|logo=Sonatype_Logo_Resized.png‎|size=150x45px}} ||Sonatype secures modern software development by fixing at-risk applications, automating policy throughout the lifecycle and identifying hidden risks in your applications. Sonatype's Component Lifecycle Management identifies and tracks OSS components, automates and enforces policy, and prevents the use of flawed components throughout the software lifecycle. Ask about free risk assessments.|| http://www.sonatype.com
+
|{{MemberLinksv2|link=https://www.tcell.io/|logo=TCell.io_logo.png}} ||tCell moves application security out of the network for cloud-first organizations. Using advanced runtime application self-protection technology, tCell protects applications in-production from XSS, Commandi, SQLi, Account Takeover, and OWASP Top 10 attacks. Whether an organizations’ applications are on-premises or cloud-based, tCell's unique approach makes application security easy.
 +
||https://www.tcell.io/
 
|-
 
|-
|{{MemberLinksv2|link=https://developer.springcm.com/|logo=SpringCM_Logo.png}} ||SpringCM delivers an innovative document workflow and management platform, powering the leading contract management application. SpringCM empowers companies to become more productive by reducing the time spent managing mission-critical business documents. Intelligent, automated workflows enable document collaboration across an organization from any desktop or mobile device. Delivered through a secure cloud platform, SpringCM’s document and contract management solutions work seamlessly with Salesforce or as a standalone solution. Every day, more than 600 companies use SpringCM to improve the customer experience and get more done, faster. For more information about SpringCM, visit [http://www.springcm.com www.springcm.com]. ||https://developer.springcm.com/
+
|{{MemberLinksv2|link=http://www.thoughtworks.com|logo=ThoughtWorks Logo.png|size=150x45px}} ||We are a software company and community of passionate, purpose-led individuals. We think disruptively to deliver technology that addresses our clients’ toughest challenges, all while seeking to revolutionize the IT industry and create positive social change. ThoughtWorks' 3,000 professionals serve clients from offices in Australia, Brazil, Canada, China, Ecuador, Germany, India, Italy, Singapore, South Africa, Turkey, Uganda, the United Kingdom, and the United States. ThoughtWorks releases a regular technology radar, a study that looks at the key trends that impact software development and business strategies. The Radar helps companies stay on top of topics that are constantly evolving, such as security, and offers insight and practical tools to build secure systems at every stage of the development process. ||http://www.thoughtworks.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.symantec.com|logo=SymantecLogo150x40.jpg|size=150x45px}} ||Symantec Corporation (SYMC) is an information protection expert that helps people, businesses and governments seeking the freedom to unlock the opportunities technology brings -- anytime, anywhere. Founded in April 1982, Symantec, a Fortune 500 company, operating one of the largest global data-intelligence networks, has provided leading security, backup and availability solutions for where vital information is stored, accessed and shared. The company's more than 20,000 employees reside in more than 50 countries. Ninety-nine percent of Fortune 500 companies are Symantec customers. To learn more go to [http://www.symantec.com www.symantec.com] or connect with Symantec at: [http://www.symantec.com/social/ www.symantec.com/social/]. || http://www.symantec.com
+
| {{MemberLinksv2|link=https://www.twistlock.com/|logo=Twistlock_2017_Logo-Lockup_TM_RGB_copy.jpg}} ||Twistlock is the most complete, automated and scalable cloud native cybersecurity platform. Trusted by hundreds of customers worldwide, Twistlock uses the strengths of cloud native to provide better security for teams using Docker, Kubernetes, Lambda, Fargate, and other modern technologies. ||https://www.twistlock.com/
 
|-
 
|-
|{{MemberLinksv2|link=http://www.synopsys.com/home.aspx|logo=Synopsys Logo.jpg|size=150 × 45px}} ||Synopsys, Inc. (Nasdaq: SNPS) is the Silicon to Software™ partner for innovative companies developing the electronic products and software applications we rely on every day. As the world's 15th largest software company, Synopsys has a long history of being a global leader in electronic design automation (EDA) and semiconductor IP and is also growing its leadership in software quality and security solutions. Whether you're a system-on-chip (SoC) designer creating advanced semiconductors, or a software developer writing applications that require the highest quality and security, Synopsys has the solutions needed to deliver innovative, high-quality, secure products. Learn more at www.synopsys.com. ||http://www.synopsys.com/home.aspx
+
|{{MemberLinksv2|link=https://vex.ubsecure.jp/lpen||logo=Ubsecure-logo.png}} ||UBsecure is a leading web application security company based in Japan since 2007. We offer various security solutions for web application and smartphone application by utilizing in-house developed application security testing tool, Vex. Vex built by a tremendous amount of experience in professional security scanning and by its continuous feedback. The unique characteristic of the tool is that it used as a stand-alone security testing tool as well as the seamless security testing component within the SDLC. Therefore, Vex is not only for professional security auditors but also for software developers who need secure development cycles. Please visit our site for more information about Vex.||https://vex.ubsecure.jp/lpen
 
|-
 
|-
| |{{MemberLinksv2|link=https://www.tcell.io/|logo=Tcell_logo_hi-res_(1).png|size=150 × 45px}} || ||https://www.tcell.io/
+
|{{MemberLinksv2|link=https://www.ups.com/us/en/Home.page|logo=UPS.jpg}} || ||https://www.ups.com/us/en/Home.page
 
|-
 
|-
|{{MemberLinksv2|link=http://www.thoughtworks.com|logo=ThoughtWorks Logo.png|size=150x45px}} ||We are a software company and community of passionate, purpose-led individuals. We think disruptively to deliver technology that addresses our clients’ toughest challenges, all while seeking to revolutionize the IT industry and create positive social change. ThoughtWorks' 3,000 professionals serve clients from offices in Australia, Brazil, Canada, China, Ecuador, Germany, India, Italy, Singapore, South Africa, Turkey, Uganda, the United Kingdom and the United States. ThoughtWorks releases a regular technology radar, a study that looks at the key trends that impact the software development and business strategies. The Radar helps companies stay on top of topics that are constantly evolving, such as security, and offers insight and practical tools to build secure systems at every stage of the development process. ||http://www.thoughtworks.com/
+
|{{MemberLinksv2|link=https://www.veracode.com/|logo=VeraCode_logo.png}} || Veracode gives companies a comprehensive view of security defects so they can create secure software, and ensure the software they are buying or downloading is free of vulnerabilities. As a result, companies using Veracode are free to boldly innovate, explore, discover, and change the world.
 +
||https://www.veracode.com/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.twistlock.com/|logo=Twistlock_2017_Logo-Lockup_TM_RGB_copy.jpg|size=150x45px}} ||Twistlock provides the industry’s first enterprise suite for container security. We monitor container activities, manage vulnerabilities, detect and isolate threats targeting containerized applications. Our technologies enable enterprises to enforce consistent security policies from development to production, thus maximizing the benefits of container computing. For more information, please visit https://www.twistlock.com ||https://www.twistlock.com
+
|{{MemberLinksv2|link=https://www.verizondigitalmedia.com/platform/edgecast-cdn/security/|logo=Verizon_Digital_Medial_Logo.jpg}} ||Verizon Digital Media Services offers a global, PCI-compliant content delivery network to protect websites, applications and user data at every layer. Integrated with our industry-leading platform, our Cloud Security Solution offers world-class protection, performance and scale to keep your business online. Our network features:
 +
*An advanced Web Application Firewall (WAF) to protect web applications against attacks
 +
*Robust DDoS protection with massive capacity to thwart the largest attacks
 +
*Bot mitigation to defend against automated threats and bad bots
 +
*Added protection for web servers to defend against direct-to-origin attacks
 +
*Built-in DNS protection with DNSSEC to prevent injection of fraudulent records
 +
*A security operations team ready to provide a fully managed security offering<br>
 +
Contact us today to learn more about our Cloud Security Solution or visit us at [http://www.verizondigitalmedia.com www.verizondigitalmedia.com].
 +
||https://www.verizondigitalmedia.com/platform/edgecast-cdn/security/
 
|-
 
|-
| {{MemberLinksv2|link=https://www.ups.com/|logo=UPS.jpg‎|size=150x45px}} ||UPS (NYSE: UPS) is a global leader in logistics, offering a broad range of solutions including the transportation of packages and freight; the facilitation of international trade, and the deployment of advanced technology to more efficiently manage the world of business. Headquartered in Atlanta, UPS serves more than 220 countries and territories worldwide. The company can be found on the Web at UPS.com and its corporate blog can be found at blog.ups.com. To get UPS news direct, visit pressroom.ups.com/RSS. Technology: UPS employs nearly 4,300 information technology professionals and supports UPS.com which averages around 27 million page views with 39.5 million packages tracked daily. More UPS technology facts may be found on www.ups.com under About UPS, UPS Facts and UPS Jobs. ||https://www.ups.com
+
|{{MemberLinksv2|link=http://www.waratek.com/|logo=Warateklogo.jpg}} ||The Waratek ARMR Platform provides unique protection in the applications runtime environment. This unique security layer provides fast and accurate security in the compilation pipeline, providing protection that becomes part of your application – but never requires changes to source code.
 +
● Instantly apply code equivalent security patches to Java and .NET applications
 +
● Actively secure against the OWASP Top Ten / SANS 25 / Zero-Day vulnerabilities
 +
● Virtually upgrade & secure out-of-support, vulnerable Java applications.  
 +
All with no source code changes or False Positives.
 +
||http://www.waratek.com/
 
|-
 
|-
| {{MemberLinksv2|link=http://www.veracode.com/|logo=Veracode.png}} ||Veracode delivers the application security solutions and services today’s software-driven world requires. Veracode’s unified platform assesses and improves application security from inception through production so that businesses can confidently innovate with the applications they build, buy and deploy as well as the components they integrate into their environments. ||http://www.veracode.com/
+
|{{MemberLinksv2|link=https://wallarm.com/|logo=Wallarm Logo (1).png|size=150x45px}} || Wallarm delivers automated cloud-native application and API security throughout application development and deployment lifecycle.
 +
Wallarm AI-powered Application Security Platform includes FAST for CI/CD-integrated security test automation during development and Advanced WAF attack blocking and vulnerability protection after deployment.  
 +
Wallarm platform aligns security and development into a unified pipeline:
 +
# Detects OWASP Top 10, 0 day and behavioral issues     
 +
# Provides highly accurate detection based on patent-pending technology     
 +
# Improves security test coverage by automatically generating and running tests     
 +
# Automates issue management with deep learning, policies and build in active rechecker     
 +
# Provide easy-to-manage multi-tenant multi-application unified management platform
 +
|| https://wallarm.com/
 
|-
 
|-
| |{{MemberLinksv2|link=https://www.verizondigitalmedia.com/|logo=Verizon_Digital_Medial_Logo.jpg|size=150x45px}} ||Verizon Digital Media Services is the industry’s only single, end-to-end digital media platform that can prepare, deliver, display and enable the monetization of online content. The platform is built on the world’s largest, most connected network, and has over 90 points of presence on five continents, ensuring high-quality viewing of digital content on any device, anytime, anywhere. The company provides the foundational components in the websites, apps and OTT video services for many of the world’s largest publishers, media companies and enterprises. Verizon Digital Media Services is part of AOL Inc. Learn more about how Verizon Digital Media Services continues to change the way the world watches at www.verizondigitalmedia.com. ||https://www.verizondigitalmedia.com
+
| {{MemberLinksv2|link=https://www.whitehatsec.com/|logo=WhiteHat_2016_Primary_Logo.png}} ||WhiteHat Security is the leader in application security, enabling businesses to protect critical data, ensure compliance, and manage risk. Through a combination of technology, over a decade of intelligence metrics, and the judgment of people, WhiteHat Security provides complete web security at a scale and accuracy unmatched in the industry.||https://www.whitehatsec.com
 
|-
 
|-
| {{MemberLinksv2|link=https://www.whitehatsec.com/|logo=WhiteHat_2016_Primary_Logo.png}} || ||https://www.whitehatsec.com
+
|{{MemberLinksv2|link=https://www.whitesourcesoftware.com/|logo=Whitesource_logo.png}} ||WhiteSource helps software security teams manage open source components used in their products, automatically and continuously. It becomes part of your SDLC and automates the entire process of open source components selection, approval, and management, including finding and fixing vulnerable components.
 +
||https://www.whitesourcesoftware.com
 
|-
 
|-
 
|}
 
|}

Latest revision as of 14:16, 21 November 2019

Disclaimer: Corporate Supporter Bios are not endorsements and reflect the message of the supporter only.

Elite Corporate Members

{{{size}}}       Allstate Corporation is the largest publicly held personal lines property and casualty insurer in America, serving more than 16 million households nationwide. Founded in 1931, Allstate has been dedicated to protecting our customers from life’s uncertainties and preparing them for the future for more than 85 years. As the needs of our customers evolve, so does our technology and security practices to ensure our customers remain in good hands. https://www.allstate.com/
{{{size}}}       Our purpose is to build trust in society and solve important problems. In today's digital world that requires a focus on cybersecurity in order to build a secure digital society. We help clients across society to understand their cybersecurity risk; build and assure their defenses; identify and respond to attacks, and to navigate the complex legal and regulatory environment for cybersecurity. For more information please visit www.pwc.co.uk/cybersecurity http://www.pwc.co.uk/cybersecurity

Premier Corporate Members

Company Company Description Contact
300px90px       Adobe is the global leader in digital marketing and digital media solutions. Our tools and services allow our customers to create groundbreaking digital content, deploy it across media and devices, measure and optimize it over time, and achieve greater business success. We help our customers make, manage, measure, and monetize their content across every channel and screen. http://www.adobe.com/
{{{size}}}       HackerOne (www.hackerone.com) is the #1 hacker-powered security platform, helping organizations receive and resolve critical vulnerabilities before they can be exploited. More than 1,000 organizations, including the U.S. Department of Defense, U.S. General Service Administration, General Motors, Twitter, GitHub, Nintendo, Panasonic Avionics, Qualcomm, Square, Starbucks, Dropbox and the CERT Coordination Center trust HackerOne to find critical software vulnerabilities. HackerOne customers have resolved over 57,000 vulnerabilities and awarded over $22M in bug bounties. HackerOne is headquartered in San Francisco with offices in London and the Netherlands. https://www.hackerone.com/
{{{size}}}       Netsparker develops an industry leading automated web application security scanner. Available as Windows desktop software and as a Cloud service, the Netsparker scanner is very easy to use and its proof-based vulnerability scanning technology enables you to easily and automatically detect SQL Injection, Cross-site scripting and other vulnerabilities in your websites, web applications and web services. Netsparker’s unique scanning, detection and auto exploitation techniques allow it to be dead accurate. Therefore you do not have to waste time manually verifying the scanner’s findings and instead can focus on fixing the identified vulnerabilities. Netsparker is trusted and used by world renowned companies such as Samsung, Ernst & Young, Skype, NASA, ISACA and ING Bank. https://www.netsparker.com
{{{size}}}       Qualys is a pioneer and leading provider of cloud-based security and compliance solutions. The Qualys Cloud Platform and its integrated apps - including Web Application Scanning (WAS) - help businesses simplify security operations and lower the cost of compliance by delivering critical security intelligence and automating the full spectrum of auditing, compliance, and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including Accenture, BT, Cognizant Technology Solutions, Deutsche Telekom, Fujitsu, HP Enterprise, IBM, Infosys, NTT, Optiv, SecureWorks, Tata Communications, Verizon, and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA). https://www.qualys.com
300px90px       Salesforce is the world’s #1 customer relationship management (CRM) platform. Our cloud-based applications for sales, service, marketing, and more don’t require IT experts to set up or manage — simply log in and start connecting to customers in a whole new way. https://www.salesforce.com/
300px90px       Signal Sciences secures the most important web applications, APIs, and microservices of the world's leading companies. Our next-gen WAF and RASP help you increase security and maintain site reliability without sacrificing velocity, all at the lowest total cost of ownership. Learn how our patented approach can help you. http://www.signalsciences.com

Contributor Corporate Members

Company Company Description Contact
Acunetix logo 200.png       Acunetix’s team of experienced engineers developed a lead in website, web application, and Internet-facing server analysis and vulnerability detection. Available both on-premise and online, Acunetix uses deep crawling techniques to detect exploitable vulnerabilities such as SQL injection, and all forms of Cross-Site scripting – while providing concise vulnerability reports and information on how to fix them allowing you to protect your business against impending hacker attacks. Acunetix customers include Cisco, NASA, American Express, Sony, HSBC, The Pentagon, Skype, and many more. You can find us online at www.acunetix.com. http://www.acunetix.com
{{{size}}}       Altitude Networks tackles data security in the cloud to protect enterprises against unauthorized data access, accidental or malicious sharing to unintended individuals, and data theft. http://www.altitudenetworks.com/
{{{size}}}       Aon’s Cyber Solutions offers holistic cyber security, risk and insurance management, investigative skills, and proprietary technologies to help clients uncover and quantify cyber risks, protect critical assets, and recover from cyber incidents.

Cyber security services provided by Stroz Friedberg Limited and its affiliates. Cyber risk services provided by Aon UK Limited and its affiliates

https://aon.com/cyber-solutions
{{{size}}}       Arxan, the global trusted leader of application protection solutions, delivers the confidence to build, deploy, and manage an organization’s most innovative and valuable applications. Currently protecting more than 1 billion application instances across industries including financial services, mobile payments, healthcare, automotive, gaming, and entertainment, the company provides the industry’s most comprehensive application protection solution. Unlike legacy security providers that rely on perimeter-based barriers to keep bad actors out, Arxan protects applications at the source and binary code level to expand the area of trust and provides a broad range of enterprise services and patented security capabilities such as code hardening, obfuscation, encryption, and Whitebox cryptography. Founded in 2001, the company is headquartered in North America with global offices in EMEA and APAC. https://www.arxan.com/
{{{size}}}       Avatao is an online training platform for building secure software. It offers a rich library of hands-on IT security exercises for software engineers to teach secure programming from design to deployment in a fun and intuitive way. Educating for secure software can significantly improve software quality, increase trust in a company’s brand, reduce development costs and reduce the risks of suffering significant losses from cyber-attacks. In today’s world, secure software development practices are a basic requirement and we believe the solution should be integrated into the ground roots of software development teams. The platform can be used to provide security awareness to software engineers, to enrich existing IT security training, meetups or allow self-directed learning for continuous professional development. Avatao hackathons are also an excellent method to discover talented developers and engage and build brand awareness in the community. Avatao is a creation out of CrySyS Lab, world-renowned experts in IT security. Learning communities like business teams use Avatao for an improved and efficient learning experience. Mid-size and large software and financial companies use Avatao’s gamified online training to organize security hackathons, onboard new hires or upskill software developers to build secure software. The Avatao platform was publicly launched in 2016 for end-users and business customers. Initial customers include LogMeIn (US), Prezi (HU), Microsec (HU), Emarsys (HU), Photobox (UK), and many other companies are piloting the platform including Fortune 100 companies. Avatao currently has 5000+ users and 500+ exercises. https://avatao.com/
{{{size}}}       Avi Networks completes enterprises’ digital transformation with its software load balancer, intelligent Web Application Firewall, and modern application services. The Avi Vantage Platform is deployed across data centers and clouds, delivering better elasticity, intelligence, and cost savings by providing granular per-tenant and per-app services. Customers enjoy 5X faster application rollouts, actionable analytics, and 70% lower costs. https://www.avinetworks.com
{{{size}}}       Brinqa is a leading provider of unified risk management – enabling stakeholders, governance organizations, and infrastructure and security teams to effectively manage technology risk at the speed of business. Brinqa software and cloud services leverage an organization’s existing investment in systems, security, and governance programs to identify, measure, manage and monitor risk. With Brinqa, organizations are reducing response time to emerging threats, impact to the business, and technology risk and compliance costs by over 50% through real-time risk analytics, automated risk assessments, prioritized remediation, actionable insights, and improved communication. Founded in 2008 by industry leaders in risk management with a proven track record in delivering cutting edge, innovative and cost-effective solutions. Brinqa’s award-winning software and cloud services are trusted by fortune 500 companies across risk disciplines such as information technology risk, vendor risk, and regulatory compliance risk. Brinqa is headquartered in Austin, Texas and has a global presence. https://www.brinqa.com/
{{{size}}}       https://www.bugcrowd.com/
{{{size}}}       CA Technologies helps customers succeed in a future where every business—from apparel to energy—is being rewritten by software. From planning to development to management to security, at CA we create software that fuels transformation for companies in the application economy. Learn more at https://www.ca.com/us.html https://www.ca.com/us.html
{{{size}}}       Cequence Security is a venture-backed cybersecurity software company founded in 2015 and based in Sunnyvale, CA. Its mission is to transform application security by consolidating multiple innovative security functions within an open, AI-powered software platform that protects customers web, mobile, and API-based applications – and supports today’s cloud-native, container-based application architectures. The company is led by industry veterans that previously held leadership positions at Palo Alto Networks and Symantec. Customers include F500 organizations across multiple vertical markets, and the solution has earned multiple industry accolades. Learn more at www.cequence.ai. https://www.cequence.ai/
{{{size}}}       Checkmarx is an Application Security software company, whose mission is to provide enterprise organizations with application security testing products and services that empower developers to deliver secure applications. Amongst the company's 1,000 customers are 5 of the world's top 10 software vendors and many Fortune 500 and government organizations. Checkmarx CxSAST is a highly accurate and flexible Source Code Analysis product that allows organizations to automatically scan a un-compiled/un-built code and identify hundreds of security vulnerabilities in the most prevalent coding languages. Learn more at www.checkmarx.com. https://www.checkmarx.com
CodeDx-logo (1) (1).png       Code Dx is committed to reducing barriers to effective application security. Our automated application vulnerability correlation and management tools help find and fix insecure code faster, with less effort and a smaller team. Focus your precious resources on developing valuable new features, and ship secure code faster and more often. For more information, please visit https://codedx.com/ https://codedx.com/
{{{size}}}       Contrast Security delivers the world’s fastest application security software that eliminates the single greatest security risk to enterprises today. Industry research shows that application security flaws are the leading source of data breaches. Contrast can be deployed, automatically discover applications and identify vulnerabilities within seven minutes. Relying on sensors instead of expensive security experts, Contrast runs continuously and is 10 times more accurate than the competition. Unlike tedious, painful and slow legacy approaches, Contrast analyzes a complete portfolio of running applications simultaneously in real-time at any scale. As a result, organizations can act faster against threats and immediately reduce risk. More information on Contrast Security can be found at http://www.contrastsecurity.com/. http://www.contrastsecurity.com/
{{{size}}}       Cybozu is a Japanese cloud computing vendor founded in 1997. Its service supports effective team collaboration hence our services are widely used from large-scaled teams like multinational enterprises to small-scaled teams like volunteer groups, clubs even families. “kintone” is one of the Cybozu’s key products released in 2011. It is called "no-code application platform" which makes work more productive through business applications. It is recognized as one of the leading vendors in” Gartner 2016 Enterprise application Platform as a Service (aPaaS), Worldwide Magic Quadrant”. Cybozu has been focusing on security enhancement. It has started "bug bounty project" in 2013 to find any vulnerabilities which may exist in its product in order to provide its customers with the most secure service possible. https://www.cybozu.com/
{{{size}}}       Dell Technologies (NYSE: DELL) unique family of businesses that helps organizations and individuals build their digital future and transform how they work and live. The company provides customers with the industry's broadest and most innovative technology and services portfolio spanning from edge to core to cloud. The Dell Technologies family includes Dell, Dell EMC, Pivotal, RSA, SecureWorks, Virtustream and VMware. https://www.delltechnologies.com/en-us/index.htm
{{{size}}}       Denim Group is the leading independent application security firm, serving as a trusted advisor to customers on matters of application risk and security. The company helps organizations assess and mitigate application security risk. Denim Group’s flagship ThreadFix platform accelerates the process of application vulnerability remediation, reflecting the company’s rich understanding of what it takes to fix application vulnerabilities faster. http://www.denimgroup.com
{{{size}}}       Duo Security helps defend organizations against data breaches by making security easy and effective. Duo Beyond, the company's category-defining zero-trust security platform, enables organizations to provide trusted access to all of their critical applications, for any user, from anywhere, and with any device. The company is a trusted partner to more than 10,000 customers globally, including Dresser-Rand, Etsy, Facebook, K-Swiss, Random House, Yelp, Zillow, Paramount Pictures, and more. Founded in Michigan, Duo has offices in Ann Arbor and Detroit, as well as growing hubs in Austin, Texas; San Mateo, California; and London, UK. https://duo.com/
Entrust DataCard logo.png       Consumers, citizens and employees increasingly expect anywhere-anytime experiences — whether they are making purchases, crossing borders, accessing e-gov services or logging onto corporate networks. Entrust Datacard offers the trusted identity and secure transaction technologies that make those experiences reliable and secure. Solutions range from the physical world of financial cards, passports and ID cards to the digital realm of authentication, certificates, and secure communications. With more than 2,000 Entrust Datacard colleagues around the world and a network of strong global partners, the company serves customers in 150 countries worldwide. For more information, visit www.entrustdatacard.com. https://www.entrustdatacard.com/
{{{size}}}       Facebooks AppSec team is focused on discovering vulnerabilities and crafting creative solutions to eliminate them. We achieve this by doing code and design reviews, building tools, and automation, and manage our bug bounty program. Come to our booth to find out more and sign-up to win a FREE Oculus Go. https://www.facebook.com/whitehat/report/
{{{size}}}       https://www.fortinet.com/
{{{size}}}       https://www.gemalto.com/
{{{size}}}       https: / gosecure.
HERE Logo MFL Horizontal RGB.png       Mapping has always been about discovery. For centuries, two-dimensional maps guided us through the unknown to our destination. But we are no longer limited by the edges of our physical maps. In 1985, we began with the simple goal to digitize mapping and pioneer in-car navigation systems. Over the next three decades, as NAVTEQ and Nokia, we’ve built a legacy in mapping technology. Today, we're creating living three-dimensional maps that grow upwards, breathing with layers of information and insights. By partnering with world-leading automakers, we are powering 4 out of 5 in-car navigation systems in North America and Europe. But we’re not just on the road. We are capturing the world in three dimensions, readying for an autonomous future. And we’re looking beyond. From autonomous driving to the Internet of Things, we are building the future of location technology through strategic partnerships with industry leaders like Intel, NVIDIA, Mobileye, and Tencent. With headquarters in Amsterdam and development sites that span Chicago to Berlin and across to Mumbai, we are a global team with a shared passion. From data scientists and software developers to product engineers and mapping specialists, we come together from many different backgrounds to build a better future for location technology. https://www.here.com/en
{{{size}}}       We combine know-how in the areas of security consulting, IT governance, risk & compliance with conceptual strength, innovation and implementation expertise. In addition to protecting applications and networks, our core competencies also include organizational tasks such as setting up security, risk, and service management system. HiSolutions AG is one of the leading consulting specialists for IT management and information security in Germany. More than 200 experts advise in the areas of security consulting, IT governance, business continuity management, and digitalization. We actively participate in the development of national and international standards and are involved in various research projects and university teachings. https://www.hisolutions.com
{{{size}}}       High-Tech Bridge is a global provider of web and mobile Application Security Testing (AST) services. Our award-winning AST platform ImmuniWeb® combines the genius of Human Intelligence with the power of Artificial Intelligence and Machine Learning. ImmuniWeb® leverages Artificial Intelligence (AI) and Machine Learning (ML) for intelligent automation of application vulnerability scanning and acceleration of application penetration testing. High-Tech Bridge's security experts from our CREST-accredited SOC look for the most complicated application vulnerabilities and attack vectors in instant synchronization and correlation with automated vulnerability scanning. Invented by High-Tech Bridge, this type of hybrid security testing, enhanced with AI/ML, delivers the most comprehensive vulnerability detection rate, continuously reduces human intervention without impacting the quality of testing, and contractually guarantees zero false-positives to every customer. https://www.htbridge.com
{{{size}}}       Imperva is a leading provider of data and application security solutions that protect business-critical information in the cloud and on-premises. Founded in 2002, we have enjoyed a steady history of growth and success, generating $264 million in 2016, with over 5,200 customers and more than 500 partners in 100+ countries worldwide. https://www.imperva.com/
IBI Logo.jpg       Founded in 1975, Information Builders continues to deliver state-of-the-art technology that is transforming business in all commercial industries, government, and education. We remain one the largest independent, privately held companies in the software industry. Headquartered above Madison Square Garden in New York, Information Builders operates in more than 60 global locations and has built an active customer base of tens of thousands of major installations at the world's leading organizations. Information Builders is not only a major software supplier to our customers, but also a major provider to the leading software vendors in the industry including HP, IBM, Oracle, SAP, Teradata, and many others. In addition to our commitment to superior software engineering, we are equally proud of our people. Some of the most talented and creative professionals in the industry work at Information Builders and are passionate about what they do. In fact, the professionalism and tenure of our employees is often cited as a major differentiator by our customers. Our reputation for customer service has garnered us the highest honors from “CRM” magazine, the SSPA, and the American Business Awards. Our products and services have received top recognition from independent analyst research firms including Gartner, Forrester, Ventana Research, BARC, Butler, Bloor, and The Data Warehouse Institute (TDWI). Most importantly, our customers have received the most information technology and business awards for their accomplishments. More than 50 of our customers have had their information systems inducted into the Smithsonian Institute for superior information technology achievement through the Computerworld Honors Program. http://www.informationbuilders.com/about_us http://www.informationbuilders.com
{{{size}}}       Ipswitch is an IT management software developer for small and medium-sized businesses. The company was founded in 1991 and is headquartered in Burlington, Massachusetts and has operations in Atlanta (Alpharetta) and Augusta, Georgia, American Fork, Utah, Madison, Wisconsin and Galway, Ireland. Ipswitch sells its products directly, as well as through distributors, resellers, and OEMs in the United States, Canada, Latin America, Europe, and the Pacific Rim. https://www.ipswitch.com/
{{{size}}}       IriusRisk makes DevSecOps a reality with its pioneering threat modeling and SDL risk management platform. IriusRisk is a powerful tool to ensure security is woven into the design phase and followed up into production. It operates as a central orchestration point for teams to threat model and manage risk with real-time updates throughout the SDL. Built for integration, simplicity, scale, and speed, IriusRisk is the glue to bind Security, Operations & Development together. IriusRisk is a trusted partner of some of the largest financial institutions in the world and we pride ourselves on being fast to adapt, agile, flexible, responsive and ahead of the curve. IriusRisk operates globally and stands ready to partner with you. Contact us for more information and to request a demo. www.iriusrisk.com
{{{size}}}       Johnson Controls is a global diversified technology and industrial leader serving customers in more than 150 countries. Our 130,000 employees create quality products, services, and solutions to optimize energy and operational efficiencies of buildings; lead-acid automotive batteries and advanced batteries for hybrid and electric vehicles; and seating components and systems for automobiles. Our commitment to sustainability dates back to our roots in 1885, with the invention of the first electric room thermostat. Through our growth strategies and by increasing market share we are committed to delivering value to shareholders and making our customers successful. In 2015, Corporate Responsibility Magazine recognized Johnson Controls as the #14 company in its annual “100 Best Corporate Citizens” list.” http://www.johnsoncontrols.com/content/us/en/products/building_efficiency/product-security.html
{{{size}}}       Jscrambler is the leader in JavaScript Application Integrity and the only to offer RASP capabilities to your JS applications.As JavaScript becomes the standard for building websites, hybrid mobile applications, or other application types, most of the code is still completely exposed. With Jscrambler you can make your application self-defensive and resilient to both tampering and reverse-engineering attempts. Jscrambler is trusted by hundreds of companies (including Fortune 500) around more than 130 countries and is supported by a team of JS experts. https://jscrambler.com/en/
{{{size}}}       Kenna Security provides a Risk and Vulnerability Intelligence platform that accurately measures risk and prioritizes remediation efforts before an attacker can exploit an organization’s weaknesses. Kenna accomplishes this by automating the integration of customer’s vulnerability scan data with exploit intelligence data from multiple sources, including 0-day data. Kenna then analyzes the data against active Internet breaches to identify the most critical threats before hackers can attack.  https://www.kennasecurity.com/
{{{size}}}       Kiuwan provides an end-to-end Software Analytics platform that offers objective data to make informed decisions to secure, analyze and control the entire SDLC of any application portfolio. With Kiuwan Code Security, the scope in threat mitigation is unparalleled, with over 4000+ custom rules, ability to suppress defects and create tailored action plans while meeting the most stringent industry standard requirements. In constant evolution, it boasts broad language support and integration with Jira, Jenkins, and Github to name but a few of the possibilities brought about by the platform. https://www.kiuwan.com/
{{{size}}}       ‎The Media Trust is on a mission: fixing the internet. To make the internet a healthier, more valuable place for businesses, governments and consumers, The Media Trust’s centralized platform provides real-time visibility and insight into non-compliant activity and threats operating in enterprise website and mobile app environments. With an emphasis on third-party code beyond libraries, the platform identifies all executing code (including code from first, third and nth parties), analyzes its behavior, assesses compliance with company policies, and resolves violating behavior. The ability to manage third-party digital risk helps defend against website breaches which can lead to regulatory fines, revenue loss, and reputational harm. http://mediatrust.com/
{{{size}}}       Mercari is a C2C marketplace app that makes it easy for people to safely sell and ship their things. Launched in 2013, it's now among the largest peer-to-peer selling platforms globally. From fashion to toys, shoes to electronics and beyond, Mercari's mission is to ‘create value in a global marketplace where anyone can buy and sell’. https://about.mercari.com/en/
NETSPI Logo 2017 PNG-01.png       NetSPI is a privately held information-security consulting company founded in 2001. By using its consulting team's deep security knowledge and its CorrelatedVM vulnerability management & reporting solution, the company is a trusted advisor to large enterprises. NetSPI provides a range of assessment and advisory services designed to analyze and mitigate risks and ensure compliance with relevant regulations and industry standards. Clients include large financial services firms, retailers, healthcare organizations and technology companies. http://www.netspi.com
{{{size}}}       Only the NowSecure Platform delivers automated 360-degree coverage of mobile app security testing with the speed and depth modern enterprises require. The world’s most demanding organizations and advanced security teams trust NowSecure to identify the broadest array of security, privacy, and compliance gaps in custom, third-party, and business-critical mobile apps. https://www.nowsecure.com/
Oneconsult 2018 logo.png      ‎ Oneconsult group is your renowned Swiss cyber security services partner since 2003 with offices in Switzerland and Germany and 1500+ completed security projects worldwide. Get expert advice from an owner-managed and vendor-independent consultancy with 35+ highly qualified cyber security experts, including certified penetration testers (OPST, OPSA, OSCP, OSCE, GXPN), digital forensics specialists (GCFA, GCFE, GREM), ISO security auditors (ISO 27001 Lead Auditor, ISO 27005 Risk Manager) and dedicated IT security researchers to solve even your most demanding information security challenges. Together we address your external and internal threats such as malware infections, hacker attacks and APT as well as digital fraud and data leakage with core services like penetration tests / ethical hacking, real-life APT tests and ISO 27001 security audits. In case of emergency, One consults incident response & IT forensics team supports you with around-the-clock expert assistance (24 h x 365 days). English: https://www.oneconsult.com/en/

Deutsch: https://www.oneconsult.com/de/

link={{{link}}}       https://www.oracle.com/index.html
{{{size}}}       Since 1995 we have always developed the most up-to-date and progressive digital solutions designed to empower people. Our mission is to deploy the latest proven technology to deliver unique products with astounding performance. Our Oxford based team are responsible for delivering our full range of services which includes the design, development, hosting, supporting and testing of interactive Web Applications and websites. https://www.oxfordwebapps.co.uk/
{{{size}}}       100 years ago, Panasonic started with a desire to create things with value. Since then, the challenge has continued into various fields including home appliances to realize "A Better Life, A Better World".

Considering product security as part of quality management, we have strived to improve the security of products. Specific activities include threat analysis during the design process, and vulnerability testing before shipment. After shipment, Panasonic PSIRT: Product Security Incident Response Team works to respond to incidents toward a quick resolution. To provide products that our customers can use with peace of mind, we will continue product security initiatives.

https://www.panasonic.com/
{{{size}}}       Ping An Technology (PATech), a wholly-owned subsidiary of Ping An Group, is committed to using AI, intelligent cognition, blockchain, cloud and other cutting-edge technologies to create a new cloud-based human life. PATech is the high-tech core and tech business incubator among Ping An Group, and be responsible for the development and operation of the critical platforms and services for the Group. As an independent entity, with smart technology as a means and smart manufacturing as a blueprint, PATech focuses on the finance, healthcare and smart city areas, applies the technological capabilities certified by international authoritative certifications to actual business scenarios. http://tech.pingan.com/en/
{{{size}}}       Rakuten, Inc. and its consolidated subsidiaries and affiliates ("Rakuten Group") are full-line Internet services companies. Since its founding in 1997, Rakuten, Inc. ("Rakuten") has spent a decade evolving its business model centered on e-commerce, to create a market completely new to Japan. The Rakuten Group is focusing on two approaches, in particular, to target growth in the decade to come. The first is to empower people and society through continuous innovation and business operations based on our five concepts of success. The second is to establish a "Rakuten eco-system" which enables us to maximize our customers lifetime value and leverage synergies. Guided by the key phrase "more than Web", the Rakuten Group is taking on the challenge of creating new value by driving convergence between the Internet and traditional "bricks and mortar" businesses. http://www.rakuten.com
{{{size}}}       Salt Security makes it safe to innovate by protecting the APIs at the core of every SaaS, web, mobile, microservices and IoT application. Our API Protection Platform is deployed in minutes, and requires no configuration or customization. We use patented behavioral protection to automatically and continuously discover and learn the granular behavior of each unique API to ensure protection. The company was founded in 2016 by alumni of the Israeli Defense Forces (IDF) and serial cybersecurity executives. In 2019 Salt Security was selected as a finalist for the RSA Innovation Sandbox and as the winner of the OWASP Innovation Fair. https://salt.security/
{{{size}}}       SCSK provides a full lineup of services to support any area of IT solution required for businesses from system integration to IT infrastructure implementation, IT management, BPO(business process outsourcing), and IT hardware and software sales.In addition, we take advantage of the capability to support a global IT system network for customers including Sumitomo Corporation, aiming for further leaps ahead as a global IT services company. http://www.scsk.jp/index_en.html
{{{size}}}       ‎ SecureBrain (A Hitachi Group Company) is a leader in providing software and services to help protect enterprises and their customers against cybercrime including online fraud and malware attacks.

To ensure that our customers are always protected from the latest trend of cybercrime, SecureBrain has its own advanced security research center. Team of security researchers works closely with many Japanese government research agencies to research and develop solutions against the latest cyber threats.

https://www.securebrain.co.jp/eng/
{{{size}}}       Security Journey is the leader in application security education using security belt programs. We guide our clients – many in tech, healthcare, and finance – to building long-term, sustainable application security culture. We incorporate everything you need to deploy and manage an education program.

Our cloud-based platform delivers application security lessons from an ever-growing library of content, provides hands-on, immersive experiments, measures student and organizational growth, rewards student achievements, and transforms an enterprise’s security culture. We promote security awareness organization-wide with learning that is engaging, motivating, and fun. In short, we provide security education developers, testers, and managers love.

https://www.securityjourney.com/
{{{size}}}       Secure Code Warrior is a global security company that makes software development better and more secure. Our vision is to empower developers to be the first line of defense in their organization by making security highly visible and providing them with the skills and tools to write secure code from the beginning. We have built a powerful platform that moves the focus from reaction to prevention, training and equipping developers to think and act with a security mindset as they build and verify their skills, gain real-time advice and monitor skill development. Our customers include financial institutions, telecommunications providers and global technology companies in Europe, North America and the Asia Pacific. To learn more, visit https://securecodewarrior.com. https://securecodewarrior.com/
{{{size}}}       Security Compass is a leader in helping customers proactively manage cybersecurity risk without slowing down their business. Offering Advisory Services, Training, and SD Elements, an award-winning policy to procedure platform for security and compliance. Security Compass enables organizations to rapidly and efficiently deliver technology that's secure by design. Security Compass serves some of the world's largest businesses including seven of the 15 largest financial institutions and four of the 10 largest technology companies in North America. http://www.securitycompass.com
{{{size}}}       Security Innovation is a pioneer in software security and trusted advisor to its clients. Since 2002, organizations have relied on our assessment and training solutions to make the use of software systems safer in the most challenging environments – whether in Web applications, IoT devices, or the cloud. The company’s flagship product, CMD+CTRL Cyber Range, is the industry’s only simulated Web site environment designed to build the skills teams need to protect the enterprise where it is most vulnerable – at the application layer. Security Innovation is privately held and headquartered in Wilmington, MA USA. For more information, visit www.securityinnovation.com or connect with us on LinkedIn or Twitter. https://securityinnovation.com
{{{size}}}       ShiftLeft is a continuous application security platform, purpose-built for the modern software development life cycle. It combines next-generation static code analysis (to quickly and accurately identify vulnerabilities) with application instrumentation (to protect the application) in an automated workflow. This combination of runtime-informed code analysis and code- informed runtime protection delivers the most accurate, automated, and comprehensive application security solution. https://blog.shiftleft.io/
{{{size}}}       There are a staggering volume and variety of open source and third-party component parts flowing through every development environment in the world. If properly sourced and managed, these components are a tremendous source of energy for accelerating innovation. If not, they lead directly to security vulnerabilities, licensing risks, enormous rework, and waste. With over 120,000 installations and counting, Sonatype’s Nexus products are helping modern development organizations intelligently source, manage, assemble, and maintain open-source and third-party components, so they can improve the quality, security, and speed of their software supply chains. http://www.sonatype.com
{{{size}}}       StackHawk is dynamic application vulnerability scanning built for modern development teams. With simple configuration, easy invocation via docker command, and interpretable results, StackHawk is built for developers to take control of their AppSec. Learn more at docs.stackhawk.com. https://www.stackhawk.com/
{{{size}}}       Snyk is a developer-first security solution that helps you use open source code and stay secure. Building on its unique vulnerability database, Snyk continuously finds and fixes known vulnerabilities & license violations in open source dependencies and containers. Snyk integrates seamlessly into the developers’ workflow and enables them to own the open source security of their code thus supporting security at scale. https://snyk.io/
{{{size}}}       SpringCM delivers an innovative document workflow and management platform, powering the leading contract management application. SpringCM empowers companies to become more productive by reducing the time spent managing mission-critical business documents. Intelligent, automated workflows enable document collaboration across an organization from any desktop or mobile device. Delivered through a secure cloud platform, SpringCM’s document and contract management solutions work seamlessly with Salesforce or as a standalone solution. Every day, more than 600 companies use SpringCM to improve customer experience and get more done, faster. For more information about SpringCM, visit www.springcm.com. https://developer.springcm.com/
{{{size}}}       Symantec Corporation (NASDAQ: SYMC), the world’s leading cybersecurity company, helps organizations, governments, and people secure their most important data wherever it lives. Organizations across the world look to Symantec for strategic, integrated solutions to defend against sophisticated attacks across endpoints, cloud, and infrastructure. Likewise, a global community of more than 50 million people and families rely on Symantec’s Norton and LifeLock product suites to protect their digital lives at home and across their devices. Symantec operates one of the world’s largest civilian cyber intelligence networks, allowing it to see and protect against the most advanced threats. For more information, please visit www.symantec.com. https://www.symantec.com
{{{size}}}       Synopsys technology is at the heart of innovations that are changing the way we live and work. The Internet of Things. Autonomous cars. Wearables. Smart medical devices. Secure financial services. Machine learning and computer vision. These breakthroughs are ushering in the era of Smart, Secure Everything―where devices are getting smarter, everything’s connected, and everything must be secure. Powering this new era of technology are advanced silicon chips, which are made even smarter by the remarkable software that drives them. Synopsys is at the forefront of Smart, Secure Everything with the world’s most advanced tools for silicon chip design, verification, IP integration, and application security testing. Our technology helps customers innovate from Silicon to Software, so they can deliver Smart, Secure Everything. https://www.synopsys.com/
{{{size}}}       tCell moves application security out of the network for cloud-first organizations. Using advanced runtime application self-protection technology, tCell protects applications in-production from XSS, Commandi, SQLi, Account Takeover, and OWASP Top 10 attacks. Whether an organizations’ applications are on-premises or cloud-based, tCell's unique approach makes application security easy. https://www.tcell.io/
ThoughtWorks Logo.png       We are a software company and community of passionate, purpose-led individuals. We think disruptively to deliver technology that addresses our clients’ toughest challenges, all while seeking to revolutionize the IT industry and create positive social change. ThoughtWorks' 3,000 professionals serve clients from offices in Australia, Brazil, Canada, China, Ecuador, Germany, India, Italy, Singapore, South Africa, Turkey, Uganda, the United Kingdom, and the United States. ThoughtWorks releases a regular technology radar, a study that looks at the key trends that impact software development and business strategies. The Radar helps companies stay on top of topics that are constantly evolving, such as security, and offers insight and practical tools to build secure systems at every stage of the development process. http://www.thoughtworks.com/
{{{size}}}       Twistlock is the most complete, automated and scalable cloud native cybersecurity platform. Trusted by hundreds of customers worldwide, Twistlock uses the strengths of cloud native to provide better security for teams using Docker, Kubernetes, Lambda, Fargate, and other modern technologies. https://www.twistlock.com/
{{{size}}}       UBsecure is a leading web application security company based in Japan since 2007. We offer various security solutions for web application and smartphone application by utilizing in-house developed application security testing tool, Vex. Vex built by a tremendous amount of experience in professional security scanning and by its continuous feedback. The unique characteristic of the tool is that it used as a stand-alone security testing tool as well as the seamless security testing component within the SDLC. Therefore, Vex is not only for professional security auditors but also for software developers who need secure development cycles. Please visit our site for more information about Vex. https://vex.ubsecure.jp/lpen
{{{size}}}       https://www.ups.com/us/en/Home.page
{{{size}}}       Veracode gives companies a comprehensive view of security defects so they can create secure software, and ensure the software they are buying or downloading is free of vulnerabilities. As a result, companies using Veracode are free to boldly innovate, explore, discover, and change the world. https://www.veracode.com/
{{{size}}}       Verizon Digital Media Services offers a global, PCI-compliant content delivery network to protect websites, applications and user data at every layer. Integrated with our industry-leading platform, our Cloud Security Solution offers world-class protection, performance and scale to keep your business online. Our network features:
  • An advanced Web Application Firewall (WAF) to protect web applications against attacks
  • Robust DDoS protection with massive capacity to thwart the largest attacks
  • Bot mitigation to defend against automated threats and bad bots
  • Added protection for web servers to defend against direct-to-origin attacks
  • Built-in DNS protection with DNSSEC to prevent injection of fraudulent records
  • A security operations team ready to provide a fully managed security offering

Contact us today to learn more about our Cloud Security Solution or visit us at www.verizondigitalmedia.com.

https://www.verizondigitalmedia.com/platform/edgecast-cdn/security/
{{{size}}}       The Waratek ARMR Platform provides unique protection in the applications runtime environment. This unique security layer provides fast and accurate security in the compilation pipeline, providing protection that becomes part of your application – but never requires changes to source code.

● Instantly apply code equivalent security patches to Java and .NET applications ● Actively secure against the OWASP Top Ten / SANS 25 / Zero-Day vulnerabilities ● Virtually upgrade & secure out-of-support, vulnerable Java applications. All with no source code changes or False Positives.

http://www.waratek.com/
Wallarm Logo (1).png       Wallarm delivers automated cloud-native application and API security throughout application development and deployment lifecycle.

Wallarm AI-powered Application Security Platform includes FAST for CI/CD-integrated security test automation during development and Advanced WAF attack blocking and vulnerability protection after deployment. Wallarm platform aligns security and development into a unified pipeline:

  1. Detects OWASP Top 10, 0 day and behavioral issues
  2. Provides highly accurate detection based on patent-pending technology
  3. Improves security test coverage by automatically generating and running tests
  4. Automates issue management with deep learning, policies and build in active rechecker
  5. Provide easy-to-manage multi-tenant multi-application unified management platform
https://wallarm.com/
{{{size}}}       WhiteHat Security is the leader in application security, enabling businesses to protect critical data, ensure compliance, and manage risk. Through a combination of technology, over a decade of intelligence metrics, and the judgment of people, WhiteHat Security provides complete web security at a scale and accuracy unmatched in the industry. https://www.whitehatsec.com
{{{size}}}       WhiteSource helps software security teams manage open source components used in their products, automatically and continuously. It becomes part of your SDLC and automates the entire process of open source components selection, approval, and management, including finding and fixing vulnerable components. https://www.whitesourcesoftware.com
Retrieved from "https://wiki.owasp.org/index.php?title=Corporate_Supporter_Bios&oldid=256140"