5 DevSecOps Platforms to Watch in 2021

DevSecOps Platforms to Watch in 2021

Security in the cloud and cyberspace at large is and should always be one of the main concerns of software companies and every organization that uses technology to provide business solutions.

In the face of the Covid-19 pandemic, Cision, a PR software company reported a 400% increase in phishing, DDoS, malware, and other cyber threats compared to the pre-pandemic period.

The compulsory shift to online business models brought about by the pandemic has put a lot of pressure on the Cybersecurity industry.

Software research giant, Gartner, predicts that the Security Information industry will reach $170 billion market value by 2022.

As organizations adopt serverless, Kubernetes, edge computing, and other new cloud-based technology trends, there’ll be a more critical need for tools that’ll blend security into DevOps processes.

DevSecOps closely integrates development and security teams as part of the agile, continuous integration, and delivery (CI/CD) development process.

It also helps stakeholders ensure the security and protection of applications before moving to the production stage.

In a bid to address the ever-increasing security issues, cybersecurity stakeholders in the DevOps industry are investing more in DevsecOps tools that can assist companies with implementing security and best practices in the continuous delivery process, thereby allowing them to deploy and secure their large application data pipelines more effectively.

We’ve put together, this list of DevSecOps platforms that have recently caught the attention of cybersecurity investors and integrates well with your DevOps pipeline in 2021 and beyond.

Bridgecrew

Bridgecrew is a fast-rising Infrastructure as Code (IaC) platform that automates and embeds security into your cloud workflows from development to deployment and management of your cloud infrastructure.

Bridgecrew platform automates deployment and management of cloud applications, allowing security teams to automatically identify and fix misconfigurations and security clusters in the system.

It leverages existing APIs to periodically check your cloud infrastructure to ensure compliance with predefined security policies and best practices.

Bridgecrew raised $4.1 million in its seed phase and $14 million in its series A funding in April 2020,  directed at automating its cloud security platform.

In February 2021, Bridgecrew was acquired for $156 million by cybersecurity giant, Palo Alto Networks, to further expand its Prisma Cloud Security platform - a comprehensive cloud security service that helps organizations effectively predict, prevent, detect, and automatically respond to security risks, into the DevOps process.

Spectral

Founded in July 2020 amidst the covid-19 pandemic, Spectral is a command-line developer-first cloud security tool that offers automatic continuous monitoring and scanning of your cloud infrastructure to detect and fix security issues.

Spectral is a hybrid security tool that runs on both on-premise and cloud infrastructure and also allows you to create your custom security checks.

It operates by securely scanning your cloud file system for security threats and anomalies and integrates automatically with your existing continuous integration and logging tools to provide full visibility of your infrastructure security.

SpectralOps seamlessly integrates with popular CI tools like CircleCI, Jenkins, GitLab, and Bitbucket amongst others.

Despite being a relatively new startup, Spectral raised $6 million in seed funding for its innovative DevSecOps platform.

Strata

Strata provide a multi-cloud identity orchestration platform that unifies identity management across different cloud service providers and on-premise infrastructure.

According to expert predictions, 2021 will be a year that more companies and organizations will leverage multiple cloud resource providers to enjoy the unique features of each platform.

The 2020 State of the Cloud report by Flexera - a result gotten from surveying 760 respondents from 554 enterprises, shows that 93 percent of enterprises have now embraced the use of multiple cloud service providers for their infrastructure.

As more and more companies adopt the multi-cloud strategy, there is difficulty in managing identity credentials across these platforms, Strata takes care of that and allows you to be able to log in to different applications within an organization with the same credentials.

In February 2021, Strata raised a sum of $11 million in its series A funding round, to further improve on its multi-cloud identity management technology.

Cavelo

As the data security startup’s homepage reads: “The first step to securing business data is discovery”.

Cavelo is a continuous data discovery and management tool that helps companies track, discover, classify, and manage sensitive data in alignment with industry security and regulatory requirements.

It is a machine-learning-powered cloud platform that helps companies reduce cybersecurity data risks by continuously scanning the company’s cloud applications and servers to identify, classify and report sensitive data and security issues automatically.

In the pre-seed funding championed by MaRS Investment and Accelerator Fund, the Canada-based cybersecurity startup raised 13.1 million Canadian dollars in February 2021 to support the company’s hiring efforts and platform development to meet growing customer demand across North America.

Apiiro

Apiiro is a systematic approach to security across applications and infrastructure for developers and security teams.

The platform uses artificial intelligence to learn the historical behavior of application code and analyzes the code to identify any potential risks. It then automatically remediate those risks with every material change at the design phase before it is deployed to the cloud or on-premise infrastructure.

Apiiro helps developers, security architects, and organizations to accelerate application and infrastructure delivery by automatically remediating risk with every change in the code.

Apiiro plans to disrupt the DevSecOps market after the Israeli company received a $35 million Series A funding to fuel its mission to help organizations weed out insecure code and risky application development practices in October 2020.