5 DevSecOps Platforms to Watch in 2021

in DevSecOps

DevSecOps closely integrates development and security teams as part of the agile, continuous integration, and delivery (CI/CD) development process

When implemented accurately, DevSecOps significantly increases the productivity of developers and improves the efficiency, quality, and security of the whole software, allowing organizations to release new applications into production quickly.

And as enterprises move from on-premises software to the cloud and the implementation of DevOps in their IT operations, the need for better DevSecOps tools and services is on the rise.

Using some of the DevSecOps tools below will help in implementing and automating the required security measures for your IT infrastructure.


    DevSecOps Platforms to Watch in 2021

    Security in the cloud and cyberspace at large is and should always be one of the main concerns of software companies and every organization that uses technology to provide business solutions.

    In the face of the Covid-19 pandemic, Cision, a PR software company reported a 400% increase in phishing, DDoS, malware, and other cyber threats compared to the pre-pandemic period.

    The compulsory shift to online business models brought about by the pandemic has put a lot of pressure on the Cybersecurity industry.

    Software research giant, Gartner, predicts that the Security Information industry will reach $170 billion market value by 2022.

    As organizations adopt serverless, Kubernetes, edge computing, and other new cloud-based technology trends, there’ll be a more critical need for tools that’ll blend security into DevOps processes.

    DevSecOps closely integrates development and security teams as part of the agile, continuous integration, and delivery (CI/CD) development process.

    It also helps stakeholders ensure the security and protection of applications before moving to the production stage.

    In a bid to address the ever-increasing security issues, cybersecurity stakeholders in the DevOps industry are investing more in DevsecOps tools that can assist companies with implementing security and best practices in the continuous delivery process, thereby allowing them to deploy and secure their large application data pipelines more effectively.

    We’ve put together, this list of DevSecOps platforms that have recently caught the attention of cybersecurity investors and integrates well with your DevOps pipeline in 2021 and beyond.

    Bridgecrew

    bridgecrew.png

    Bridgecrew is a fast-rising Infrastructure as Code (IaC) platform that automates and embeds security into your cloud workflows from development to deployment and management of your cloud infrastructure.

    Bridgecrew platform automates deployment and management of cloud applications, allowing security teams to automatically identify and fix misconfigurations and security clusters in the system.

    It leverages existing APIs to periodically check your cloud infrastructure to ensure compliance with predefined security policies and best practices.

    Bridgecrew raised $4.1 million in its seed phase and $14 million in its series A funding in April 2020,  directed at automating its cloud security platform.

    In February 2021, Bridgecrew was acquired for $156 million by cybersecurity giant, Palo Alto Networks, to further expand its Prisma Cloud Security platform - a comprehensive cloud security service that helps organizations effectively predict, prevent, detect, and automatically respond to security risks, into the DevOps process.

    Spectral

    spectral.png

    Founded in July 2020 amidst the covid-19 pandemic, Spectral is a command-line developer-first cloud security tool that offers automatic continuous monitoring and scanning of your cloud infrastructure to detect and fix security issues.

    Spectral is a hybrid security tool that runs on both on-premise and cloud infrastructure and also allows you to create your custom security checks.

    It operates by securely scanning your cloud file system for security threats and anomalies and integrates automatically with your existing continuous integration and logging tools to provide full visibility of your infrastructure security.

    SpectralOps seamlessly integrates with popular CI tools like CircleCI, Jenkins, GitLab, and Bitbucket amongst others.

    Despite being a relatively new startup, Spectral raised $6 million in seed funding for its innovative DevSecOps platform.

    Strata

    strata.png

    Strata provide a multi-cloud identity orchestration platform that unifies identity management across different cloud service providers and on-premise infrastructure.

    According to expert predictions, 2021 will be a year that more companies and organizations will leverage multiple cloud resource providers to enjoy the unique features of each platform.

    The 2020 State of the Cloud report by Flexera - a result gotten from surveying 760 respondents from 554 enterprises, shows that 93 percent of enterprises have now embraced the use of multiple cloud service providers for their infrastructure.

    As more and more companies adopt the multi-cloud strategy, there is difficulty in managing identity credentials across these platforms, Strata takes care of that and allows you to be able to log in to different applications within an organization with the same credentials.

    In February 2021, Strata raised a sum of $11 million in its series A funding round, to further improve on its multi-cloud identity management technology.

    Cavelo

    cavelo.png

    As the data security startup’s homepage reads: “The first step to securing business data is discovery”.

    Cavelo is a continuous data discovery and management tool that helps companies track, discover, classify, and manage sensitive data in alignment with industry security and regulatory requirements.

    It is a machine-learning-powered cloud platform that helps companies reduce cybersecurity data risks by continuously scanning the company’s cloud applications and servers to identify, classify and report sensitive data and security issues automatically.

    In the pre-seed funding championed by MaRS Investment and Accelerator Fund, the Canada-based cybersecurity startup raised 13.1 million Canadian dollars in February 2021 to support the company’s hiring efforts and platform development to meet growing customer demand across North America.

    Apiiro

    apiiro.png

    Apiiro is a systematic approach to security across applications and infrastructure for developers and security teams.

    The platform uses artificial intelligence to learn the historical behavior of application code and analyzes the code to identify any potential risks. It then automatically remediate those risks with every material change at the design phase before it is deployed to the cloud or on-premise infrastructure.

    Apiiro helps developers, security architects, and organizations to accelerate application and infrastructure delivery by automatically remediating risk with every change in the code.

    Apiiro plans to disrupt the DevSecOps market after the Israeli company received a $35 million Series A funding to fuel its mission to help organizations weed out insecure code and risky application development practices in October 2020.


    Get similar stories in your inbox weekly, for free



    Share this story with your friends
    editorial
    The Chief I/O

    The team behind this website. We help IT leaders, decision-makers and IT professionals understand topics like Distributed Computing, AIOps & Cloud Native

    Latest stories


    DevOps and Downed Systems: How to Prepare

    Downed systems can cost thousands of dollars in immediate losses and more in reputation damage …

    Cloud: AWS Improves the Trigger Functions for Amazon SQS

    The improved AWS feature allows users to trigger Lambda functions from an SQS queue.

    Google Takes Security up a Notch for CI/CD With ClusterFuzzLite

    Google makes fuzzing easier and faster with ClusterFuzzLite

    HashiCorp Announces Vault 1.9

    Vault 1.9 released into general availability with new features

    Azure Container Apps: This Is What You Need to Know

    HTTP-based autoscaling and scale to zero capability on a serverless platform