Is ThreadFix the solution to more secure DevOps?

At DevOps World, Denim Group announced that the latest version of their Jenkins Plugin would work with their ThreadFix platform. Enterprise Times sat down with Dan Cornell, Founder and CTO of the Denim Group to ask what this mean. 15 years ago Cornell moved from being a developer to being a security professional. This change of roles gives him an insight into the worlds of both groups of people.

Cornell said that the ThreadFix platform: “Allows organisations to manage their application security and their vulnerability management platforms.” The reason that they need this, explained Cornell is that they all use a wide variety of tools for security. Cornell continued: “ThreadFix allows organisations to pull in all these sources of data into one central location and to normalise and dedup that data.” This step enables security to give developers a list of problems and priorities that they need to solve.

This update to the Jenkins plugin is about making security for CI/CD pipelines easier. Cornell explained that organisations can now kick off security testing, orchestrated by ThreadFix, that feeds issues back to Jenkins, It also populates the organisations defect tracking tools. This is all about taking away the friction that exists between security and developers. As Cornell puts it: “Spiritually, it is in line with DevOps and DevSecOps and how do we breakdown barriers between different teams.”

About Denim Group

Denim Group is the leading secure software development firm, serving as a trusted advisor to customers on matters of software risk and security. The company builds software for the most security conscious while helping organizations assess and mitigate risk within their existing software. Denim Group's flagship ThreadFix product accelerates the process of software vulnerability remediation, reflecting the company's rich understanding of what it takes to fix application vulnerabilities faster. Denim Group has emerged as a strong contributor to the larger application security community and has actively participated in the Open Web Application Security Project (OWASP) since shortly after its inception.

Among many other awards, Denim Group has landed on the "Inc. 5000" list - which recognizes the country's 5000 fastest-growing private companies - for five years in a row. In addition, the San Antonio Business Journal named Denim Group as one of the "Best Places to Work" in the city.

###

Denim Group is a registered service mark of Denim Group, Ltd.
Other names and brands may be claimed as the property of others.