Product Listings
Security Compass, the Security by Design Company, is a provider of cybersecurity solutions, enabling organizations to shift left and build secure applications by design, integrated directly with existing DevSecOps tools and workflows. Its developer-centric threat modeling offering, SD Elements, and Application Security Training solutions, including a curriculum of 50+ AppSec courses, Just-In-Time Training within SD Elements, ISC2 co-branded Secure Software Practitioner Suites and KONTRA hands-on developer training exercises help organizations release secure and compliant software to market on time and and with cost efficiency. Security Compass is a solution provider to financial and technology organizations, government agencies, and global brands across multiple industries. The company is headquartered in Toronto, with offices in the U.S. and UK.
IriusRisk is a platform engaged in the automation and support of threat modeling creation during the design phase. This encompasses the generation of risk management recommendations. Besides, IriusRisk facilitates users in managing security risks across the full spectrum of the software development lifecycle. Its core features include top-tier architectural diagramming and complete customization, thereby fostering collaboration across all stakeholders.
Microsoft enables digital transformation for the era of an intelligent cloud and an intelligent edge. Its mission is to empower every person and every organization on the planet to achieve more. Microsoft is dedicated to advancing human and organizational achievement.
Microsoft Security helps protect people and data against cyberthreats to give peace of mind.
Aristiun is an organization that aids other businesses in developing secure and compliant systems. They simplify the process of acquiring certifications like SOC 2, ISO 27001, FedRAMP, and CMMC, and they also assist in understanding new regulations like the EU AI Act. Aristiun uses advanced AI to automate the creation and verification of accurate security requirements, substantially reducing the time typically spent manually modelling threats. With Aristiun's assistance, companies can increase their threat visibility by 40%, proactively addressing vulnerabilities and security lapses. Their services also enable 80% faster secure cloud deployment on platforms like AWS and Azure, which is key for compliance with CIS benchmarks, NIST CSF, and FedRAMP. Additionally, they help expedite secure development lifecycles by 40%, ensuring software consistently meets rigorous certification standards. Among their offerings are Automated Threat Modeling, Code Supply Chain Security, and Cloud Hardening and Configuration Security.
Cisco is a company that specializes in networking technologies, particularly Internet Protocol (IP)-based solutions. It was established in 1984 by a group of computer scientists from Stanford University. As of today, Cisco has a global workforce, continuing to innovate in various fields, notably in routing and switching. Adding to its core business, the company also delves into emerging technologies including home networking, IP telephony, optical networking, security features, storage area networking, and wireless technology. Moreover, Cisco extends its expertise to offer a sweeping range of services such as technical support and advanced services. The company sells its products and services on an enterprise level, to commercial businesses, service providers, and end-users.
Open Worldwide Application Security Project (OWASP) is a global, open community that concentrates on enhancing the security aspects of software. OWASP's mission involves making application security more visible, enabling both individuals and organizations to make informed choices concerning application security risks. Participation in OWASP is open to all, and all materials are readily available under a free and open software license. The OWASP Foundation, a nonprofit charitable organization, guarantees the sustained availability and support for its work.
Seezo focuses on utilizing Gen AI to introduce top-notch AppSec to all engineering teams. The company's core product enables Security teams to conduct security design reviews (Seezo SDR) on all new features developed by the engineering team. This approach ensures that developers receive context-specific security requirements prior to inception of coding.
Splunk operates in the realm of digital security and observability to facilitate safer and more resilient digital infrastructures. The company delivers a unified platform equipped with capabilities to maintain the secure operations of an organization, insulating it against potential digital disruptions.
SecureFlag is a platform designed to empower software developers to write secure code and help organizations minimize vulnerabilities in their software applications.
By focusing on practical learning, SecureFlag provides hands-on, interactive training in real-world environments. The platform's unique learning approach includes exposing developers to simulated attack scenarios, allowing them to understand vulnerabilities from an attacker's perspective.
SecureFlag offers a catalogue with thousands of hands-on labs covering a wide range of vulnerability types and 45+ technology stacks. These exercises allow developers to learn how to identify, exploit, and remediate vulnerabilities in a safe environment.
The platform also provides detailed analytics and reporting, allowing organizations to
monitor their progress and assess the effectiveness of the training, integrating with the organization's existing SDLC.
ThreatModeler provides a patented technology that facilitates automated and collaborative threat modeling, integrated with all components of DevSecOps tool chains. This helps to fully automate the security aspect in DevSecOps from the design phase to code and cloud operations at scale. The key advantage of ThreatModeler’s software-as-a-service platform is that it enhances the security aspect and complies with regulatory requirements in application and infrastructure design. This ultimately saves considerable incident response, remediation, and regulatory fines. Founded in 2010 and based in Jersey City, NJ, ThreatModeler serves individuals in software, security, and cloud architecture, engineering, and development roles across the globe.