DevOps.com

  • Latest
    • Articles
    • Features
    • Most Read
    • News
    • News Releases
  • Topics
    • AI
    • Continuous Delivery
    • Continuous Testing
    • Cloud
    • Culture
    • DevSecOps
    • Enterprise DevOps
    • Leadership Suite
    • DevOps Practice
    • ROELBOB
    • DevOps Toolbox
    • IT as Code
  • Videos/Podcasts
    • DevOps Chats
    • DevOps Unbound
  • Webinars
    • Upcoming
    • On-Demand Webinars
  • Library
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Communities
    • AWS Community Hub
    • CloudBees
    • IT as Code
    • Rocket on DevOps.com
    • Traceable on DevOps.com
    • Quali on DevOps.com
  • Related Sites
    • Techstrong Group
    • Container Journal
    • Security Boulevard
    • Techstrong Research
    • DevOps Chat
    • DevOps Dozen
    • DevOps TV
    • Digital Anarchist
  • Media Kit
  • About
  • AI
  • Cloud
  • Continuous Delivery
  • Continuous Testing
  • DevSecOps
  • DevOps Onramp
  • Practices
  • ROELBOB
  • Low-Code/No-Code
  • IT as Code
  • More
    • Application Performance Management/Monitoring
    • Culture
    • Enterprise DevOps

Home » Blogs » Denim Group’s ThreadFix 2.7 Supports Flexible Structuring of Application Security Programs

Denim Group’s ThreadFix 2.7 Supports Flexible Structuring of Application Security Programs

By: DevOps.com on October 18, 2018 Leave a Comment

Company’s Vulnerability Resolution Platform Amplifies Resources for Maximum Effectiveness

Recent Posts By DevOps.com
  • Global Next-Generation Software Engineering Conference
  • Akamai Security Research: Financial Services Continues Getting Bombarded with Credential Stuffing and Web Application Attacks
  • Vulcan Cyber Announces New Chief Revenue Officer and Internal Promotions to Accelerate Rapid Growth
More from DevOps.com
Related Posts
  • Denim Group’s ThreadFix 2.7 Supports Flexible Structuring of Application Security Programs
  • ThreadFix Platform Provides Application Security at DevOps Speed
  • Denim Group Awarded Hybrid Analysis Mapping Patents by U.S. Patent and Trademark Office
    Related Categories
  • Blogs
Show more
Show less

 Denim Group, the leading independent application security firm, today announced availability of the latest version of ThreadFix, the company’s application vulnerability resolution platform for developers and security professionals. ThreadFix 2.7 unites Denim Group’s ThreadFix platform with their professional and managed services, providing customers the ability to request services directly from ThreadFix User Interface (UI) and have the results of these services delivered directly to their ThreadFix platform upon completion. This most recent update allows Denim Group’s customers to receive actionable data, rather than a stagnant PDF, enhancing communication effectively with their development teams for accelerated remediation of vulnerabilities.

ThreadFix 2.7 provides the flexibility and capability for any organization to tune their program for maximum effectiveness. Customers who require support to maintain an efficient application security program can seamlessly assign tasks, such as assessments and source code review, to Denim Group’s highly qualified team who provide on-demand testing and application vulnerability resolution. This enhanced service reduces the friction associated with implementing testing programs by allowing customers to request QuickCheck assessments directly through the platform. These assessments go beyond the simple automation that scanning vendors provide to include false positive culling and time-boxed manual testing.

“Our goal is to provide our customers with the freedom to easily build the application security programs they want,” said Dan Cornell, CTO and Principal of Denim Group. “ThreadFix 2.7 provides organizations with the viable option to outsource components of their programs in order to free up time and resources, enabling teams to focus on developing strategy, interacting with executives to get buy-in on managing software risk, developing security architecture around CI/CD pipelines, and working with development teams to threat model new applications.”

Additionally, the ThreadFix platform offers application portfolio reporting characterized by risk, along with information on the most recent assessment activity, in order to provide organizations with a program-oriented view of the applications being managed. This allows teams to clearly define risk as it relates to criticality of application, how severe the vulnerabilities are, when the last time the user ran a scan/assessment, and what vulnerabilities should be fixed first. This risk-centric view ensures that the organization can quickly identify the most serious issues and the most glaring blind spots.

The structuring of application security programs is challenging for organizations who are limited by budget, talent and knowledge. Through enhancements to ThreadFix, Denim Group is putting power back in the hands of the businesses, enabling them to grow their application security initiatives by amplifying the value of their team’s resources. ThreadFix 2.7 delivers a clearly defined view application portfolio risk and brings knowledgeable outsourcing resources so that all organizations can address software security.

For more information on the ThreadFix platform, please visit our website: https://threadfix.it/.

About Denim Group

Denim Group is the leading independent application security firm, serving as a trusted advisor to customers on matters of application risk and security. The company helps organizations assess and mitigate application security risk. Denim Group’s flagship ThreadFix platform accelerates the process of application vulnerability remediation, reflecting the company’s rich understanding of what it takes to fix application vulnerabilities faster.

Filed Under: Blogs

Sponsored Content
Featured eBook
Hybrid Cloud Security 101

Hybrid Cloud Security 101

No matter where you are in your hybrid cloud journey, security is a big concern. Hybrid cloud security vulnerabilities typically take the form of loss of resource oversight and control, including unsanctioned public cloud use, lack of visibility into resources, inadequate change control, poor configuration management, and ineffective access controls ... Read More
« Blockchain Startup RNDR Surpasses GPU Capacity of Public Cloud Tech Giants with World’s Largest GPU Cloud Rendering Network
DevOps and Containers: A Network Divided »

TechStrong TV – Live

Click full-screen to enable volume control
Watch latest episodes and shows

Upcoming Webinars

Bring Your Mission-Critical Data to Your Cloud Apps and Analytics
Tuesday, August 16, 2022 - 11:00 am EDT
Mistakes You Are Probably Making in Kubernetes
Tuesday, August 16, 2022 - 1:00 pm EDT
Taking Your SRE Team to the Next Level
Tuesday, August 16, 2022 - 3:00 pm EDT

Latest from DevOps.com

Techstrong TV: Scratching the Surface of Testing Through AI
August 12, 2022 | Alan Shimel
Next-Level Tech: DevOps Meets CSOps
August 12, 2022 | Jonathan Rende
The Benefits of a Distributed Cloud
August 12, 2022 | Jonathan Seelig
Cycode Expands Scope of AppDev Security Platform
August 11, 2022 | Mike Vizard
Techstrong TV: The Use of AI in Low-Code
August 11, 2022 | Charlene O'Hanlon

Get The Top Stories of the Week

  • View DevOps.com Privacy Policy
  • This field is for validation purposes and should be left unchanged.

Download Free eBook

Hybrid Cloud Security 101
New call-to-action

Most Read on DevOps.com

CREST Defines Quality Verification Standard for AppSec Testi...
August 9, 2022 | Mike Vizard
Leverage Empirical Data to Avoid DevOps Burnout
August 8, 2022 | Bill Doerrfeld
MLOps Vs. DevOps: What’s the Difference?
August 10, 2022 | Gilad David Maayan
We Must Kill ‘Dinosaur’ JavaScript | Microsoft Open Sources ...
August 11, 2022 | Richi Jennings
GitHub Brings 2FA to JavaScript Package Manager
August 9, 2022 | Mike Vizard

On-Demand Webinars

DevOps.com Webinar ReplaysDevOps.com Webinar Replays
  • Home
  • About DevOps.com
  • Meet our Authors
  • Write for DevOps.com
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • Privacy Policy

Powered by Techstrong Group, Inc.

© 2022 ·Techstrong Group, Inc.All rights reserved.