Trend Micro and Snyk collaborate to tackle open source vulnerabilities

Get a free Techzine subscription!

Trend Micro and Snyk have unveiled their collaborative SaaS solution, named Trend Micro Cloud One – Open Source Security by Snyk. The solution is the first of its kind in the industry, targeting security operations teams.

It can provide real-time insight into open-source flaws to improve risk management.

Open-source software is used by almost all organizations, according to Gartner in its software composition analysis market guide. With that, cybersecurity risks are inherent because of flaws that can be easily exploited. For instance, some flaws could be used for an expanded attack surface where malware is deployed to access sensitive data.

Also read: Snyk brings security to the software development life cycle

What it does

Snyk said that the Trend Micro Cloud One – Open Source Security by Snyk will be used to resolve the enduring cultural barriers between security and development teams. The solution is a centralized way for them to gain visibility from an early stage in the software development cycle.

The application stack can be protected throughout its entire lifecycle if the security and development teams work together to make it that way.

The tool comes with a built-in automation feature that SecOps teams can use to find indirect dependencies in their app stacks.

Uniting developers and security teams

The release is part of the Cloud One platform on the AWS marketplace. Organizations can integrate it with their standard source code platforms like GitHub, GitLab, Jenkins, BitBucket, and others.

Combined, Snyk and Trend Micro are investing in the future of online security where DevSecOps work together to make organizations safer, according to Geva Solomonovich, the global alliances CTO at Snyk.

Users will be able to take a developer-first security approach that mitigates risk and helps the process turn over clean apps. Solomonovich added that Snyk looks forward to more collaboration with Trend Micro to address security.

Tip: Snyk brings security to the software development life cycle