AppSec.Hub

AppSec. [Hub] is a solution developed by AppSec Solutions LLC that includes proven techniques and best practices for managing and orchestrating DevSecOps processes.

2024

Integration with AppSec.Code

The AppSec.Hub platform integration was held on a secure development environment. software AppSec.Code This was AppSec Solutions announced on December 17, 2024. This is a full-fledged domestic alternative to the Gitlab Enterprise product, the vendor of which has left the Russian market. Now Russian companies have the opportunity not only to fulfill the mandatory requirements to import substitution in the field, but also information security to solve the problem of a shortage of competencies, as well as significantly reduce the time-to-market. More. here

Private Cloud and Dev Platform compatibility

Certificates of technological compatibility with Private Cloud and Dev Platform products from VK Cloud were received by DevSecOps solutions of the domestic vendor AppSec Solutions: a comprehensive ASPM platform, a solution for preventing attacks on the software supply chain, as well as an automated security analysis platform for mobile applications. AppSec Solutions announced this on November 15, 2024.

Confirmation of technological compatibility made it possible for users of the Private Cloud and solutions for building internal Dev Platform development platforms to deploy more conveniently and faster, and use AppSec.Hub, Stingray and AppSec.Track products from AppSec Solutions.

AppSec.Hub (a product of the Application Security Posture Management - ASPM) class allows you to integrate application information security practices as quickly as possible and implement a full-fledged production pipeline for creating secure applications in the DevSecOps concept.

The cloud platform market is growing in Russia, and we see great business interest in DevSecOps solutions. According to the CSR, the total average annual growth rate of the volume of the Russian secure development market can reach 37.5%. Certifying our Dev Platform and Private Cloud solutions will enable cloud customers to easily and quickly integrate them into cloud-based development processes. And the use of exclusively Russian software is extremely important in the context of both sanctions pressure and the growing ingenuity of hackers, "said Anton Basharin, Senior Managing Director of AppSec Solutions.

The increase in the number of cyber attacks on government organizations and businesses motivates developers to minimize risks even at the stage of writing code. We at VK Tech are making great efforts to make development using our VK Cloud platform as secure as possible. Certification of AppSec Solutions will enable our customers to better meet all industry and regulatory requirements. In turn, for our partners, this will reduce the time for deploying products on the cloud platform and the cost of integration, "said Dmitry Lazarenko, Product Director of VK Cloud and Business Leader of the SaaS Segment, VK Tech.

Integration with Dev Platform

with VK Tech integrated Dev Platform secure development tools Positive Technologies and GC. Swordfish Security The platform is also integrated with AppSec.Hub. VK Tech announced this on June 26, 2024. More. here

2019

AppSec. [Hub] will be tested by Jet Infosystems

On May 30, 2019, it became known that the IT integrator of Jet Infosystems noted AppSec Solutions for the most promising solution in the direction of continuous security at all stages of software development - DevSecOps.

In particular, out of almost 100 projects defended under the Skolkovo Cybersecurity Challenge, Jet Infosystems specialists have identified the AppSec platform. [Hub], designed to manage DevSecOps practices during software development. The integrator will test the solution in its own demo laboratory and, based on the test results, will consider the possibility of including the platform in its product portfolio.

In 2019, DevSecOps became one of the most promising for the Jet Infosystems Information Security Center. The implementation of such projects involves an integrated approach that takes into account both the integration of information security practices into existing development cycles of companies, and classical infrastructure protection (access control, secure configuration, security analysis, etc.).

It is extremely important to integrate security into the software development process so that it does not slow down the business of our customers. It is this factor that the company often names among the reasons that restrain the integration of security in the DevOps direction, which is understandable, since the time-to-market indicator is traditionally at the forefront. Automation and orchestration are a natural way to speed up processes. In the near future, we plan to launch testing of the platform we have chosen, and, I hope, its results will be the start of productive cooperation, which will expand our capabilities in terms of implementing projects to create continuous development security, - said Pavel Volchkov, head of the consulting department of the Information Security Center "Jet Infosystems."

Opportunities

As of May 2019, among the features of the AppSec platform. [Hub]:

• Management and Integration
  • Implementation of AppSec practice management mechanisms and end-to-end integration into the DevSecOps software development process.

• Deployment Control
  • Implementation of software quality control mechanisms at all stages of deployment, from the first assemblies to the transition to commercial operation.

• Automation
  • Automate SSDL software portfolio management processes and monitor the scope and effectiveness of AppSec practices.

• Collection of metrics
  • Implementation of data collection and consolidation mechanisms for automated formation of key metrics.