The 20 Coolest Web, Email And Application Security Companies Of 2020: The Security 100
Part four of CRN's 2020 Security 100 list looks at web, email and application security companies that have doubled down on everything from DevSecOps to web application firewalls to stopping domain spoofing attacks.
Securing Applications From A To Z
From a web, email and application security standpoint, security is becoming increasingly central to software program design. Building in security features reduces the likelihood that unauthorized code will be used to gain control over programs and steal, modify or delete information.
Vendors have invested heavily in strengthening their position in the space via acquisition, capped off by F5 Networks’ $1 billion acquisition of Shape Security. Other major acquisitions included Proofpoint’s $225 million purchase of ObserveIT and $120 million buy of Meta Networks; Mimecast’s purchases of DMARC Analyzer and Segasec; Imperva’s buy of Distil Networks; and Zix’s acquisition of DeliverySlip.
Security is becoming increasingly central to software program design after years of being an afterthought as adversaries capitalize on the wide range of threats. As part of CRN's annual Security 100 list, here are 20 web, email and application security companies that have doubled down on everything from DevSecOps to web application firewalls to stopping domain spoofing attacks.
Alert Logic
Bob Lyons
CEO
Alert Logic extended its attack surface coverage for endpoint, multi-cloud and dark web to help organizations gain broader detection and response capabilities for less effort and lower cost. Integration with the AWS Identity and Access Management Access Analyzer will provide near-real-time visibility and configuration alerts for externally shared resources.
Barracuda
BJ Jenkins
President, CEO
Barracuda Advanced Bot Protection uses AI and machine learning to identify and block malicious bots and help customers defend against the latest automated threats. The new Cloud Application Protection Platform features a globally available and scalable Web Application Firewall-as-a-service solution built on Microsoft Azure.
Checkmarx
Emmanuel Benzaquen
CEO
The Checkmarx‘s Software Exposure Platform now delivers unified policy management, cross-product correlation and machinelearning- based automated prioritization. The CxOSA offering empowers development, AppSec and DevOps teams to identify, triage and remediate opensource software security vulnerabilities as well as license compliance risks.
Contrast Security
Alan Naumann
Chairman, President, CEO
Contrast OSS helps organizations building modern software solve the security, legal and compliance risks associated with their use of open-source software. Integration with PerimeterX will advance application security by combining best-in-class runtime application self-protection and bot mitigation to prevent exploits across websites and mobile apps.
Digicert
John Merrill
CEO
Digicert introduced a new type of digital certificate on CNN.com that ensures corporate logos aren’t being used fraudulently and better identifies businesses to customers in emails by proving the authenticity of a logo. Secure Site Pro’s CT log monitoring service helps firms protect their brands from online fraud by logging and monitoring TLS certificates.
F5 Networks
François Locoh-Donou
President, CEO
F5 Cloud Services deliver foundational security capabilities and will allow companies to configure and automate defenses for multiple attack vectors. The company’s $1 billion acquisition of Shape Security will combine fraud and abuse prevention with F5’s skills in protecting applications across multicloud environments.
Imperva
Pam Murphy
CEO
Imperva purchased bot management vendor Distil Networks to better protect business-critical data and applications no matter where and how they’re deployed. And a new antiDDoS service protects individual IPs, allowing customers with workloads in the cloud to achieve the same level of protection for TCP/IP services.
Menlo Security
Amir Ben-Efraim
Co-Founder, CEO
Menlo Security closed a $75 million Series D funding round to expand its global sales team to meet demand for internet isolation. An integration between Menlo Security and VMware SD-WAN by VeloCloud allows enterprises to connect users to applications securely with exceptional performance, quality and reliability.
Mimecast
Peter Bauer
CEO
The Mimecast Threat Intelligence dashboard identifies the most at-risk users, detects threats with origin by geo-location, and locates indicators of compromise and forensics for actionable response. The company purchased email security vendor DMARC Analyzer to reduce the time and cost associated with stopping domain spoofing.
Oracle
Safra Catz
CEO
Oracle expanded its security portfolio with new cloud services designed to automatically help protect cloud workloads and data from risks posed by misconfigurations and cyberthreats. It also launched IXP Filter Check to improve internet routing security for enterprise customers and users by monitoring route filtering at internet exchange points.
Perforce Software
Mark Ties
President, CEO
The updated TotalView graphical debugger tool offers debugging support for Arm and Nvidia GPUs and a feature that makes it easier for developers to debug in a cluster environment. The latest version of Helix TeamHub offers support for code search across Mercurial repositories.
Proofpoint
Gary Steele
Chairman, CEO
Proofpoint acquired Meta Networks to help customers better protect people, applications and data as they move beyond the traditional perimeter. Its buy of ObserveIT provides insight into user activity by combining Proofpoint’s information classification and threat detection with ObserveIT’s endpoint agent and data risk analytics.
Qualys
Philippe Courtot
Chairman, CEO
Qualys’ free global IT asset discovery and inventory cloud service spans on-premises, endpoints, multi-cloud, containers, OT and IoT environments. A new vulnerability management, detection and response app provides customers with one streamlined workflow to scan, investigate, prioritize and neutralize threats.
Radware
Roy Zisapel
President, CEO
Radware’s DefenseSSL D D o S attack protection tool now features behavioralbased algorithms for keyless protection against HTTPS flood attacks. Its new Kubernetes WAF lets companies secure microservices running onpremises and cloud-based implementations, applying both a positive and a negative security model.
Snyk
Peter McKay
CEO
Snyk protects and secures the development of applications and containers using open source and running on Microsoft Azure, enabling customers to secure their payloads and safely adopt open source. Snyk Container helps developers deal with vulnerabilities found in container images and Kubernetes workloads through fast remediation.
Trustwave
Art Wong
CEO
Trustwave unveiled database security scanning and testing software that helps protect critical data assets from advanced threats, configuration errors and access control issues. The Trustwave Fusion platform gives enterprises visibility and control over how security resources are provisioned, monitored and managed across any environment.
Veracode
Sam King
CEO
The Veracode Software Composition Analysis cloud-based offering delivers vulnerable methods detection technology and machine- learning models to identify vulnerabilities that have been fixed by open-source projects but not disclosed to the National Vulnerability Database.
WhiteHat Security
Craig Hinkley
CEO
WhiteHat Security partnered with RSI in May to provide a one-stop offering for identifying and remediating application security threats to alleviate the challenges of DevSecOps. It also said it will offer free application scanning services to federal, state and municipal agencies in North America to defend the nation against sophisticated cyberattacks.
Zix
David Wagner
President, CEO
Zix acquired the assets of email security provider DeliverySlip to expand the company’s product suite and customer base while delivering cost savings and creating more cross-selling opportunities. It also extended unified information archiving to assist AppRiver partners and customers with increased litigation risk or compliance requirements.
Zscaler
Jay Chaudhry
Founder, Chairman, CEO
Zscaler B2B reduces the attack surface for customer-facing applications by enabling authorized customers to view applications without exposing them to the internet. The company also partnered with CrowdStrike on real-time threat detection and automated policy enforcement that improves security across the networks and endpoint.