An Intellyx Brain Candy Update
Since we last covered OpsMx in March 2024, the company has completed its pivot from open-source CI/CD vendor to offering full lifecycle application security.
OpsMx’s application security capabilities span multiple product categories, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Bill of Materials (SBOM), Software Composition Analysis (SCA), Mobile Application Protection (MAP), as well as DevOps-focused security capabilities that leverage the company’s heritage as an open-source CI/CD vendor.
This alphabet soup of technologies is all open-source, where the OpsMx value-add is managing whatever security tools a customer has in place, whether they are the tools that OpsMx provides or ones the customer has already implemented.
These management capabilities include managing updates to the various packages. Sometimes, however, recommended updates require time-consuming regression testing that introduces a risky delay.
To address this challenge, OpsMx provides ‘compensating controls,’ which are essentially workarounds when the recommended mitigation for a security issue is too complex, expensive, or time-consuming to implement immediately.
OpsMx also provides policy management and enforcement capabilities, as well as support for compliance efforts via automatic verification of compliance with several common security frameworks.
Copyright © Intellyx BV. Intellyx is an industry analysis and advisory firm focused on enterprise digital transformation. Covering every angle of enterprise IT from mainframes to artificial intelligence, our broad focus across technologies allows business executives and IT professionals to connect the dots among disruptive trends. None of the vendors mentioned in this article is an Intellyx customer. No AI was used to produce this article. To be considered for a Brain Candy article, email us at pr@intellyx.com.
