Sonatype debuts latest to protect the world's enterprise software applications from security, compliance, and licensing threats

Today, 90 percent of the typical enterprise application is comprised of open source building blocks, known as components. These reusable components allow for great speed, efficiency and innovation. The downside is that without proper insight and governance, organizations risk crippling attacks, licensing liability, and compliance exposure. 71 percent of applications contain components with known security flaws classified as severe or critical and an alarming 76 percent of all organizations have no component management policies in-place. more

Sonatype Names Prominent Security Strategist Joshua Corman as CTO

Fulton, Md. – Jan. 16, 2014 Sonatype, the software company that enables developers to rapidly build secure software while also eliminating compliance and licensing risk, today announced the hiring of respected IT security strategist, advocate, and philosopher Joshua Corman as the company’s Chief Technology Officer.

more
Sonatype Press Release

DevNexus, Silver Sponsor

Date: February 24 – 25

Sonatype is a silver sponsor in Atlanta’s most exciting conference for professional software developers. Join us to discover how the industry’s best minds use the latest technologies to build solutions to business problems. Network with other Atlanta software developers, and study real life case studies in application design and development. We hope to see you there.

more
Sonatype Press Release

RSA 2014, Exhibitor

Date: February 24-28, 2014

What are you doing about the new OWASP risk, A9 – using components with known vulnerabilities? Visit Sonatype in the South Expo Hall at booth #2327 to learn how to reduce your component risk.

more
Sonatype Press Release

DevIgnition

Date: Friday, December 6, 2013 9:30AM-6:00PM EST (GMT-0500)
Location: Sterling, VA

more
Sonatype Press Release

AppSec USA

Date: November 18-21, 2013
Location: New York City, New York more

Awards

Codie INC 500 Red Herring SD Times NVTC RSA Gartner