CYBRIC Listed in Gartner 2017 Hype Cycle for Application Security

Aug 10 2017

CYBRIC Listed in Gartner 2017 Hype Cycle for Application Security

New Emerging Gartner Category of Application Security Testing Orchestration aimed at protecting an organization’s most critical data and processes

Boston, MA – August 10, 2017 – CYBRIC, provider of the first software security assurance delivery platform, today announced it has been recognized as a Sample Vendor in Gartner’s “Hype Cycle for Application Security, 2017¹” for the emerging category of Application Security Testing Orchestration (ASTO).

In the report, Gartner analysts Dale Gardner and Michael Isbitski emphasize, “Application security, development and operations teams are challenged with issues that ASTO tools are well-positioned to resolve. These tools are particularly beneficial to organizations adopting more rapid application development methodologies, specifically DevOps. The ability to rapidly ‘stitch together’ disparate tools and processes, coordinate their execution, and examine the results offers significant benefits.”

“We are excited about the inclusion of CYBRIC in the recent Hype Cycle and equally excited about the new emerging category of Application Security Testing Orchestration,” said Ernesto DiGiambattista, CYBRIC CEO. “We agree with Gartner that the benefit to this category of solutions is high and addresses many of the challenges legacy application security approaches face. ASTO should be a consideration for any organization advancing development and concerned with security.”

The report goes on to say, “ASTO solutions aid security, development and operations teams in coordinating the many security tests that should be performed on code. As such, these solutions can be a significant enabler in implementing DevSecOps initiatives, and they promise substantial benefits to the organization in terms of more consistent testing and smoother operations. To the extent individual solutions provide them, additional capabilities — such as the ability to correlate, analyze, and assess defects and vulnerabilities — help improve the speed and effectiveness of vulnerability remediation efforts.”

CYBRIC’s Platform is the first to automate and orchestrate code and application security across the development lifecycle, reducing application vulnerability exposure with security at the velocity of DevOps, without impacting the product environment. By integrating security and DevOps tools across the development lifecycle, CYBRIC provides continuous visibility and assurance across all code repositories, application deployments and cloud infrastructures. CYBRIC detects any changes to code, applications and infrastructure configurations to automatically adapt to the elastic development environment and associated risk.

This is CYBRIC’s second inclusion by Gartner in the past two months. The company was recently recognized in the Gartner report, “Cool Vendors in Monitoring and Management of Threats to Applications and Data, 2017.2

¹Gartner, Hype Cycle for Application Security, 2017, Published: 28 July 2017 ID: G00314199, Analyst(s): Ayal Tirosh.

2Gartner “Cool Vendors in Monitoring and Management of Threats to Applications and Data, 2017” by Lawrence Orans, Dionisio Zumerle, Avivah Litan, Jeremy D’Hoinne, Matthew T. Stamper, Steve Riley, 8 June 2017.


Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

CYBRIC is the first to orchestrate and automate code and application security across the DevOps lifecycle. The company’s Continuous Security-as-a-Service platform leverages its patent-pending Continuous Security Delivery Fabric® to seamlessly integrate security into the development process and deliver frictionless security assurance from code commit to application delivery. To learn more visit or follow us on Twitter @cybric.

Join us for an upcoming webinar to learn how The Dana Foundation embeds security into the SDLC. Register here.

For more information, please contact:

Media relations
Alivia Snyder, InkHouse



  • Share: