close search bar

Sorry, not available in this language yet

close language selection

Synopsys named a Leader in the 2023 Gartner® Magic Quadrant™ for Application Security Testing for the seventh year

In the 2023 Gartner® Magic QuadrantTM for Application Security Testing, Synopsys placed highest and furthest right for the fifth consecutive year for our Ability to Execute and our Completeness of Vision.

What does it take to be a Leader?

There’s a famous quote that says, “Leadership is action, not position.” That really resonates with me as I reflect on Synopsys once again being named a Leader in the 2023 Gartner Magic Quadrant for Application Security Testing (AST).

At Synopsys, we believe leadership comes from the myriad actions we take every day for our customers. It’s through those actions—and interactions—that our most important decisions are made, decisions around how best to help our customers build trust in their software by enabling them to manage application security at the speed their business demands.

We believe this continued recognition from Gartner reflects our commitment to helping our customers deliver software quickly and securely. As recently publicized vulnerabilities and software supply chain attacks show, application security is both critical and complex. To mitigate risks successfully, organizations need to employ multiple security testing solutions that are fast, scalable, easy to use, and seamlessly integrated into the software development life cycle (SDLC).

Download the Gartner report


Gartner MQ | Synopsys

Delivering software that users trust

As the speed and complexity of software development increases—and high-impact security breaches become more frequent—security and development teams must integrate and automate effective security testing as part of their SDLC.

Synopsys continues to invest heavily in providing solutions to address the need for both speed and security.

  • WhiteHat Security. Last June, we acquired WhiteHat Security, a leading provider of application security software-as-a-service (SaaS) solutions. The addition of WhiteHat Security provides Synopsys with significant SaaS capabilities as well as market-leading dynamic application security testing (DAST) technology to strengthen the industry’s broadest AST portfolio.
  • Next-generation Polaris services. Last November, we announced the general availability of two new fast application security testing (fAST) services optimized for speed and simplicity on the Polaris Software Integrity Platform®. Synopsys fAST Static and Synopsys fAST SCA services are built on the same powerful analysis engines as our market-leading Coverity® and Black Duck® solutions—integrated and delivered from the cloud via the latest version of Polaris.
  • DevOps integrations. Throughout the last year, we continued to optimize our AST solutions for developers and DevSecOps use cases, including enhancements to the Code Sight™ IDE plugin and a new GitHub Action for seamlessly integrating Black Duck, Coverity, and Polaris into CI/CD workflows.
  • Cloud-native application security. We enhanced and optimized the Rapid Scan engine across our portfolio, enabling customers to find security weaknesses and hard-coded secrets in cloud-native technologies like infrastructure-as-code (IaC) templates, configuration files, and APIs. Rapid Scan supports more than 2,300 security checks and is now integrated into Code Sight, Coverity, Black Duck, Seeker®, and Polaris.
  • Software supply chain security. We introduced several Black Duck enhancements to help customers better understand and manage the security risks in their software supply chains. These enhancements include malicious component detection, simplified remediation for vulnerable transitive dependencies, and major improvements in scanning speed and scalability.
  • Artificial intelligence. We made significant investments in artificial intelligence over the past two years to advance the speed, accuracy, and actionability of all our products. Leveraging advanced artificial intelligence expertise in Synopsys, we built advanced machine learning and other AI technologies into the core of every product in the portfolio.

Simplifying application security

These investments are an evolution of traditional application security (AppSec). They are enabling a new generation of AppSec, one that provides intelligent, context-aware risk management with increasing speed and simplicity. Whether delivered on-premises or through the cloud, Synopsys continues to provide bold and innovative solutions to our customers’ toughest challenges.

As more customers look to consolidate their AppSec providers, we pride ourselves on offering the vision, flexibility, openness, coverage, and staying power they need to keep pace with the changing world of software development and risk management. Our stability and longevity ensure a safe harbor against today’s—and tomorrow’s—economic uncertainties.

We are more committed than ever to helping our customers build trust in their software at the speed their business demands. We will continue to provide market-leading solutions that enable organizations to address the security of everything that goes into their software, decrease risk without jeopardizing their revenue streams, and align their people, processes, and technology to manage software risk across their organizations and at every stage of their development life cycles.

Gartner, Magic Quadrant for Application Security Testing, 17 May 2023, Mark Horvath, et. Al.

Gartner does not endorse any vendor, product or service depicted in its research publications and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s Research & Advisory organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

Gartner and Magic Quadrant are registered trademarks of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved. 

Jason Schmitt

Posted by

Jason Schmitt

Jason Schmitt

Jason Schmitt is the general manager of the Software Integrity Group at Synopsys. He is a seasoned leader with a proven track record of deep technical knowledge, product development, insight into emerging and rapidly changing cybersecurity challenges, and go-to-market strategy and implementation. He brings more than 20 years of experience in security and enterprise product development and management. Prior to Synopsys, Jason served as the CEO of cloud security startup Aporeto, and vice president and general manager of Fortify and ArcSight at Hewlett Packard. Jason is a Louisiana native, who completed his bachelor's degree in Mechanical Engineering and master's degree in Computer Science at the Georgia Institute of Technology, and his MBA at Georgia State University’s J. Mack Robinson College of Business.

More from Security news and research