{"id":98723,"date":"2025-07-31T10:08:14","date_gmt":"2025-07-31T08:08:14","guid":{"rendered":"https:\/\/staging.checkmarx.com\/?page_id=98723"},"modified":"2025-07-31T10:09:23","modified_gmt":"2025-07-31T08:09:23","slug":"2024-tolly-report-general-g","status":"publish","type":"page","link":"https:\/\/checkmarx.com\/position-paper-code-at-risk\/","title":{"rendered":"Position Paper\u00a0\u2013 Code at Risk\u00a0"},"content":{"rendered":"<section class=\"section-inner-hero-text-left page-without-header-bg__hero with-visual-bg  dark-theme\">\n\t        <picture class=\"section-inner-hero-bg\">\n            <source media=\"(min-width: 992px)\" srcset=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_Risk_hero_bg_2x-scaled.webp\">\n            <source media=\"(min-width: 320px)\" srcset=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_Risk_hero_bg_2x-scaled.webp\">\n            <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_Risk_hero_bg_2x-scaled.webp\" alt=\"background image\">\n        <\/picture>\n\t\n    <div class=\"main-wrapper section-inner-hero-text-left__wrapper\">\n        <div class=\"section-inner-hero-text-left__wrap-text\">\n\t\t\t<p class=\"section-description-top section-description-top-lp color-brand\">Position Paper <\/p>\n<h1 class=\"section-title\">Code at Risk<\/h1>\n<div class=\"section-description\">\n<p><span class=\"TextRun SCXW81115369 BCX0\" lang=\"EN-US\" xml:lang=\"EN-US\" data-contrast=\"auto\"><span class=\"NormalTextRun SCXW81115369 BCX0\">Why DevOps Teams Need to Unify Application Securit<\/span><span class=\"NormalTextRun SCXW81115369 BCX0\">y<\/span><\/span><\/p>\n<\/div>\n            <div class=\"wrap-btns-hero\">\n\t\t\t\t        <a href=\"#form\" class=\"btn btn-2 btn-bg accent demo color-light\" target=\"_blank\">Read Now<\/a>\n                    <\/div>\n        <\/div>\n\n\t\t        <div class=\"visual-bg-wrap\">\n\t\t\t        <img decoding=\"async\" class=\"visual-bg\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_Risk_hero_image_2x.webp\" width=\"660\" height=\"460\" alt=\"Code_at_Risk_hero_image_2x\">\n                <\/div>\n    <\/div>\n<\/section>\n\n<section class=\"section-slider-logo js-wrap-line-slider-logo\">\n    <div class=\"main-wrapper\">\n        <div class=\"swiper slider-hero-logo\">\n            <div class=\"swiper-wrapper\">\n                                    <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/01-Apple.svg\" alt=\"01 Apple\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/04-Salesforce.svg\" alt=\"04 Salesforce\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/05-Siemens.svg\" alt=\"05 Siemens\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/06-Walmart.svg\" alt=\"06 Walmart\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/07-Ford.svg\" alt=\"07 Ford\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/08-CITI.svg\" alt=\"08 CITI\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/09-VISA.svg\" alt=\"09 VISA\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/02\/the_carlsberg_group_logo_strip.svg\" alt=\"the_carlsberg_group_logo_strip\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/10-Elevance-Health.svg\" alt=\"10 Elevance Health\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/12-Orange.svg\" alt=\"12 Orange\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/13-Airbus-Group.svg\" alt=\"13 Airbus Group\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/14-Novartis.svg\" alt=\"14 Novartis\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/16-GE.svg\" alt=\"16 GE\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/17-Sainsburys.svg\" alt=\"17 Sainsbury's\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/18-PWC.svg\" alt=\"18 PWC\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/19-The-weather-company.svg\" alt=\"19 The weather company\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/20-CGI.svg\" alt=\"20 CGI\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/21-Adidas.svg\" alt=\"21 Adidas\">\n                                <\/div>\n                    <\/div>\n                                        <div class=\"swiper-slide\">\n                        <div>\n                                    <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/07\/22-SAP.svg\" alt=\"22 SAP\">\n                                <\/div>\n                    <\/div>\n                                <\/div>\n        <\/div>\n    <\/div>\n<\/section>\n\n\n<section class=\"section-registration section-registration-lp light-theme gradient section-lp-flexible section-registration__simple_text\">\n        <div class=\"main-wrapper section-registration__wrapper\">\n        <div class=\"section-registration__left\">\n            <p><span data-contrast=\"auto\">Too many applications are being built using code that is unsafe. According to the Ponemon Institute, 76% of applications have at least one security flaw. NIST has found that the average enterprise app contains over 26 vulnerabilities.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">This is happening due to the demand for faster development. It\u2019s also the result of traditional AppSec that is no longer fit for purpose in a world of cloud-based apps, microservices, GenAI code creation and containerization.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">And this is real business risk, contained in every line of vulnerable code.\u00a0<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">So how can you contain that risk without slowing down development? The answer is fundamentally reimagining how security integrates with those building your application.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">In this position paper, explore these crucial issues in more depth to better understand where the code risk might lie in your organization. Then take a proactive approach by considering how you can change your structure and culture to enjoy both the security and speed your business demands. This includes:<\/span><span data-ccp-props=\"{}\">\u00a0<\/span><\/p>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\">\n<span data-contrast=\"auto\">Setting the stage for the successful unification of DevOps.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span>\n<\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\">\n<span data-contrast=\"auto\">How to obtain centralized visibility from Code to Cloud.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span>\n<\/li>\n<\/ul>\n<ul>\n<li aria-setsize=\"-1\" data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"2\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"3\" data-aria-level=\"1\">\n<span data-contrast=\"auto\">Ensuring tool integration across teams, stages, and processes.<\/span><span data-ccp-props=\"{}\">\u00a0<\/span>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><strong>Tomorrow can\u2019t wait\u00a0<\/strong><\/p>\n<p><strong>Organizations that invest in unified application security today will be tomorrow\u2019s leaders &#8211; trusted, agile, and secure by design.\u00a0<\/strong><\/p>\n        <\/div>\n\n                            <div class=\"section-registration__right\">\n                        <div class=\"section-registration__wrap-form\">\n                            <h3 class=\"section-title\">Explore Crucial Issues<\/h3>                            <div class=\"section-registration__form hbsp-form\">\n                                                <script charset=\"utf-8\" type=\"text\/javascript\" src=\"\/\/js.hsforms.net\/forms\/embed\/v2.js\"><\/script>\n                <script>\n                    hbspt.forms.create({\n                        region: \"na1\",\n                        portalId: \"146169\",\n                        formId: \"f259e240-d0d4-4e1d-9c19-37295e6ac995\",\n                                            });\n                <\/script>\n                                            <\/div>\n                        <\/div>\n                    <\/div>\n\n                        <\/div>\n<\/section>\n\n\n\n<section class=\"section-creative-slider\">\n    <div class=\"circle-bg-gradient\">\n        <span class=\"circle-bg-gradient__children\"><\/span>\n    <\/div>\n    <div class=\"main-wrapper section-creative-slider__wrapper\">\n        <div class=\"section-creative-slider__left\">\n\t\t\t<h2 class=\"section-title\">What Our Customers Say About Us<\/h2>\t\t\t<p class=\"section-description\">See why enterprises trust our approach to AppSec to secure their business-critical applications.<\/p>            <div class=\"creative-slider__nav\">\n                <button class=\"creative-slider__nav_prev swiper-button-prev\" aria-label=\"Prev slide\">\n                    <svg width=\"34px\" height=\"23px\" viewbox=\"0 0 34 23\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" xmlns:xlink=\"http:\/\/www.w3.org\/1999\/xlink\">\n                        <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill-rule=\"evenodd\">\n                            <g id=\"Shape\" transform=\"translate(0.939453, 1.530000)\" stroke-width=\"3\">\n                                <path d=\"M19.810947,20.4179 L31.029947,9.14 M30.029947,10.1989 L0,10.1989 M31.029947,11.26 L19.810947,0\"><\/path>\n                            <\/g>\n                        <\/g>\n                    <\/svg>\n                <\/button>\n                <button class=\"creative-slider__nav_next swiper-button-next\" aria-label=\"Next slide\">\n                    <svg width=\"34px\" height=\"23px\" viewbox=\"0 0 34 23\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" xmlns:xlink=\"http:\/\/www.w3.org\/1999\/xlink\">\n                        <g id=\"Page-1\" stroke=\"none\" stroke-width=\"1\" fill-rule=\"evenodd\">\n                            <g id=\"Shape\" transform=\"translate(0.939453, 1.530000)\" stroke-width=\"3\">\n                                <path d=\"M19.810947,20.4179 L31.029947,9.14 M30.029947,10.1989 L0,10.1989 M31.029947,11.26 L19.810947,0\"><\/path>\n                            <\/g>\n                        <\/g>\n                    <\/svg>\n                <\/button>\n            <\/div>\n            <div class=\"creative-slider__scrollbar\"><\/div>\n        <\/div>\n        <div class=\"section-creative-slider__right\">\n            <div class=\"creative-slider__wrapper\">\n                <div class=\"swiper creative-slider js-creative-slider\">\n                    <div class=\"swiper-wrapper\">\n\n\t\t\t\t\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback small-text\">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;We view Checkmarx as our trusted partner. They\u2019ve elevated our security posture by consolidating our SAST, SCA, and API Security into a unified platform, Checkmarx One, enabling us to achieve vulnerability remediation, reduce noise, and benefit from strong support.&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t        <img decoding=\"async\" class=\"author__avatar\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/06\/Matthew-Hurewitz-Checkmarx-150x150.webp\" width=\"46\" height=\"46\" alt=\"Matthew Hurewitz Checkmarx\" loading=\"lazy\">\n                                <div>\n\t\t\t\t\t\t\t<p class=\"author__name\">Matthew Hurewitz<\/p>\t\t\t\t\t\t\t<p class=\"author__profesion\">Director, Platforms and Application Security<\/p>                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                        <div class=\"card-creative-feedback__logo\">\n\t\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/06\/best-buy-cx-logo.svg\" width=\"154\" height=\"47\" alt=\"best buy cx logo\" loading=\"lazy\">\n                                <\/div>\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback small-text\">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;Incorporating Checkmarx&#8217;s technology has revolutionized our development culture. It&#8217;s more than just technology; it serves as the foundation of our security strategy, ensuring that our applications are secure by design.&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t        <img decoding=\"async\" class=\"author__avatar\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Sudharma-Thikkavarapu-150x150.webp\" width=\"46\" height=\"46\" alt=\"Sudharma Thikkavarapu\" loading=\"lazy\">\n                                <div>\n\t\t\t\t\t\t\t<p class=\"author__name\">Sudharma Thikkavarapu<\/p>\t\t\t\t\t\t\t<p class=\"author__profesion\">Sr. Director, Product Security Engineering<\/p>                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                        <div class=\"card-creative-feedback__logo\">\n\t\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Dell.svg\" width=\"154\" height=\"47\" alt=\"Dell\" loading=\"lazy\">\n                                <\/div>\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback small-text\">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;Checkmarx One definitely checks all my boxes from a security standpoint and has a great interface that&#8217;s engaging and easy to use. Some of the solutions we considered were more complicated. With Checkmarx One, it&#8217;s easy to get right to the problem with little to no learning curve.&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t        <img decoding=\"async\" class=\"author__avatar\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Joel-Godbout-150x150.webp\" width=\"46\" height=\"46\" alt=\"Joel Godbout\" loading=\"lazy\">\n                                <div>\n\t\t\t\t\t\t\t<p class=\"author__name\">Joel Godbout<\/p>\t\t\t\t\t\t\t<p class=\"author__profesion\">Cybersecurity and Networking Manager<\/p>                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                        <div class=\"card-creative-feedback__logo\">\n\t\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/PCL.svg\" width=\"154\" height=\"47\" alt=\"PCL\" loading=\"lazy\">\n                                <\/div>\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback small-text\">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;The success of our AppSec program can be directly attributed to the tooling, processes and support provided by Checkmarx managed services. Our mission revolves around providing secure and compliant lottery and gaming applications and services to our clients around the globe, and with Checkmarx SAST, SCA and associated components enhanced by their stellar service support, we deliver on this promise with confidence and certainty.&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t        <img decoding=\"async\" class=\"author__avatar\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Dion-Alexopoulos-150x150.webp\" width=\"46\" height=\"46\" alt=\"Dion Alexopoulos\" loading=\"lazy\">\n                                <div>\n\t\t\t\t\t\t\t<p class=\"author__name\">Dion Alexopoulos<\/p>\t\t\t\t\t\t\t<p class=\"author__profesion\">Head of Information Security<\/p>                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                        <div class=\"card-creative-feedback__logo\">\n\t\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Allwyn.svg\" width=\"154\" height=\"47\" alt=\"Allwyn\" loading=\"lazy\">\n                                <\/div>\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback small-text\">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;After nearly nine years of using Checkmarx&#8217;s SAST, CGI&#8217;s journey has been one of seamless integration and consistent satisfaction. The last three years have been particularly smooth, reflecting the solution&#8217;s reliability and our successful partnership.&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t        <img decoding=\"async\" class=\"author__avatar\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Abhishek-Das-150x150.webp\" width=\"46\" height=\"46\" alt=\"Abhishek Das\" loading=\"lazy\">\n                                <div>\n\t\t\t\t\t\t\t<p class=\"author__name\">Abhishek Das<\/p>\t\t\t\t\t\t\t<p class=\"author__profesion\">Lead Security Analyst<\/p>                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                        <div class=\"card-creative-feedback__logo\">\n\t\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/CGI.svg\" width=\"154\" height=\"47\" alt=\"CGI\" loading=\"lazy\">\n                                <\/div>\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback \">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;After reviewing the Checkmarx platform, I&#8217;m not sure how Veracode is able to exist while being at a similar price point.&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t                        <div>\n\t\t\t\t\t\t\t<p class=\"author__name\">Financial Services:<\/p>\t\t\t\t\t\t\t<p class=\"author__profesion\">DevSecOps Engineering<\/p>                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback big-text\">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;By Far The Best AppSec Tooling Decision We Have Made!!&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t                        <div>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                        <div class=\"card-creative-feedback__logo\">\n\t\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Gartner.svg\" width=\"154\" height=\"47\" alt=\"Gartner\" loading=\"lazy\">\n                                <\/div>\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback small-text\">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;We were thrilled to find Checkmarx, which helped us improve the SLA for identifying and remediating risk, reduce risk and the number of vulnerabilities, and eliminate high- and medium-risk issues.&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t        <img decoding=\"async\" class=\"author__avatar\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Ubirajara-Aguiar-Jr-150x150.webp\" width=\"46\" height=\"46\" alt=\"Ubirajara Aguiar Jr.\" loading=\"lazy\">\n                                <div>\n\t\t\t\t\t\t\t<p class=\"author__name\">Ubirajara Aguiar Jr.<\/p>\t\t\t\t\t\t\t<p class=\"author__profesion\">Tech Lead, Red Team\/DevSecOps<\/p>                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                        <div class=\"card-creative-feedback__logo\">\n\t\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Pismo.svg\" width=\"154\" height=\"47\" alt=\"Pismo\" loading=\"lazy\">\n                                <\/div>\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t        <div class=\"swiper-slide\">\n            <div class=\"card-creative-feedback big-text\">\n\t\t\t\t<p class=\"card-creative-feedback__text\">&#8220;Checkmarx made security team and developers life easier.&#8221;<\/p>                <div class=\"card-creative-feedback__footer\">\n                    <div class=\"author\">\n\t\t\t\t\t\t                        <div>\n\t\t\t\t\t\t\t<p class=\"author__name\">Security Analyst<\/p>\t\t\t\t\t\t\t<p class=\"author__profesion\">IT Services<\/p>                        <\/div>\n                    <\/div>\n\n\t\t\t\t\t                        <div class=\"card-creative-feedback__logo\">\n\t\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/04\/Gartner.svg\" width=\"154\" height=\"47\" alt=\"Gartner\" loading=\"lazy\">\n                                <\/div>\n\t\t\t\t\t                <\/div>\n            <\/div>\n        <\/div>\n\t\t                    <\/div>\n                <\/div>\n                <div class=\"creative-slider__pagination\"><\/div>\n            <\/div>\n        <\/div>\n    <\/div>\n<\/section>\n\n<section class=\"section-lp-info light-theme\">\n    <div class=\"main-wrapper\">\n\t\t<h2 class=\"section-title\">Market Technology Leadership<\/h2>        <div class=\"block-lp-info\">\n            <div class=\"block-lp-info__list\">\n\t\t\t\t                        <div class=\"block-lp-info__item\">\n                            <p>40%<\/p>\n                            <p>of Fortune 100<\/p>\n                        <\/div>\n\t\t\t\t\t\t                        <div class=\"block-lp-info__item\">\n                            <p>1800+<\/p>\n                            <p>Customers in 70 countries<\/p>\n                        <\/div>\n\t\t\t\t\t\t                        <div class=\"block-lp-info__item\">\n                            <p>75+<\/p>\n                            <p>Languages 100+ frameworks<\/p>\n                        <\/div>\n\t\t\t\t\t\t                        <div class=\"block-lp-info__item\">\n                            <p>6X<\/p>\n                            <p>Leader at Gartner\u00ae Magic Quadrant\u2122 for Application Security Testing<\/p>\n                        <\/div>\n\t\t\t\t\t\t            <\/div>\n        <\/div>\n    <\/div>\n<\/section>\n\n<section class=\"section-lp-badge light-theme\">\n    <div class=\"main-wrapper\">\n\t\t<h2 class=\"section-title\">Industry Recognition<\/h2>        <div class=\"list-card-badge\">\n\t\t\t                    <div class=\"card-badge\">\n\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/05\/01-Forrester.svg\" width=\"150\" height=\"150\" alt=\"01 Forrester\">\n                            <\/div>\n\t\t\t\t\t                    <div class=\"card-badge\">\n\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/02_gartner.webp\" width=\"150\" height=\"150\" alt=\"02_gartner\">\n                            <\/div>\n\t\t\t\t\t                    <div class=\"card-badge\">\n\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/03_cyber_security_.webp\" width=\"150\" height=\"150\" alt=\"03_cyber_security_\">\n                            <\/div>\n\t\t\t\t\t                    <div class=\"card-badge\">\n\t\t\t\t\t\t        <img decoding=\"async\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/04_crn.webp\" width=\"150\" height=\"150\" alt=\"CRN Security 100 2024 Awards\">\n                            <\/div>\n\t\t\t\t\t        <\/div>\n    <\/div>\n<\/section>","protected":false},"excerpt":{"rendered":"","protected":false},"author":11,"featured_media":103070,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"page-templates\/landing.php","meta":{"_acf_changed":true,"footnotes":""},"class_list":["post-98723","page","type-page","status-publish","has-post-thumbnail","hentry"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.1.1 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Code at Risk \u2013 Why DevOps Teams Need to Unify Application Security<\/title>\n<meta name=\"description\" content=\"Organizations that invest in unified application security today will be tomorrow\u2019s leaders - trusted, agile, and secure by design.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/checkmarx.com\/position-paper-code-at-risk\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Code at Risk \u2013 Why DevOps Teams Need to Unify Application Security\" \/>\n<meta property=\"og:description\" content=\"Organizations that invest in unified application security today will be tomorrow\u2019s leaders - trusted, agile, and secure by design.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/checkmarx.com\/position-paper-code-at-risk\/\" \/>\n<meta property=\"og:site_name\" content=\"Checkmarx\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\" \/>\n<meta property=\"article:modified_time\" content=\"2025-07-31T08:09:23+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_risk_preview_image_1_5x.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1800\" \/>\n\t<meta property=\"og:image:height\" content=\"945\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@checkmarx\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/checkmarx.com\/position-paper-code-at-risk\/\",\"url\":\"https:\/\/checkmarx.com\/position-paper-code-at-risk\/\",\"name\":\"Code at Risk \u2013 Why DevOps Teams Need to Unify Application Security\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/position-paper-code-at-risk\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/position-paper-code-at-risk\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_risk_preview_image_1_5x.webp\",\"datePublished\":\"2025-07-31T08:08:14+00:00\",\"dateModified\":\"2025-07-31T08:09:23+00:00\",\"description\":\"Organizations that invest in unified application security today will be tomorrow\u2019s leaders - trusted, agile, and secure by design.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/checkmarx.com\/position-paper-code-at-risk\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/position-paper-code-at-risk\/#primaryimage\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_risk_preview_image_1_5x.webp\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_risk_preview_image_1_5x.webp\",\"width\":1800,\"height\":945},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/checkmarx.com\/#website\",\"url\":\"https:\/\/checkmarx.com\/\",\"name\":\"Checkmarx\",\"description\":\"The world runs on code. We secure it.\",\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/checkmarx.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/checkmarx.com\/#organization\",\"name\":\"Checkmarx\",\"url\":\"https:\/\/checkmarx.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"width\":1,\"height\":1,\"caption\":\"Checkmarx\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\",\"https:\/\/x.com\/checkmarx\",\"https:\/\/www.youtube.com\/user\/CheckmarxResearchLab\",\"https:\/\/www.linkedin.com\/company\/checkmarx\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Code at Risk \u2013 Why DevOps Teams Need to Unify Application Security","description":"Organizations that invest in unified application security today will be tomorrow\u2019s leaders - trusted, agile, and secure by design.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/checkmarx.com\/position-paper-code-at-risk\/","og_locale":"en_US","og_type":"article","og_title":"Code at Risk \u2013 Why DevOps Teams Need to Unify Application Security","og_description":"Organizations that invest in unified application security today will be tomorrow\u2019s leaders - trusted, agile, and secure by design.","og_url":"https:\/\/checkmarx.com\/position-paper-code-at-risk\/","og_site_name":"Checkmarx","article_publisher":"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","article_modified_time":"2025-07-31T08:09:23+00:00","og_image":[{"width":1800,"height":945,"url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_risk_preview_image_1_5x.webp","type":"image\/webp"}],"twitter_card":"summary_large_image","twitter_site":"@checkmarx","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/checkmarx.com\/position-paper-code-at-risk\/","url":"https:\/\/checkmarx.com\/position-paper-code-at-risk\/","name":"Code at Risk \u2013 Why DevOps Teams Need to Unify Application Security","isPartOf":{"@id":"https:\/\/checkmarx.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/checkmarx.com\/position-paper-code-at-risk\/#primaryimage"},"image":{"@id":"https:\/\/checkmarx.com\/position-paper-code-at-risk\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_risk_preview_image_1_5x.webp","datePublished":"2025-07-31T08:08:14+00:00","dateModified":"2025-07-31T08:09:23+00:00","description":"Organizations that invest in unified application security today will be tomorrow\u2019s leaders - trusted, agile, and secure by design.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/checkmarx.com\/position-paper-code-at-risk\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/position-paper-code-at-risk\/#primaryimage","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_risk_preview_image_1_5x.webp","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2025\/07\/Code_at_risk_preview_image_1_5x.webp","width":1800,"height":945},{"@type":"WebSite","@id":"https:\/\/checkmarx.com\/#website","url":"https:\/\/checkmarx.com\/","name":"Checkmarx","description":"The world runs on code. We secure it.","publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/checkmarx.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/checkmarx.com\/#organization","name":"Checkmarx","url":"https:\/\/checkmarx.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","width":1,"height":1,"caption":"Checkmarx"},"image":{"@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","https:\/\/x.com\/checkmarx","https:\/\/www.youtube.com\/user\/CheckmarxResearchLab","https:\/\/www.linkedin.com\/company\/checkmarx"]}]}},"_links":{"self":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/pages\/98723","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/comments?post=98723"}],"version-history":[{"count":0,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/pages\/98723\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media\/103070"}],"wp:attachment":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media?parent=98723"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}