QAD Precision Achieves Veracode Verified Team Tier Status
Veracode Verified accreditation demonstrates commitment to developing secure software and reducing risk for customers
QAD Precision, a division of QAD Inc., announced its achievement of Veracode Verified Team Status for its Global Trade and Transportation Execution (GTTE) solution. The Veracode Verified program provides third-party validation of a company’s secure software development processes from Veracode, the largest global provider of application security testing (AST) solutions.
Recommended AI News: BlackBerry Honored with SE Labs Enterprise Advanced Security Test Award
“In the face of the increasing cybersecurity skills gap, Veracode Verified provides value without straining limited security resources and allows organizations like QAD Precision to quickly, effectively, and continuously reduce risk.”
Dedication to DevSecOps
This achievement demonstrates QAD Precision’s dedication to improved integration of security within the software development lifecycle (SDLC), and to following proven application security principles. Veracode Verified Team Status confirms that QAD Precision has embraced strong application security and DevSecOps practices, improved its security posture, achieved faster flaw remediation time, and invested in developer and security champion training and resources.
“QAD Precision has made secure software development a priority and a competitive advantage by adopting a mature application security program that covers the entire SDLC,” said Brian Roche, Chief Product Officer at Veracode. “In the face of the increasing cybersecurity skills gap, Veracode Verified provides value without straining limited security resources and allows organizations like QAD Precision to quickly, effectively, and continuously reduce risk.”
Recommended AI News: Social Commerce Drives Greater Digital Ad Spending, Finds New Report
Measuring the Strength of QAD Precision’s Application Security Posture
Veracode Verified provides a holistic, objective view of an organization’s application security program and offers three progressive tiers for measuring success and assessing application security posture. Each tier is cumulative, building upon the qualifications of the previous tier and strengthening participants’ integration of security into the development process. Team tier status denotes that the following security steps have been implemented into the organization’s software development practice:
- Assesses first-party code with static analysis
- Document that an application doesn’t include Very High or High flaws, and that you have a 60-day remediation grace period to remain in compliance.
- Assess open- source components for improved security, and document that they don’t contain any Very High or High vulnerabilities.
- Establishes a scanning cadence of at least every 90 days.
- Identifies a security champion within the development team to serve as a peer resource to development team members, ensuring secure coding practices across the development lifecycle.
- Provides training or labs on secure coding for the identified security champion.
- Provides developers with remediation guidance for both first party code flaws and open- source vulnerabilities.
QAD Precision’s GTTE provides industry-leading global trade compliance, and multi carrier transportation execution solutions from a single, integrated platform. GTTE assists companies in streamlining their import, export and transportation operations, optimizing deliveries, and increasing logistics ROI.
“QAD Precision’s customers include many of the world’s largest banks, life sciences companies and manufacturers, for which security is critical,” said Corey Rhodes, President of QAD Precision. “Achieving Veracode Verified Team Level status demonstrates our commitment to providing secure code to all our customers. We’re pleased to continuously update our software at the highest industry standards.”
Recommended AI News: Avanse Financial Services Goes Live With Scienaptic’s AI-Powered Credit Decisioning Platform
[To share your insights with us, please write to sghosh@martechseries.com]
Comments are closed.