Story image

SAP to resell HP Fortify as part of expanded agreement

15 Dec 14

HP has announced that SAP will resell HP Fortify application security software as part of its quality assurance solutions portfolio.

SAP is now offering the solution under the name SAP Fortify software by HP, aiming to help customers quickly identify and address software vulnerabilities.

HP says the threat landscape is growing more sophisticated and targeted, making it critical to identify and mitigate vulnerabilities before they can be exploited. “With the recent high frequency of breaches, organisations are now realising the importance of proper application security testing, and the need for these solutions is continuously increasing,” the company says.

As an expansion to a longstanding reseller relationship, SAP Fortify by HP enables SAP customers to identify, triage and fix vulnerabilities in production applications, while also helping reduce risk by enabling security to be built in during software development.

“An organisation can suffer significant financial loss, business interruption and brand damage should it detect a vulnerability too late,” says Jason Schmitt, vice president and general manager, Fortify, Enterprise Security Products, HP. “With SAP Fortify by HP, SAP customers can now enhance the management of their software security risk by enabling proactive security testing throughout the entire software development lifecycle.”

Application security helps strengthen SAP’s quality assurance portfolio of solutions, allowing users to identify vulnerabilities early in the software development process, which is critical when attempting to combat potential cyber-attacks.

Using static application security testing (SAST) analysis and dynamic application security testing (DAST) solutions from HP, SAP Fortify helps provide an immediate, accurate picture of software risk across the enterprise so customers can isolate problem areas within their organisation as early as possible.

The offering delivers detailed reference information on the vulnerabilities to both developers and testing teams with instructions for correcting issues, enabling them to quickly patch weak spots and to help prevent future concerns of a similar nature.

“SAP and HP enjoy a long-standing relationship with a strong focus on quality assurance,” says Tom Roberts, global vice president, Third-Party Solutions, SAP. “Offering software that integrates code-vulnerability analysis across the entire software life cycle, securing applications wherever they are deployed – on premises, in the cloud or on mobile devices around the world – is another important step in helping our customers increase productivity, lower costs and accelerate time-to-market.”

SAP Fortify integrates with other SAP testing solutions, including the SAP Quality Centerapplication by HP and SAP LoadRunner application by HP.  It can also be used with the SAP Solution Manager application management solution to comprehensively manage software security issues across the enterprise.

TCS collaborates with Red Hat to build digital transformation solutions
“By leveraging TCS' technology skills to build more secure, intelligent and responsive solutions, we aim to deliver superior end-user experiences."
Twitter suspects state-sponsored ties to support forum breach
One of Twitter’s support forums was hit by a data breach that may have ties to a state-sponsored attack, however users' personal data was exposed.
How McAfee aims to curb enterprise data loss
McAfee DLP aims to help safeguard intellectual property and ensure compliance by protecting sensitive data.
HPE promotes 'circular economy' for end-of-use tech
HPE is planning to show businesses worldwide that throwing old tech and assets into landfill is not the best option when it comes to end-of-use disposal.
2018 sees 1,500% increase in coinmining malware - report
This issue will only continue to grow as IoT forms the foundation of connected devices and smart city grids.
CSPs ‘not capable enough’ to meet 5G demands of end-users
A new study from Gartner produced some startling findings, including the lack of readiness of communications service providers (CSPs).
Oracle announces a new set of cloud-native managed services
"Developers should have the flexibility to build and deploy their applications anywhere they choose without the threat of cloud vendor lock-in.”
How AT&T aims to help businesses recover faster from a disaster
"Companies need to be able to recover and continue operations ASAP, without pulling resources from other places to get back up and running."