Checkmarx has equipped a federal platform with a tester designed to analyze software security and associated cyber vulnerabilities.
Project Hosts' Federal Private Cloud now includes the CxSAST analyzer designed to help users identify security vulnerabilities in custom and open-source codes, Checkmarx said Thursday.
Rich Wajsgras, vice president of the U.S. federal business at Checkmarx, said the company aims to provide its software security products to government via PaaS and help agencies adopt a DevSecOps model.
CxSAST is a component of the Checkmarx Software Exposure Platform. The other components are CxOSA and CxIAST. CxOSA helps developers visualize and manage applications, while CxIAST works to identify flaws in running applications during a test.
FPC is built on Microsoft's Azure Government and composed of services intended to help federal agencies manage security functions such as access control, incident response and malware prevention.
Checkmarx noted the deployment of its source code analyzer on FPC allows the company to inherit multiple controls being required by FedRAMP and the Department of Defense for DoD Impact Level 5 certification.