It’s analyst season with the new Forrester Wave on SAST recently published as well as Gartner’s Application Security Testing Magic Quadrant publishing in April. We’ll talk about what are analyst reports, how should you use them, and how should you interpret placement on them as I like to call it, reading the analyst tea leaves.
This segment is sponsored by GitLab.
GitLab’s List of Security Analyst Reports – https://about.gitlab.com/direction/secure/static-analysis/sast/#analyst-landscape
2021 Forrester Wave – https://www.forrester.com/report/The+Forrester+Wave+Static+Application+Security+Testing+Q1+2021/-/E-RES162015
- 2020 Gartner AST Magic Quadrant – https://about.gitlab.com/resources/report-gartner-mq-ast/
- GigaOm 2020 DevSecOps Tool Radar Report – https://gigaom.com/report/gigaom-radar-for-evaluating-devsecops-tools/
- G2 Peer Reviews Quadrant – https://www.g2.com/categories/static-application-security-testing-sast#grid
Taylor McCaslin -
Sr. Product Manager - Secure at GitLab
John Kinsella -
Chief Architect at Accurics
Mike Shema -
Product Security Lead at Square
Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server!
Learn how to conquer cloud complexity in our first webcast of 2021, this Thurs, Jan 28th
11am ET! Next Thurs, Feb 4th 11am ET, in our first technical training of 2021, you’ll Learn How to Manage Insider Risks in the Work-from-Anywhere World! Register at https://securityweekly.com/webcasts. If you missed any of our 2020 webcasts or technical trainings, they are available at https://securityweekly.com/ondemand