Maverix Inc. advised the customer to choose a stable solution that takes full advantage of the combination of different Application Security Testing (AST) tools and the ASOC platform. The ASOC platform is the single window to manage DevSecOps processes. Maverix Inc. proposed the Maverix platform and several AST tools for practical implementation of the stable solution. The AST tools are Checkmarx for SAST, Netsparker for DAST, Sonatype Nexus IQ for open-source components control, Clair as an open-source tool for container security, and Aqua for cloud security since the customer deploys its digital products on Amazon Web Services.
Thus, Maverix provided to the customer an umbrella-type turnkey solution.
After successful solution evaluation with the trial version of the licenses, OneForce Inc. decided to implement the proposed approach. The customer was impressed with Maverix’s easy onboarding process, smooth integration with existing DevOps processes, and great support from the Maverix team. Most importantly, the proposed approach identified a sufficient number of security problems in the existing versions of the products during the first week of operations. The company management got meaningful DevSecOps metrics to understand the application security status of deployed digital products.