Burlington, Massachusetts-based Veracode has ambitious plans to significantly expand its software testing capabilities by introducing new AI-driven Dynamic Application Security Testing (DAST) tools and External Attack Surface Management (EASM) features.
The move comes as the firm said there is a clear appetite among its financial services clients to identify and remediate software risks more effectively across complex application environments.
As software development accelerates and attack surfaces expand, quality assurance and security testing have become vital to reduce vulnerabilities, stressed Boston-based Derek Maki, head of product at Veracode.
He claimed that the firm’s latest update will address these challenges head-on, providing “a more comprehensive and intelligent approach to application risk management.”
Dynamic testing
At the heart of the launch is Enterprise Mode for DAST Essentials, an enhancement to Veracode’s dynamic testing toolset.
The feature leverages AI-assisted auto-login for authentication, supports scanning behind firewalls via Internal Scan Management, and delivers real-time flaw reporting, Maki continued.
Asked why this makes Veracode stand out, he said that “these improvements enable development and security teams to uncover critical issues in web applications and APIs with greater speed and precision.”
Maki added: “DAST Enterprise Mode empowers security teams to work faster, smarter, and safer. It eliminates the challenge of fragmented tools and enables mature, resilient risk management with centralized visibility and control.”
Also newly launched is EASM capability, which offers automated discovery of internet-exposed assets, including APIs, mobile and web applications, and cloud services.
Maki explained that the tools provide a real-time view of an organization’s digital footprint and prioritize vulnerabilities based on potential risk.
“The result is stronger QA across the development lifecycle and fewer blind spots in testing coverage,” he claimed.
By integrating DAST, static analysis (SAST), software composition analysis (SCA), and now EASM into one cohesive platform, the solution gives teams actionable insights and reduces the time to identify and fix flaws, which Maki said has increased by close to 50% over the past five years.
Why not become a QA Financial subscriber?
It’s entirely FREE
* Receive our weekly newsletter every Wednesday * Get priority invitations to our Forum events *
REGULATION & COMPLIANCE
Looking for more news on regulations and compliance requirements driving developments in software quality engineering at financial firms? Visit our dedicated Regulation & Compliance page here.
READ MORE
- Why real-time monitoring and scenario testing are becoming core QA disciplines
- BankDhofar takes an automated approach to strengthen QA
- Banks warned AI still fails on real-world software testing tasks
- SEC’s AI emphasis drives new QA and testing imperatives for US banks
- Inside the chaos: The new reliability discipline reshaping banking QA
WATCH NOW
