October 24th, 2022 – Detroit, Michigan at KubeCon + CloudNativeCon North America 2022 – Deepfactor™, a leading developer security platform, today announced that the Inspide Portall, a geospatial and mobility solution that connects cars, analyzes traffic data, and measures outdoor advertising effectiveness, is using the newly released Deepfactor Developer Security 3.0 as their DevSecOps platform to get developers to buy into security.
“We had invested a lot in security from the point of view of the network or the site reliability engineers, but never from the software developer’s perspective,” said Daniel Carrión, Chief Technology and Product Officer, Inspide. “Before Deepfactor, searching for vulnerabilities in our application was something that was done manually by each developer and it heavily depended on how strict those developers were at that moment in time.”
After moving to adding telecommunications data to their system, Inspide set out to implement DevSecOps practices to ensure that secure coding practices were applied consistently and that all code put in production was free of security vulnerabilities. While Deepfactor provides a broad set of security tooling (Runtime, SCA, SBOM, DAST), one the key reasons Inspide selected Deepfactor was the ability to detect and fix runtime vulnerabilities in development and testing.
“We only looked at runtime in terms of performance analysis, but never in terms of security analysis, and that has changed,” said Daniel Carrión, Chief Technology and Product Officer, Inspide. “So with Deepfactor, the types of vulnerabilities that we’ve suddenly become aware of are the runtime ones such as processes running as root, privilege escalation, insecure use of secrets, remote code execution, and use of unsafe APIs.”
Developers at Inspide have varying levels of security knowledge and desire to proactively seek out security vulnerabilities. The site reliability engineering team has a high degree of security knowledge but focuses on protecting the applications in production. The software developers have a wide range of security expertise but were willing to make the effort to fix vulnerabilities quickly when identified.
“And suddenly, with Deepfactor, developers have a way to improve how they deal with security that doesn’t generate a lot of friction,” said Daniel Carrión, Chief Technology and Product Officer, Inspide. “Security has become a first-class citizen for the developers and not just the paranoid SRE team. We’ve really seen an improvement after we started using Deepfactor.”
The Deepfactor Developer Security platform 3.0 is available immediately. For those attending KubeCon + CloudNativeCon North America 2022 in person, visit Deepfactor at booth #SU77 for a demonstration.
Inspide provides geospatial data that connects cars and analyzes traffic data to improve fleet management and road safety. In 2020, Inspide expanded the scope of their platform to include telecommunications data, enabling Inspide to disrupt the omnichannel and outdoor digital advertising industries by enabling out-of-home advertisers to measure and target their consumer audiences.
Deepfactor is a developer security platform that enables engineering teams to quickly discover and resolve security vulnerabilities, supply chain risks, and compliance violations early in development and testing. For more information, visit www.Deepfactor.io and follow us on LinkedIn and Twitter.