BURLINGTON, Mass. – May 8, 2013 - Veracode, Inc., the leader in cloud-based application security testing, today announced that MobileIron, will integrate Veracode’s mobile application reputation capabilities in the company’s mobile device management (MDM) and mobile application management (MAM) solutions. The integrated solution will protect enterprises and app users from vulnerable, risky and malicious mobile applications.
Through this partnership, Veracode and MobileIron are informing MDM capabilities with risk ratings and security intelligence derived from Veracode’s mobile app analysis offerings. This provides organizations visibility into the data loss and privacy risks posed by mobile applications and enables them to take action to protect their employee and corporate information. The combined solution will leverage Veracode’s application security expertise to detect which mobile apps are risky and MobileIron’s mobile management controls to enforce corporate mobility and security policies.
According to a survey conducted by the Computing Technology Industry Association (CompTIA), in April 2013, more than six out of ten companies allow the use of personal mobile devices for work purposes. Additionally, the Cisco IBSG Horizons Study published in May of 2012 showed that 95 percent of companies allow employee-owned devices in some shape or form, with 84 percent providing some level of support, and 36 percent providing full management for these devices. This trend is widely called Bring Your Own Device or BYOD.
The applications present on mobile devices used for work purposes pose a significant risk to enterprises embarking on mobility management or BYOD initiatives. In fact, BYOD is rapidly evolving into “BYOA” (Bring Your Own Application). While hackers continue to target software vulnerabilities in enterprise-developed mobile applications, third-party applications installed on mobile devices can gain device permissions, conduct transactions and export data, all without the users’ knowledge or consent. For example, Veracode analysis shows that 91% of the top mobile apps expose users’ identity information.
“The majority of our customers now have BYOD programs in place," said Ojas Rege, VP Strategy, MobileIron. “These organizations need information about app reputation for apps 'in the wild' that users may have downloaded. Using Veracode to understand how these apps behave and what risks they pose to corporate data will allow our customers to then intelligently create and enforce policies."
Veracode supplies detailed intelligence around mobile apps’ behavior. Using this information organizations are equipped with a comprehensive and quantitative risk analysis posed by mobile applications supplied by public app stores, enterprise developers or commercial developers. When used in conjunction with an MDM or MAM solution, companies can easily enforce BYOD risk management policies by setting up rules to automatically allow or block apps from the mobile device, based on the apps’ risk ratings.
“Partnering with a leading MDM vendor like MobileIron will result in powerful protection for enterprises and their employees from risky apps that are built in house, bought or downloaded,” said Sam King, EVP Product Strategy & Corporate Development, Veracode. “The actionable controls from MobileIron combined with the comprehensive risk ratings and vulnerability information that our suite of mobile solutions provides enterprises will help make BYOD and even BYOA a less risky proposition for enterprises.”
For more information visit: https://info.veracode.com/mobile-info-request.html
About Veracode
Veracode is the only independent provider of cloud-based application intelligence and security verification services. The Veracode platform provides the fastest, most comprehensive solution to improve the security of internally developed, purchased or outsourced software applications and third-party components. By combining patented static, dynamic and manual testing, extensive eLearning capabilities, and advanced application analytics, Veracode enables scalable, policy-driven application risk management programs that help identify and eradicate numerous vulnerabilities by leveraging best-in-class technologies from vulnerability scanning to penetration testing and static code analysis. Veracode delivers unbiased proof of application security to stakeholders across the software supply chain while supporting independent audit and compliance requirements for all applications no matter how they are deployed, via the web, mobile or in the cloud. Veracode works with customers in more than 80 countries worldwide representing Global 2000 brands. For more information, visit www.veracode.com, follow on Twitter: @Veracode or read the Veracode Blog.
Copyright © 2012 Veracode, Inc. All Rights Reserved. All other brand names, product names, or trademarks belong to their respective holders.