By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
18px_cookie
e-remove

Endor Labs Partners with GuidePoint Security to Secure The Software Supply Chain

Endor Labs partners with GuidePoint Security to help enterprises embrace Open Source Software, secure CI/CD pipelines, and develop faster.

Endor Labs partners with GuidePoint Security to help enterprises embrace Open Source Software, secure CI/CD pipelines, and develop faster.

Endor Labs partners with GuidePoint Security to help enterprises embrace Open Source Software, secure CI/CD pipelines, and develop faster.

Written by
A photo of Andrew Davidson — Vice President, Business Development & Strategic Alliances at Endor Labs.
Andrew Davidson
Published on
May 21, 2024
Topics

Endor Labs partners with GuidePoint Security to help enterprises embrace Open Source Software, secure CI/CD pipelines, and develop faster.

Endor Labs partners with GuidePoint Security to help enterprises embrace Open Source Software, secure CI/CD pipelines, and develop faster.

We’re excited to announce a strategic reseller partnership with GuidePoint Security, the leading cybersecurity solutions provider that helps organizations make better decisions that minimize risk. Through this partnership, GuidePoint Security customers can secure everything their code depends on, without slowing down development.

Existing Software Composition Analysis (SCA) and Application Security Posture Management (ASPM) tools bury teams in uncontextualized data and thousands of false positive alerts. Without reliable ways to prioritize risks, trust between developers and AppSec team erodes, remediation times slow, and the security posture of the SDLC is compromised.

Through our partnership with GuidePoint Security, we help DevSecOps and AppSec teams build credibility with developer-centric tools that make it safer and faster to use open source (OSS) code, easier to detect CI/CD risks, and simpler to comply with SSCS regulations.  Endor Labs’ approach cuts 80% of the noise while providing actionable fix information that actually makes developers faster. 

The partnership comes at a time when SCA is poised to overtake Dynamic Application Security Testing (DAST) by 2026, according to The Software Composition Analysis Landscape, Q1 2023 by Forrester Research.

“Open Source Software makes up approximately 80% of modern applications, and on average only 12% of the code from these packages is being used in the app. Existing tools are not able to differentiate how the components are being utilized, leading to excessive vulnerability noise. Endor Labs is able to build a complete call graph for the app, showing what is actually being used so developers can focus on what matters. Endor Labs is excited to partner with GuidePoint Security to help our mutual clients cut through the noise.”  - Andrew Davidson, VP Business Development at Endor Labs
“Open source usage continues to grow. Providing development and security teams with up-to-date, accurate information around open source risk is critical in Application Security. We’re looking forward to enabling our joint customers with the visibility needed to prioritize and fix the most relevant security risks in their applications." - Kristen Bell, Director Application Security Engineering at GuidePoint Security.

About GuidePoint Security Security

GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions that minimize risk. Our experts act as your trusted advisor to understand your business and challenges, helping you through an evaluation of your cybersecurity posture and ecosystem to expose risks, optimize resources and implement best-fit solutions. GuidePoint’s unmatched expertise has enabled more than a third of Fortune 500 companies and more than half of the U.S. government cabinet-level agencies to improve their security posture and reduce risk. Learn more at www.guidepointsecurity.com.

About Endor Labs

The Endor Labs Software Supply Chain Security Platform addresses three key software supply chain security pain points and outcomes:

  • Open Source Code Security: Endor Labs helps engineers improve application performance and minimize attack surface by selecting and maintaining secure & high quality dependencies across the SDLC. Endor Labs replaces the existing breed of SCA solutions that lack context on code usage, thereby cutting ~80% of SCA noise so teams can focus on what matters.
  • CI/CD Pipeline Security: Endor Labs helps you discover pipelines and shadow engineering, ensure consistent security tool coverage, monitor the posture of repositories, and implement build integrity verification, all through a single hook and policy-as-code framework integrated into your pipeline. 
  • Compliance & SBOMs: Endor Labs helps teams adhere to standards and regulations by detecting legal risk, generating and ingesting SBOMs/VEX, code signing, and align with NIST SSDF and CIS frameworks.

The Challenge

The Solution

The Impact

Try Endor Labs Free For 30 Days

Try Endor Labs Free For 30 Days

Try Endor Labs Free For 30 Days

Welcome to the resistance
Oops! Something went wrong while submitting the form.

Try Endor Labs Free For 30 Days

Try Endor Labs Free For 30 Days

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Try Endor Labs Free For 30 Days