Gartner released the 2018 Magic Quadrant for Application Security Testing, an annual report which analyzes vendors’ Application Security Testing capabilities and we’re excited to share that Checkmarx has been recognized a Leader based on our completeness of vision and ability to execute in the market.

What Is the Gartner Magic Quadrant?

The Gartner Magic Quadrant for AST (Application Security Testing) report is published annually by the advisory firm Gartner Group. The goal of this report is to deliver deep analysis of dominating Application Security Testing vendors to show where the Application Security Testing market is headed.

Thus, throughout the year, Gartner conducts extensive research on each vendor and solution to conclude which vendors will be placed in the following quadrants: Leaders, Challengers, Visionaries, and Niche Players. The Gartner Magic Quadrant contains four quadrants in a chart used to point out where each vendor is in the market. Each vendor is scored by its “completeness of vision” and “ability to execute” which determine how each vendor is scored, influencing where each vendor is placed on the chart.

As part of the process, each Application Security Testing vendor goes through a series of actions with Gartner which includes providing Gartner analysis company information, including sales numbers, roadmaps, business plans, and many other specifications. Additionally, vendors provide a list of customers for references in a process which has a meaningful impact on the vendor’s score in Gartner Magic Quadrant for AST.

Gartner Critical Capabilities: Shaping the Industry

Anyone in the industry should give this report a read, as it provides a rounded view of the application security testing market, vendors, and much more. The Gartner Magic Quadrant places and positions vendors and the Gartner Critical Capabilities is a critical report complimenting the Magic Quadrant.

It provides the reader with a deep analysis of the vendor’s offerings, products, and services. With Gartner Critical Capabilities, readers can learn from the featured comparative analysis that is backed by structured procedures to show which vendor offering is the best fit when it comes to market-based usage scenarios identified by Gartner. Additionally, this report provides advice on which vendor offering should be added to your relevant contending vendors.


What Makes a Gartner Magic Quadrant for Application Security Testing Leader?

When it comes to Leaders in the Magic Quadrant, vendors must excel in the two Gartner-grading criteria: “completeness of vision” and “ability to execute”. For example, a new, small vendor may have a great vision, but they may lack experience, the install base, and marketing efforts needed to properly execute. As this vendor moves forward, matures, grows, and expands in all corners of its field, its positioning on the Magic Quadrant moves from being a “Niche Player” to a “Leader”.

When it comes to Application Security Testing in today’s world, a full portfolio is needed. In contrast to past years when vendors mainly had only SAST or DAST, now a solution should cover the entire SDLC, from the left to the right. This is a trend which has developed over the years and it’s clearly reflected in the current Gartner Magic Quadrant – Leaders should have a full, well rounded solution (whether it be SAST/DAST or SAST/IAST/DAST).

An additional trend that has appeared in the past few years is Software Composition Analysis (SCA), otherwise known as Open Source Analysis (OSA), which has shaped up to be a critical part of the portfolio.

It’s fascinating to look at the shift of our Application Security Testing market which, over the years, has changed from analyzing a single technology to now analyzing a wide range of solutions, including both on-prem and service-based.

Ultimately, vendors who show strong innovation and technological advancements on the “vision” side and strong distribution methodologies and powerful market presence on the “execution” side is just what makes a Leader.

What This Means for Checkmarx

Checkmarx is incredibly proud to be placed in the Leaders quadrant in Gartner’s 2018 Magic Quadrant for Application Security Testing. In 2017, Checkmarx has led by embracing modern DevSecOps culture and cutting-edge development environments by continuously delivering innovative and automated application security testing solutions that cover the entire SDLC, from start to finish.

Source: Gartner Peer Insights

The best recognition comes from our customers. Checkmarx is privileged to work with our 1,500+ customers, including eight of the world’s top financial organizations, six of the world’s top ten software vendors, many Fortune 500 enterprises and various governmental organizations. Our customers always come first and we vow to continue providing top notch services and solutions to delivery secure software faster.

To learn more about what makes Checkmarx a Leader, click here.

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.