Checkmarx Launches Infrastructure as Code Scanning Solution to Secure Cloud-Native Applications: KICS

Checkmarx Private Hosting Services

Elevate Software Security Testing to the Cloud

Software security, data privacy, and business resilience all in one

Your application security testing tools can only be successful when they are available and accessible to your development and security teams. Your sensitive data and intellectual property can only be protected with the proper software and network security standards in place. To accomplish these critical requirements, organizations trust our certified experts to manage and maintain the infrastructure and environments that power their Checkmarx application security programs.

Reduce the burden on your internal technical teams and increase the security and reliability of your AppSec solutions by hosting any of our industry-leading application security testing technologies on secure, dedicated, single-tenant servers in the Amazon Cloud ecosystem.

Leverage the Power of Hosted AppSec Solutions

When installed in the cloud, Checkmarx solutions exhibit high performance and security with lessened IT involvement for our customers. The Checkmarx team is responsible for all the installation and configuration, along with upgrading your system when necessary. In addition to standard AWS value-added services – such as auditing and logging – Checkmarx provides additional services to monitor the performance of your cloud solution, maintain system functionality, and ensure high availability with Active/Active redundancy.

  • ISO 27001-certified
  • 14-day retention, extension available
  • Environments in US, EU, and APAC
  • Minimum 99.5% services availability

Enhance Security for Your AppSec Infrastructure

Checkmarx takes extensive steps to augment the security of hosted solutions, with special network security measures to ensure secured access, a protected environment, and clear separation between administrative and customer access by a dedicated UTM layer. All machines undergo strict Operation System Hardening configuration, to mitigate vulnerabilities and ensure robustness and immunity to possible attacks.

  • Customer access via NAT
  • U/P or SAML authentication
  • Web services access secured with IPsec VPN tunnels
  • Customer data encrypted using Amazon AES-256 encryption algorithm
  • Checkmarx-managed anti-virus, anti-malware, and intrusion/threat detection
  • Regular penetration testing and application security testing

Simplify Management and Maintenance

Checkmarx simplifies the tasks associated with maintaining an available, resilient application security testing solution. When performing regular maintenance to hosted Checkmarx environments, planned downtime is coordinated with customers at least seven days in advance, targeting off-peak hours, and requiring explicit approval before performing any maintenance. Checkmarx performs regular keep-alive monitoring of application servers, Checkmarx services, disk space and web services availability, with automatic failure notification and response per SLAs.

Increase the Efficiency of Incident Management

Checkmarx is ISO 27001 certified. As part of its internal ISO policy, Checkmarx communicates details of security events and weaknesses associated with information systems, ensuring that corrective actions are taken as quickly as possible. Applicable security incidents include virus attacks, hacking attempts, Denial of Service, unauthorized copying/modification/disclosure of information, tampering, operating system alteration, wire-tapping, and more. Such violations are recorded, monitored, investigated (including collection of evidence), and used to improve future measures.

Ready to Learn More?

Download the Datasheet