VERACODE, INC.
BURLINGTON, MA

The Federal Risk and Authorization Management Program, or FedRAMP, is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. This approach uses a “do once, use many times” framework that saves an estimated 30-40% of government costs, as well as both time and staff required to conduct redundant agency security assessments. FedRAMP is the result of close collaboration with cybersecurity and cloud experts from the General Services Administration (GSA), National Institute of Standards and Technology (NIST), Department of Homeland Security (DHS), Department of Defense (DOD), National Security Agency (NSA), Office of Management and Budget (OMB), the Federal Chief Information Officer (CIO) Council and its working groups, as well as private industry. CA Veracode commits ext Constant monitoring of production systems CA Veracode performs dynamic and static scans on any code changes we make to our software. Your Applications uploaded to the CA Veracode Platform are private to your Account Uploaded Applications are purged from the CA Veracode Platform once the analysis is complete. Multiple internet backbone connections provide routing redundancy and high-performance connectivity CA Veracode’s patented The power of the CA Veracode Platform is in its scalability, integrations with development tools and its ability to ensure security policies are consistently enforced across the enterprise. While some companies talk about scanning 10,000 applications overall, we scanned that many applications for a single customer. SECURING THE SOFTWARE THAT POWERS YOUR WORLD IS A BIG JOB. We're focused on that mission every day. Application security isn't part of our business, it's our only business. And it's the driving force behind everything we do. At CA Veracode, we inspire a culture of innovation and infuse creativity into all our initiatives. We're focused on that mission every day. Application security isn't part of our business, it's our only business. And it's the driving force behind everything we do. At CA Veracode, we inspire a culture of innovation and infuse creativity into all our initiatives. This can’t happen without a powerhouse mix of the best minds and skillsets in the industry. CA Veracoders are driven by nature, have incredibly diverse backgrounds and hail from all over the globe. We’re proud of the team we’ve built, and the team is proud of the work they do. A few of the reasons why we love working at CA Veracode … and you will too! Our Products CA Veracode is the leader in the application security space, with the most comprehensive offering available. We take our mission to secure the software that powers your world seriously. Our award-winning, industry-leading products dominate the AppSec market! Christien Rioux, Chief Scientist of CA Veracode, is responsible for the technical vision and design of CA Veracode’s advanced security technology. Working with the engineering team, his primary role is the design of new algorithms and security analysis techniques. Prior to co-founding CA Veracode in 2006,   founded @stake, a security consultancy, as well as L0pht Heavy Industries, a renowned security think tank. As a research scientist at @stake, Christien developed new software analysis techniques and applied cutting edge research to solve difficult security problems. He also led and managed the development for a new enterprise security product in 2000 known as the SmartRisk Analyzer (SRA), a binary analysis tool and its patented algorithms, and has been responsible for its growth and development since then.  co-authored the best-selling Windows password auditing tool @stake LC (L0phtCrack) and the AntiSniff network intrusion detection system. His other activities with L0pht included significant security research, publication work and public speaking engagements.  is also responsible for numerous security advisories in many applications, operating systems and environments. He is recognized as an authority in the areas of Windows product His background includes 30+ years of computer programming and software engineering experience on a wide range of platforms and for numerous companies, including financial institutions, mechanical engineering firms, educational institutions and multimedia groups. At CA Veracode, partners are integral to our ability to deliver the application security solutions and services that today’s software-driven world requires. CA Veracode is committed to our worldwide network of partners to help them profitably grow their business with our market-leading application security solutions. Our partners have access to top-notch tools, training and support to drive growth, differentiate their businesses and reach new markets. WHY CA VERACODE Managed through a single, centralized platform, CA Veracode offers a cloud-based, turnkey solution that enables partners to quickly get started and rapidly deliver value to their customers. Fully integrating across the software development lifecycle (SDLC), CA Veracode’s varied portfolio can quickly address the application security needs of your customers -- from inception through production -- so they can confidently innovate with the web and mobile applications they build, buy and assemble. Integrate CA Veracode With Your Customers' Business CA Veracode’s award-winning Partner Program offers the training, tools and support you need to get up and running fast with minimal impact to your existing business. Our partners benefit from market leading application security solutions combined with a collection of benefits to help you drive profitable sales opportunities, including: CA Technologies has acquired Veracode CA Technologies Completes Acquisition of Veracode To realize the CA mission of "removing the barriers between ideas and outcomes," Veracode will enable CA to make security a frictionless part of the DevOps process by making security programmatic for developers, automating security testing as a part of continuous delivery, and providing the detection and remediation of vulnerabilities to help developers create more secure, compliant applications at the speeds needed for modern application development.