SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Story image
Secure Code Warrior adds new solution to Okta Integration Network
Wed, 8th Jun 2022
FYI, this story is more than a year old

Secure Code Warrior has added a new addition to the Okta Integration Network, with the new Secure Code Warrior (SCW) Connector for Okta Workflows set to help developers deliver fast and efficient code.

The company says the new technology enables a cohesive approach to secure coding, ensuring developers meet requirements before committing code. Organisations can now design an identity workflow that protects builds from the beginning of the life cycle, giving them the flexibility to only provide GitHub repo access to security proficient developers.

Secure Code Warrior says this helps enterprises promote a security-first culture, while the SCW Learning Platform enables developers to meet standards and requirements.

The solution can be utilised across an enterprise's application, security and engineering teams to provide an additional layer of security, helping prevent insecure code and ensuring better access control during software development.

Research from the company shows there is a need for action to prevent code vulnerability. According to SCWs recently released The State of Developer-Driven Security Survey, 2022, 67% of developers knowingly left vulnerabilities and exploits in their code. The main reasons attributed to this were lack of time and a cohesive approach, both barriers to the adoption of secure coding practices.

"This new solution will help organisations reduce the risk of developers committing insecure code by ensuring that employees are up to date on the latest vulnerabilities and secure coding techniques," says Secure Code Warrior co-founder and CEO Pieter Danhieux.

"Through our work together with Okta on a security proficiency check, AppSec Managers can be confident that the team is committing secure code without moving developers out of their workflow. Now, leaders can focus on broad strategic efforts to improve the organisations security posture without sacrificing quality or time."

The technology works by providing a no-code, low-code approach to automating identity-centric processes at scale. Some of the key features and functions include:

  • Pre-configured actions that enable developer teams to quickly build the desired workflows in a no-code/low code environment, This prevents the hassle of getting into the complexities of API calls.
  • Ability to automatically run workflow that can be customised for frequency.
  • Secure Code Warriors Learning Platform provides information on a developer's assessment score and course completion status, giving teams the insights to determine their security skills when writing code.
  • Flexibility to only allow GitHub repo access to security proficient developers

Okta senior director David Shackelford says that the new solution will ensure confidence in developers and provide insight and knowledge for a more productive and efficient future.

"As an early adopter of Workflows Connector Builder, we are excited to have the new Secure Code Warrior connector in the Okta Integration Network, which goes beyond SSO and provisioning to support advanced integration flows," he says.

"Developers can be confident that their secure code knowledge is up to date and relevant to the code they are committing."