UNICC and Veracode Partner for Robust Application Security Solutions

6 February, 2023

...

Cybersecurity is an increasingly important area for UN Agencies in getting their respective missions delivered. This includes security for DevOps and application development.

Application security (AppSec) is the process of developing, adding, and testing security features within applications to prevent security vulnerabilities against threats such as unauthorized access and modification. Its goal is to improve security practices and find, fix and prevent security issues within applications. AppSec encompasses the entire application lifecycle from requirements analysis, design, implementation, verification to maintenance.

UNICC is pleased to announce a strategic partnership with Veracode, a Gartner Magic Quadrant leader in AppSec services. Veracode offers a trusted partnership with UNICC, featuring volume discounts for UNICC Clients and Partner Organizations.

Veracode provides a consolidated platform for AppSec testing including its solutions of Static Analysis, Software Composition Analysis and Dynamic Analysis, as well as advisory support and best practices for AppSec deliverables and eLearning in secure coding for developers.

We are delighted to partner with UNICC and contribute to a programme that really makes a difference to UN agencies across the globe. Our mission is to help secure the world’s software for the benefit of all, and we empower organizations to make security a seamless part of the development process by providing access to industry-leading tools and experience.

Richard Terry, VP EMEA, APAC & LATAM at Veracode

UNICC AppSec solutions offer guidance and support for governance, application integration and security testing. Continuous application security management, with onboarding and securing applications, by running security testing tools such as Static Application Security Testing (SAST), Software Composition Analysis (SCA) and Dynamic Application Security Testing (DAST).

Our application security work assists UN Agencies that are contributing every day to support humanitarian causes and to help people make the world a better place to live.

Joao Remedio, AppSec Team Leader

Veracode’s insightful reports, dashboards and seamless integration with developer tools (IDEs, CI/CD pipelines) help bridge gaps between development and security. In its partnership with UNICC, Veracode promotes the idea of DevSecOps and envisions that every software product is developed with secure code from the beginning.

AppSec experts at UNICC have years of experience with United Nations applications, platforms and websites. AppSec services and solutions follow the Open Web Application Security Project (OWASP) framework and revolve around application security testing through tools and automation, including secrets scan, static code analysis, software composition analysis, and dynamic analysis.

UNICC offers guidance and training on secure coding with industry-standard best practices, processes, and procedures. Current AppSec Clients include CITES, FAO, ICJ, UNCTAD, UNDP, UNHCR, UNIDO, UNITAD and UNOCT.

See the Application Security Solutions brief for more details. For more information, please reach out to [email protected].