Find software at discounts Savings, Analyze spending.

Security and Compliance

All subcategories in Security and Compliance

We empower you to be a secure developer Open source is awesome for boosting your productivity. However, taking code written by others, often with little to no vetting of its security pedigree, can put your application at risk. Snyk enables you to find, and more importantly fix known vulnerabilities in your open source. And it’s built by the best developers and security researchers in the space.

Mend.io provides you with all the necessary tools to establish a mature, proactive AppSec program that effectively mitigates application risk. The application security landscape is in a state of flux as organizations transition from a fragmented ecosystem of point solutions to a unified platform like the Mend AppSec Platform, empowering them to take control of their security measures. The platform merges a developer-centric repo-centric approach with prioritized, actionable insights seamlessly integrated into existing processes. It offers significant benefits such as up to 75% fewer findings that require remediation, relieving you of the burden of managing numerous security issues, streamlined cross-product workflows, and a consolidated data model that enhances security posture. Mend is licensed based on the number of Contributing Developers with a $15,000 minimum purchase.

Doppler is a SecretOps platform for securing and syncing developer secrets throughout your infrastructure.

Aikido is a developer-centric software security platform. It offers a central system that shows you what matters and how to fix it from code to cloud.

PortSwigger offers tools for web application security, testing, & scanning. Choose from a range of security tools, & identify the very latest vulnerabilities.

Rapid7 powers the practice of SecOps by delivering shared visibility, analytics, and automation to unite security, IT, and DevOps teams. Learn more.

Lacework provides end-to-end cloud security automation for AWS, Azure, and GCP with a comprehensive view of risks across cloud workloads and containers.

Qualys, Inc. provides cloud security, compliance and related services and is based in Foster City, California.

Wiz is a cloud security platform used to rapidly identify and remove the most critical risks in AWS, Azure, GCP, and Kubernetes to facilitate faster and more secure builds.

Sophos Group plc is an English security software and hardware company.

Drata is a security and compliance automation platform that continuously monitors and collects evidence of a company’s security controls, while streamlining workflows to ensure audit-readiness.

A-LIGN is a cybersecurity and compliance firm that specializes in helping you navigate the scope and complexity of your specific security needs. Are you ready to stop the struggle and secure the summit? Learn how we can help.

Automated compliance management software to help you efficiently grow from one security framework to many, including SOC 2, ISO 27001, NIST, and PCI.

Takes the misery and mystery out of passing security audits like SOC 2, PCI, and ISO 27001 so you can slay more deals and stay secure.

Level Access has an unparalleled history in helping achieve compliance for regulations and standards such as ADA, Section 508, WCAG, VPAT, CVAA, AODA.

HackerOne is a cybersecurity company that offers attack resistance management which blends the security expertise of ethical hackers with asset discovery, continuous assessment, and process enhancement to find and close gaps in the digital attack surface. Fortune 500 and Forbes Global 1,000 companies trust HackerOne to test and secure the applications they depend on to run their businesses.

Empower Information Sharing. Enforce Data Security. Easily control access to sensitive data shared via email, files, and apps. All powered by open standards and the Virtru Data Security Platform.

HyperComply is the easiest way for InfoSec and Sales leaders to securely share compliance information, automate security questionnaire response, and accelerate sales.

Cheq.ai secures your paid marketing, on-site conversion, data & analytics from bots and invalid users as a leader in go-to-market security.

Metomic is a software company that detects, classifies, and controls sensitive data in cloud applications to simplify compliance and offer security.

TrustArc simplifies privacy management for the GDPR, CCPA and 500+ other global regulations with our comprehensive technology platform.

Osano is an easy-to-use data privacy platform. Instantly make your website compliant with CCPA, GDPR, and monitor all of your vendor's​ privacy practices.

Transcend offers data governance solutions that help companies achieve privacy compliance through powerful data mapping and data discovery, automated data subject requests, and simple cookie consent, all with industry leading security.

Blur protects your private info and helps you stay anonymous online with masked, burner cards (virtual cards), ad blocking, masked emails, and masked phones.

CookieYes is a leading consent management platform (CMP) that helps businesses comply with privacy regulations such as GDPR, CCPA, LGPD, POPIA, and more.

Abnormal Security provides advanced email security to prevent credential phishing, business email compromise, account takeover, and more.

When attackers have multiple ways in, blocking messages is no longer enough. Material protects accounts even after they’re compromised or harmful messages get through.

Get started with EasyDMARC to stop hackers from sending emails from your domain. EasyDMARC all-in-1 solution provides the best anti-phishing tools and increases email reach.

Secure email communications with the power of Natural Language Understanding (NLU). Stop BEC and targeted phishing attacks, protect sensitive PII and PCI, and reduce phishing response times.

Learn how IRONSCALES advanced anti-phishing platform uses a unique combination of human & machine intelligence to kick off a rapid response to phishing attacks.

DigiCert is one of the largest Certificate Authorities in the world and one of the fastest-growing and most successful companies in Utah. DigiCert provides a fun, casual, and flexible environment that emphasizes employee success. For our efforts, we have been awarded the Utah Best of State, Utah 100, UV50, Utah’s Best Places to Work, Best Companies to Work For, and the Alfred P. Sloan Award for Business Excellence in Workplace Flexibility.

Develop the future of fintech with Plaid, the technology layer for financial services. Plaid enables applications to connect with users’ bank accounts.

SendSafely: The End-to-End Encryption Platform for Secure File Exchange and Confidential Email

FIPS 140 validated encryption — SafeLogic's simplified FIPS 140 validated encryption and services reduce cost, time, and effort by a huge margin.

Secure your multi-tenant application with sophisticated data security solutions like application-layer encryption, customer managed keys, and end-to-end encryption.

VirusTotal is a website created by the Spanish security company Hispasec Sistemas.

ESET is an IT security company that offers anti-virus and firewall products such as ESET NOD32.

Digital Guardian is an American data loss prevention software company that produces products designed to detect and stop malicious actions by users and malware on endpoints.

Take your IT team further with our endpoint management software solutions. ✓ Move faster with Recast Software & automation platform here today!

Absolute Software Corporation is an American-Canadian company that specializes in endpoint security and zero trust security.

DataGrail is the leading privacy management platform. Build trust and eliminate risk with automated data mapping, DSR management, guided privacy assessments, and more. With continuous system detection, responsible data discovery, and automated data subject request (DSR) fulfillment, DataGrail powers privacy programs. Companies like Overstock, Salesforce, New Balance, and Instacart use DataGrail to support compliance with evolving privacy laws and regulations, like GDPR, CCPA, and CPRA.

OneTrust is a privacy management software platform to operationalize data privacy compliance and privacy by design.

Vanta's trust management platform takes the manual work out of your security and compliance process and replaces it with continuous automation

Thomson Reuter is a Canadian multinational mass media and information firm that provides professionals with the intelligence, technology, and human expertise they need to find trusted answers.

NAVEX Global's GRC software and compliance management solutions support the risk and compliance management system for 13,000 organizations worldwide.

Okta provides secure identity management and single sign-on to any application, whether in the cloud, on-premises or on a mobile device for your employees, partners and customers.

1Password is a secure and convenient password manager. Keep your important information secure with AES 256-bit encryption. Keep all kinds of information easily organized with convenient categories and your own tags. Instantly find what you need with powerful and customizable search. 1Password remembers and fills web forms with your passwords, credit card information, and addresses—with a single click.

Teleport is an open-source tool for providing zero trust access to servers and cloud applications using SSH, Kubernetes and HTTPS.

Enterprise password management employees will love, and best-in-class encryption technology that administrators trust.

JumpCloud® is a central source of authentication, authorization, and management of employees and their devices and the IT applications they access.

Cloudflare empowers organizations to make their employees, applications and networks faster and more secure everywhere, while reducing complexity and cost.

SecureW2 offers World-Class PKI Services, #1 Rated Onboarding Software & RADIUS Services to provide the next-generation of passwordless network security.

Check Point Software Technologies Ltd. is a leading provider of cyber security solutions to corporate enterprises and governments globally.

Defend SMBs, enterprises and governments from advanced cyber attacks with SonicWall's award-winning firewalls and cyber security solutions.

Barracuda Networks, Inc. is a company providing security, networking and storage products based on network appliances and cloud services.

Leader in third-party risk management and cyber threat intelligence.

Assetnote combines advanced reconnaissance and high-signal continuous security analysis to help enterprises gain insight and control of their evolving exposure.

World's most consolidated Digital Risk Protection stack with Unlimited Takedowns, Attack Surface Management, Threat Intelligence, and Deep & Dark Web monitoring

Cyberhaven is an innovative security solution that provides protection against unauthorized access to sensitive data. It uses a powerful nginx-based firewall to prevent malicious activity and safeguard confidential information.

Prevent unrecognized risk across your supply chain with Black Kite—the only cyber ratings tool dedicated to third-party risk intelligence.

KnowBe4 provides Security Awareness Training to help you manage the IT security problems of social engineering, spear phishing and ransomware attacks.

Ethena is a compliance training platform that works. Harassment Prevention; Diversity, Equity & Inclusion; Anti-Bribery & Corruption​​; Hiring & Interviewing; and more.

Secure Code Warrior helps developers write more secure code. We are focused on bringing an innovative approach to developer security training. Contact us today.

Traliant offers regulatory online compliance training including preventing workplace discrimination and harassment, code of conduct, and AB 1825 & AB 2053.

Interactive Secure Coding Training Using An Offensive & Defensive Approach. Proven To Be More Engaging and Effective.

Turn domain and DNS data into threat intelligence with DomainTools. Connect network indicators to investigate, profile and map attacker infrastructure.

ObserveIT is an Insider Threat Management software company.

Prevent fraud and abuse online with our context API and data feeds. We improve security operations and solve the latest cyber security problems. Sign up to use our free community data portal.

Seamless and secure online experiences are built with BioCatch behavioral biometrics. We’re more than just fraud prevention. Our solution powers your digital growth.

Ernst & Young is a multinational professional services firm headquartered in London, England, United Kingdom.

OpenVPN is an open-source commercial software that implements virtual private network techniques to create secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities.

Tailscale is a zero config VPN for building secure networks. Install on any device in minutes. Remote access from any network or physical location.

Replace your VPN with the Zero Trust solution that's easy to adopt and loved by your workforce.

Top rated VPN for 2019. Unblock websites & protect all your devices. 24/7 support. VPN for Windows, Mac, Android, iOS, routers & more. Try 30 days risk-free.

Free open source enterprise distributed VPN server. Virtualize your private networks across datacenters and provide simple remote access in minutes.

With powerful platform and team of experts, Bugcrowd connects organizations to a global crowd of trusted security researchers.

The world leader in Enterprise Immune System technology for cyber security.

Effortlessly comply with open source licenses. Get started for free at https://t.co/LOlbEHiSX3

Intigriti is an agile pentesting platform that enables companies to enlist the help of experienced ethical hackers to outmaneuver cybercriminals. It offers cost-effective and simple bug bounty programs with the help of a customer success team, as well as Hybrid Pentest solutions for advanced security testing.

Coalfire provides cyber risk management and compliance services for enterprises and government organizations. PCI DSS QSA, ISO, HIPAA, FedRAMP

*Disclaimer: This content has been generated by AI.