CAST in the U.S

New York

321 W. 44th St., Suite 501
New-York, NY 10036
Phone: +1 212 871 8330
Fax: +1 212 759 3845

Washington D.C.

4075 Wilson Bd 8th fl
Arlington, VA 22203
Phone: +1 703 894 1350
Fax: +1 571 257 7453

CAST is the market leader in Software Intelligence, with unique technology backed by $150 million in software analysis and measurement R&D. CAST technology helps digital leaders and doers see the truth, become software geniuses and deliver super software - resilient, responsive, safe and secure software. Hundreds of companies rely on CAST to improve end-user satisfaction and time-to-market, prevent business disruption and reduce cost. Founded in 1990, CAST operates globally with offices in North America, Europe, India and China.

‘All-In-One’ Security Dashboard from CAST Provides Software Intelligence for Developers, Architects, Product Owners and Management Teams

New York – May 8, 2018

CAST, the leader in Software Intelligence, today announced the CAST Security Dashboard to help organizations better understand and improve the safety and soundness of business-critical software. The CAST Security Dashboard is the only solution available today that provides a single view across the entire application or business transaction, enabling development teams, architects, product owners and management teams to design security in upfront and find the most dangerous software flaws.

The CAST Security Dashboard goes beyond code-level checks, providing Software Intelligence that helps teams:

  • Design security into applications from the beginning of the software development lifecycle.
  • Secure architectural governance of software systems to ensure maximum uptime.
  • Focus effort on security vulnerabilities that are contextual and critical by eliminating false positives.
  • Benchmark application security over time to ensure continuous improvement throughout release cycles and modernization efforts.

“Static application security testing (SAST) remains the best pre-release testing tool for catching tricky data flow issues and issues such as cross-site request forgery (CSRF) that tools such as dynamic application security testing (DAST) have trouble finding.” wrote Amy DeMartine, Principal Analyst and author of The Forrester Wave™: Static Application Security Testing, Q4 2017.

Research shows more than 90 percent of software outages are caused by architectural design flaws, yet security teams rarely consider software architecture when looking at securing IT systems. Complicating matters, software architects are focused on enabling end-user functionality with optimal software design and don’t always consider ways software can be breached. Software Intelligence offers unprecedented insight into the structure of complex software, including critical security flaws in design, to close the gap and reduce software risk.

“The CAST Security Dashboard provides Software Intelligence that makes it easier than ever for organizations to ensure they are keeping data secure,” said Olivier Bonsignour, Head of Product Development at CAST. “Most security analyzers are focused on specific layers of software and don’t compute data flow or data access. CAST generates the most accurate security findings by blueprinting architectural dependencies in software to reduce noise and false positives while helping teams prioritize the most important security issues.”

CAST was recently named a Strong Performer in “The Forrester Wave™: Static Application Security Testing, Q4 2017” and received the highest score in the Accuracy criterion.

To download a complimentary copy of The Forrester Wave™: Static Application Security Testing, Q4, 2017, click here.

To learn more about the CAST Security Dashboard or to get a free demo, click here.

About CAST

CAST is the market leader in Software Intelligence, with unique technology backed by $150 million in software analysis and measurement R&D. CAST technology helps digital leaders and doers see the truth, become software geniuses and deliver super software - resilient, responsive, safe and secure software. Hundreds of companies rely on CAST to improve end-user satisfaction and time-to-market, prevent business disruption and reduce cost. Founded in 1990, CAST operates globally with offices in North America, Europe, India and China. For more information, visit. www.castsoftware.com.

You can also:

Visit the Software Intelligence Blog: https://www.castsoftware.com/blog
Check us out on Twitter: http://www.twitter.com/onquality

Contact:

Britney Schaeffer
communications@castsoftware.com
+1 212-871-8361

 

  • ×

    West Monroe Partners

    Our business consultants are driven by opportunities to contribute to your commercial success. We partner with you to help generate revenue, reduce costs and transform your thinking, operations, and capabilities. We are at our best when your objectives demand tightly managed efforts that make direct progress toward clear business purposes.

  • ×

    Global Data Strategy

    Global Data Strategy is an international information management consulting company specializing in the alignment of business drivers with data-centric technology. Our passion is data, and helping organizations enrich their business opportunities through data and information.

  • ×

    UST Global

    UST Global is a leading provider of end-to-end IT services and solutions for the Global 1000 market. It offers a client-centric fully integrated Engagement Model that provides the optimal mix of senior local resources with the cost, scale and quality advantages of offshore operations for each client.

  • ×

    Premios

    David Consulting Group is a leader in the area of software process performance analysis and measurement. DCG has created solutions designed to improve client competitiveness through improvements to the productivity, performance and quality of their software practices and IT delivery. At the core of our success is the ability to identify our clients business and technical objectives and to map their goals to a series of core metrics that quantitatively measure performance based on those goals and objectives.

    Antonio Timbol,
    610-644-2856 x28,
    t.timbol@davidconsultinggroup.com

    "DCG combines our knowledge based consulting with the CAST Software automated business intelligence platform, AIP, to bring unique knowledge based solutions to our customers. Learn more on how DCG can help you move towards evidence-based decision making to manage value-driven change."
    Antonio Timbol, Director of Marketing David Consulting Group.

Learn how federal agencies are using Software Analysis & Measurement solutions to reduce risks of critical systems, maximize IT program and system integrator performance. CAST Federal Solutions provides technology and services in the following areas:

IT Vendor Transparency

Federal IT Programs are challenged to provide unambiguous guidance to  system integrator partners as to the specific standards by which the delivered application products will be assessed.  Software analysis and measurement based on CISQ standards promotes common understanding for government and providers as to ongoing delivery reliability, security and quality of the systems.  This results in 50% lower likelihood of testing or deployment defects while reducing production risks and cost of rework.  
For examples of contracts, and SLA’s, please contact the CAST Federal Practice: castfed@castsoftware.com

Vulnerabilities in software that are introduced by mistake or poor practices are a serious problem today".  - Cyber Security: A Crisis of Prioritization, the President’s Information Technology Advisory Committee.

Software Assurance

Software that is designed with solid architectural design emphasizing reliability and resiliency is more difficult to penetrate. Poor design provides vulnerabilities that are infected and which are often replicated and propagated within a complex system. Performing late stage security audits and building firewalls is not enough—security must be designed and built into an application and then rigorously verified – multiple times within each and every release. CAST’s Software Assurance solution provides a systematic set of evaluations to support  conformance to requirements and standards around:

  • Trustworthiness - No exploitable vulnerabilities exist, either of malicious or unintentional origin
  • Predictable Execution - Justifiable confidence that software, when executed, functions as intended.
  • Reliability & Performance - Security is ultimately a component of overall quality risk. Applications that are slow or unstable are more easily breached. This is recognized by ISO, CISQ, and CWE.

Software Code Quality Checking (SCQC)

SCQC is an automated analysis of source code to ensure that the system should continue within development, demonstration, and test.  SCQC helps ensure that the application in development or sustainment can meet the stated performance, maintainability, and usability requirements within cost (program budget), schedule (program schedule), risk, and other system constraints. SCQC complements Developmental Test and Evaluation (DT&E) and Operational Test & Evaluation (OT&E) by identifying defects earlier in the system development lifecycle (SDLC).

Benchmarking

Effective benchmarking enables an organization to easily identify and prioritize opportunities—by process, vendor and cost driver—which, in turn, results in relevant improvement targets and stronger overall business case for the transformation effort.  CAST introduced the industry’s first software quality benchmarking capability in 2010. The service, (Appmarq,) gathers data from CAST analyses performed across global industry and public sector IT organizations and provides normalized data for CAST clients in support of external benchmarking. This work is being done at the program and enterprise levels in a number of organizations in industry and government.

Measuring IT Productivity

One of the most vexing problems in software engineering – in Industry or Federal sectors - is measuring the amount of progress made in developing or sustaining a software product.  The largest opportunity for improving quality and productivity during application development is in eliminating its largest sources of waste: defects and the rework they cause, 30-50% of the development effort is devoted to rework.   
CAST Application Intelligence Platform (AIP) is a powerful IT operational management platform that gives OCIO and Program executives the visibility and control to improve business productivity to reduce IT costs. CAST has the ability to quantify quality and progress, rather than just time spent. 

IT Portfolio Analysis

The stove-piped and complex nature of the Federal enterprise has led to a proliferation of duplicate and low priority investments in information technology.  In short, agencies’ portfolios have become cluttered with obsolete systems that no longer deliver full value to the citizen.  Fact-based approach to IT planning and budgeting, improves efficiency in the governance of application portfolio rationalization efforts, leading to optimized allocation of funding and resources. Align application investment decisions more effectively with organizational strategies and priorities through an effective dialogue between program managers and IT.

a failure to satisfy a non-functional requirement can be critical, even catastrophic…non-functional requirements are sometimes difficult to verify. We cannot write a test case to verify a system’s reliability… The ability to associate code to non-functional properties can be a powerful weapon in a software engineer’s arsenal.

Spinellis D. Code Quality

Federal Partnerships

CAST has successfully teamed with Boeing, CSC, Northrop Grumman, Accenture, Keane, Ingenium, Booz Allen, Lockheed, Raytheon & Sybase Corporation

Contract Vehicle

GSA Schedule (GS-35F-0649S)

CAST Section 508 Statement of Policy

Click here to get the latest version of our Section 508 Statement of Policy

Prior Performance

CAST prior performance in Federal contracts includes: