Skip to main content

Snyk Acquires Runtime Data Pioneer Helios, Empowering Global AppSec Teams with Unparalleled Cloud-to-Code Risk Visibility

Written by Customer Service on . Posted in Mergers And Acquisitions.

Acquisition Turbocharges Snyk’s ASPM Vision and Solutions with Customers Gaining Runtime Context

BOSTON, Jan. 16, 2024 (GLOBE NEWSWIRE) — Snyk, the leader in developer security, today announced the acquisition of Helios, an industry pioneer capturing application runtime data, to further enhance Snyk’s cloud-to-code risk visibility. The acquisition marks a milestone in Snyk’s Application Security Posture Management (ASPM) journey, accelerating the evolution of Snyk AppRisk and allowing enterprise security teams to more effectively manage their global application security programs at scale.

With the pace of software development continuing to increase, many enterprises aspire, but struggle, to have a deep understanding of their apps from cloud-to-code, in order to get a full picture of their overall risk. In direct response, Snyk will now combine Helios’ full-stack runtime data collection and insights with the power of the Snyk Developer Security Platform to provide customers with a truly comprehensive picture of their applications, spanning the entire software development lifecycle.

The current market landscape leaves mature security teams wanting as traditional AppSec vendors are unable to correlate build-time security scans with live runtime security signals, while runtime forensics vendors lack crucial developer understanding. Snyk customers can now leverage security context from all phases of development – from when code is built, to when it is compiled, to when it is deployed– facilitating true DevSecOps collaboration.

“As the pace and complexity of software development continues to rapidly increase, we’ve seen our global customers reap enormous productivity gains, but often at the cost of increased risk and critical security concerns,” said Peter McKay, CEO, Snyk. “This acquisition was executed with those valid concerns top of mind. We’re excited to welcome the Helios team and look forward to continuing to push the market forward with our ASPM vision and enhanced solution.”

With Helios’ cutting-edge runtime forensic capabilities, Snyk customers will now have access to:

  • End-to-end application discovery: holistic visibility of an entire application environment;
  • Risk-based prioritization: ability to use actionable runtime insights to focus remediation efforts where they matter most to the business; and,
  • Full-stack runtime data collection: including multiple data collection methods to ensure a comprehensive picture of applications in runtime.

“This is an incredible opportunity for the Helios team to join Snyk and change how the industry views ASPM, and we’re thrilled that our technology will immediately be able to help more AppSec and developer teams be successful,” said Eli Cohen, Co-Founder and CEO, Helios. “We’ve long admired Snyk’s approach and proven success and we’re honored to join this innovative, collaborative culture.”

The Helios acquisition is Snyk’s latest move demonstrating the company’s vision for developer-led ASPM. Snyk acquired ASPM leader, Enso Security, in June 2023, adding notable prioritization and remediation capabilities to their existing platform. In December, the company closely followed that acquisition with the launch of its market-disrupting ASPM solution, Snyk AppRisk, a first-of-its-kind tool designed to help AppSec teams govern their security program in seamless collaboration with development and reduce risk at scale.

Strengthened Security Prioritization
Today’s modern AppSec and development teams need one field of vision of which risks are present and which should be prioritized. Deep application understanding and development context, from developer-focused tools that analyze source code, libraries and configurations, is crucial to preventing risks that appear during the early stages of application development. When combined with runtime analysis, or the evaluation of applications after deployment, both of these forms of analysis inform much sharper insight into application behaviors and risk, enabling organizations to prioritize remediation effectively as well as alleviating alert fatigue by discerning actionable threats from non-issues.

Enhanced Partner Ecosystem
With Helios’ functionality, Snyk can now additionally bring greater benefit to their strategic partners by leveraging these runtime insights for complementary value. In both the near- and long-term, Snyk looks forward to creating even more advantages and opportunities within its partner ecosystem for mutual customers looking to benefit from enhanced runtime data, visibility and analysis.

“Runtime context is critical to properly prioritizing application security issues,” said Ely Kahn, VP Product, SentinelOne. “The Snyk+SentinelOne integration identifies which container images are deployed in runtime and whether they have malware or other threats associated with them. Snyk users can leverage this information to identify which container image vulnerabilities should be prioritized for remediation.”

For more information on Snyk’s acquisition of Helios, visit here.

About Snyk
Snyk is the leader in developer security. We empower the world’s developers to build secure applications and equip security teams to meet the demands of the digital world. Our developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture. Snyk’s Developer Security Platform automatically integrates with a developer’s workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by 2,500+ customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce.

Contact:
Cara Foley
cara.foley@snyk.io

Disclaimer & Cookie Notice

Welcome to GOLDEA services for Professionals

Before you continue, please confirm the following:

Professional advisers only

I am a professional adviser and would like to visit the GOLDEA CAPITAL for Professionals website.

Important Notice for Investors:

The services and products offered by Goldalea Capital Ltd. are intended exclusively for professional market participants as defined by applicable laws and regulations. This typically includes institutional investors, qualified investors, and high-net-worth individuals who have sufficient knowledge, experience, resources, and independence to assess the risks of trading on their own.

No Investment Advice:

The information, analyses, and market data provided are for general information purposes only and do not constitute individual investment advice. They should not be construed as a basis for investment decisions and do not take into account the specific investment objectives, financial situation, or individual needs of any recipient.

High Risks:

Trading in financial instruments is associated with significant risks and may result in the complete loss of the invested capital. Goldalea Capital Ltd. accepts no liability for losses incurred as a result of the use of the information provided or the execution of transactions.

Sole Responsibility:

The decision to invest or not to invest is solely the responsibility of the investor. Investors should obtain comprehensive information about the risks involved before making any investment decision and, if necessary, seek independent advice.

No Guarantees:

Goldalea Capital Ltd. makes no warranties or representations as to the accuracy, completeness, or timeliness of the information provided. Markets are subject to constant change, and past performance is not a reliable indicator of future results.

Regional Restrictions:

The services offered by Goldalea Capital Ltd. may not be available to all persons or in all countries. It is the responsibility of the investor to ensure that they are authorized to use the services offered.

Please note: This disclaimer is for general information purposes only and does not replace individual legal or tax advice.