Black Duck Software Market Research Report

Company Overview

• Name: Black Duck Software, Inc.

• Mission: Black Duck aims to help organizations secure their software quickly to foster innovation and progress while ensuring security and quality in software development.

• Foundation: Formerly known as Synopsys Software Integrity Group, Black Duck rebranded as an independent company in 2024.

• Key People:

• Jason Schmitt, Chief Executive Officer

• Ed Loftus, Chief Financial Officer

• Joy Meier, General Counsel & Chief Human Resources Officer

• Jim Ivers, Chief Marketing Officer

• Bill Balicki, Senior Vice President, Sales

• Girish Janardhanudu, Senior Vice President, Services

• Rich Bowen, Vice President, Strategic Programs

• Jeff Delaney, Vice President, Engineering

• Tom Herrmann, Vice President, Channels and Alliances

• Scott Johnson, Vice President, Product Management

• Chris Leffel, Vice President, Engineering

• Roxanne Tashjian, Vice President, Revenue Operations

• Headquarters: 800 District Ave. Ste 201, Burlington, MA 01803

• Number of Employees: No information available

• Revenue: Exceeds $500 million with double-digit profitability

• Known For: Black Duck is recognized as a market leader in application security testing, facilitating businesses to build trust in their software through comprehensive application security solutions.

Products

Black Duck® Software Composition Analysis (SCA)

• Description: Helps manage the security, quality, and license compliance risks from open source usage and third-party code.

• Key Features:

• Dependency Analysis: Identifies direct and transitive dependencies declared by package managers.

• Binary Analysis: Detects dependencies in artifacts like firmware and container images without needing source code.

• Snippet Analysis: Matches code snippets back to their original open source projects.

Black Duck Polaris™ Platform

• Description: A cloud-based application security solution optimized for DevSecOps needs, integrating multiple security analysis engines.

• Key Features:

• fAST Static: Identifies security defects in proprietary & infrastructure-as-code templates.

• fAST SCA: Assesses vulnerabilities in software supply chain with detailed guidance.

• fAST Dynamic: Streamlines web application dynamic testing with minimal setup.

Software Risk Manager™

• Description: Enables management of application security programs at an enterprise scale.

• Key Features:

• Policy and Orchestration: Unified orchestration, prioritization, and testing capabilities.

• Visibility into Risk: Provides a uniform assessment of all software components, including custom code and open source.

Recent Developments

• New Corporate Identity: Transitioned from Synopsys Software Integrity Group to Black Duck as of October 2024.

• Acquisition: The company became independent following acquisition by Clearlake Capital Group and Francisco Partners in a transaction valued at up to $2.1 billion.

• Innovations in AI: Introduced Polaris Assist, an AI-powered application security assistant providing augmented vulnerability summaries and code fixes.

• Development Focus: Launched various tools such as fAST Dynamic for streamlined dynamic application security testing and enhanced software development lifecycle (SDLC) integrations.

Industry Recognition

• Leader in Application Security Testing (AST): Recognized by Gartner in the Magic Quadrant for seven consecutive years.

• Forrester Wave Leader: Acknowledged for excellence in both Software Composition Analysis and Static Application Security Testing.

Overall, Black Duck Software is presented as a robust, independent leader in the application security domain, leveraging advanced technology to provide comprehensive solutions that align with modern enterprise needs.