Checkmarx has announced the integration of Checkmarx Developer Assist with the AI-powered integrated development environment (IDE) Kiro.
Kiro is an agentic AI-powered IDE and coding service by AWS designed to move software development from prototype to production using "spec-driven development (SDD)."
This development is particularly relevant for CISOs in Asia, who are navigating the complexities of secure coding amid rapid software development.
As software development accelerates in the region, the need for real-time security measures has never been more pressing. The Checkmarx Developer Assist tool embeds security vulnerability prevention directly into the coding process, allowing developers to identify and remediate issues as they write code—without the need for later scans in the Continuous Integration/Continuous Deployment (CI/CD) pipeline.
Jonathan Rende, chief product officer at Checkmarx, stated, “With AI-driven development environments like Kiro, security must operate at developer speed.” This integration promises to significantly reduce security rework, with the potential to eliminate up to 90% of vulnerabilities before code is even committed.
Key features of the Checkmarx Developer Assist include the ability to analyse source code and dependencies in real-time, applying security policies in line with Checkmarx One protocols seamlessly.
This ensures that developers receive immediate feedback about potential vulnerabilities, allowing for faster remediation and reducing the likelihood of costly security oversights in production.
For CISOs in Asia, where regulatory requirements and security threats are intensifying, this tool supports a proactive security approach. By embedding security into the development lifecycle, organisations can enhance compliance and governance efforts while fostering a security-aware culture among developers.
Moreover, the unified view of risk offered by Checkmarx One allows security leaders to maintain oversight across multiple projects and teams, minimising the risk posed by fragmented security practices. As the region continues to advance in AI and digital transformation, integrating such tools can bolster security postures against emerging threats.
The integration of Checkmarx Developer Assist within Kiro enables developers to write secure code efficiently while empowering organisations to adopt AI-driven development confidently.
