Legit Security Named a “Representative Vendor” in the Gartner® Market Guide for DevOps Continuous Compliance Automation Tools

Legit Security Named a “Representative Vendor” in the Gartner® Market Guide for DevOps Continuous Compliance Automation Tools.

Boston, MA – May 16, 2024 – Legit Security, the leading platform for enabling companies to manage their application security posture across the complete developer environment, has been identified as a Representative Vendor in the Gartner "Market Guide for DevOps Continuous Compliance Automation Tools” report.[1]

“We are honored to be acknowledged in the list of vendors providing continuous compliance automation tools in DevOps for the first year in the Gartner Market Guide,” said Legit’s CEO Roni Fuchs. “We believe this recognition further validates the industry’s demand for visibility, context, and evidence to enable compliance, highlighting the value of building a scalable security program foundation to reduce risk, protect software products, and make compliance easier across complex environments.”

Gartner recognized Legit for the first time in the 2024 Gartner Market Guide for DCCA Tools as a Representative Vendor for the company’s Application Security Posture Management Platform.

Organizations must prioritize cybersecurity compliance to protect sensitive data and build trust throughout the software lifecycle. Yet, many struggle with validating and demonstrating compliance across disparate products and application teams. To address these challenges, continuous compliance automation tools are quickly becoming a business imperative.

“Compliance automation vendors have developed feature sets and solutions to provide visibility, rapid insight, assessment, policy enforcement, auditing and remediation. Driving the efficient and effective holistic reporting of the compliance state across all phases of the delivery process, and in the running production environment, remains challenging,” the 2024 Gartner Market Guide for DevOps Continuous Compliance Automation Tools explains.

The Legit Security platform continuously monitors adherence to regulatory requirements and security standards, including custom compliance frameworks. Aligning software security and compliance, Legit provides complete visibility into the entire developer environment, with the security context to validate and prove compliance.

From giving visibility into development environments to produce Software Bill of Materials (SBOMs) as part of a compliance or secure software supply chain initiative, to attestation and audit support, delivering verification and evidence to support compliance audit requirements and attestation mandates, such as Secure Software Development Framework (SSDF), Legit takes the manual work out of demonstrating security controls across the SDLC.

Learn more about Legit’s Continuous Compliance & SBOM and Compliance Attestation & Reporting.


Gartner Disclaimer:

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.


About Legit Security

Legit is a new way to manage your application security posture for security, product and compliance teams. With Legit, enterprises get a cleaner, easier way to manage and scale application security, and address risks from code to cloud. Built for the modern SDLC, Legit tackles the toughest problems facing security teams, including GenAI usage, proliferation of secrets and an uncontrolled dev environment. Fast to implement and easy to use, Legit lets security teams protect their software factory from end to end, gives developers guardrails that let them do their best work safely, and delivers metrics that prove the success of the security program. This new approach means teams can control risk across the business – and prove it. Request a demo today!


[1] Gartner “Market Guide for DevOps Continuous Compliance Automation Tools” by Daniel Betts, Manjunath Bhat, Chris Saunderson, Hassan Ennaciri, George Spafford, March 28, 2024.

Share this guide

Published on
May 16, 2024

Book a 30 minute demo including the option to analyze your own software supply chain, if desired.