Case Study: Prophecy International achieves faster time to market and AppSec certification with Veracode

Prophecy International’s Snare Product Improves Its Time to Market Using Veracode and DevSecOps Best Practices

Prophecy International, an Australian software company best known for its Snare log-management product, needed to ensure that the security tool itself was robust, provable and compliant so customers would trust it for threat detection. The team faced the dual challenge of embedding security into development and meeting evolving industry standards and certifications to remain competitive.

Prophecy adopted Veracode’s SAST and DAST (later adding SCA) and integrated scans into its IDE and Jenkins CI/CD pipelines, enrolled in Veracode Verified, and embraced DevSecOps practices. As a result, developers scan weekly, remediate faster, release software sooner, expanded AppSec coverage to additional apps and test types, gained third‑party attestation and a competitive advantage, and used Veracode to help achieve ISO 27001 certification.

Prophecy International

Svetlana Sheptiy

Software Engineering Manager and Scrum Master