Data Theorem Receives Highest Scores for API Testing and Discovery and Mobile AST in Gartner Critical Capabilities for Application Security Testing Report

Report Details Critical Capabilities that Led to Gartner Naming Data Theorem a Visionary in the Gartner Magic Quadrant for Application Security Testing, 2021 Report

Palo Alto, Calif.., June 23, 2021

Data Theorem, Inc., a leading provider of modern application security, today announced that Gartner, the leading provider of research and analysis on the global information technology industry, has given it the highest product scores for API Testing and Discovery, as well as Mobile AST, in the Gartner Critical Capabilities for Application Security Testing report.1

According to Gartner, “As software’s role in enabling critical organizational functions continues apace, so does the importance of application security testing. A never-ending stream of breaches and security incidents traced to flaws in application code, along with a growing roster of regulatory and compliance mandates, speak to the criticality of this activity…Long considered mature, the application security testing market has entered a period of rapid evolution and change.”1

Evaluating 14 application security testing (AST) products and services, the Critical Capabilities report is useful for organizations that may seek to identify vendors that best fit their specific use cases. It details the 12 critical capabilities that led to Gartner naming Data Theorem a Visionary in the Gartner Magic Quadrant for Application Security Testing, 20212 report, including: container security scanning, dynamic AST, infrastructure as code (IaC), and developer enablement.

According to Gartner, “’Critical capabilities’ are attributes that differentiate products/services in a class in terms of their quality and performance. Gartner recommends that users consider the set of critical capabilities as some of the most important criteria for acquisition decisions…IT leaders responsible for the security of applications and data should evaluate whether existing or planned application security tools can accommodate the shift from on-premises web applications to cloud-native applications and APIs.”1

With more than eight years of R&D investment, Data Theorem’s award-winning Analyzer Engine is the technology underpinning of all four of its flagship products: API Secure, Cloud Secure, Mobile Secure, and Web Secure. The Analyzer Engine uniquely enables automated API and application discovery, inspection, and remediation of vulnerabilities, helping organizations to prevent data breaches of their applications. Data Theorem’s customers include six of the world’s seven biggest banks and some of the largest global companies, and its AppSec defensive libraries protect more than 2.8 billion users and growing.

“We believe receiving the highest product scores for API Testing and Discovery, as well as Mobile AST, from Gartner confirms our ability to protect API, cloud, mobile, and modern web apps with continuous monitoring and auto-remediation,” said Doug Dooley, Data Theorem COO. “Data Theorem has emerged as an important AppSec vendor for Enterprises who build modern applications, and this recognition from Gartner comes on the heels of Data Theorem being named a Visionary in the Gartner Magic Quadrant for Application Security Testing report.”2

Data Theorem’s broad AppSec portfolio protects organizations from data breaches with application security testing and protection for modern web frameworks, API-driven microservices and cloud resources. Its solutions are powered by its award-winning Analyzer Engine, which leverages a new type of dynamic and run-time analysis that is fully integrated into the CI/CD process, and enables organizations to conduct continuous, automated security inspection and remediation.

Note 1 – “Gartner Critical Capabilities for Application Security Testing,” by Mark Horvath, et al. May 26, 2021.

Note 2 – “Gartner Magic Quadrant for Application Security Testing,” by Dale Gardner, et al. May 27, 2021.

Gartner Disclaimer

Gartner does not endorse any vendor, product or service depicted in our research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

Media Contact

Dan Spalding
(408) 960-9297

About Data Theorem

Data Theorem is a leading provider of modern application security, helping customers prevent AppSec data breaches. Its products focus on API security, cloud (serverless apps, CSPM, CWPP, CNAPP), mobile apps (iOS and Android), and web apps (single-page apps). Its core mission is to analyze and secure any modern application anytime, anywhere. The award-winning Data Theorem Analyzer Engine continuously analyzes APIs, Web, Mobile, and Cloud applications in search of security flaws and data privacy gaps. The company has detected more than 5 billion application incidents and currently secures more than 25,000 modern applications for its enterprise customers around the world.

Learn more at

Top 6 Security Needs for APIs and Serverless Apps

On-Demand Webinar (36 min)

Securing APIs across Amazon Lambda, Google Cloud Functions and Azure Functions