JetBrains

JetBrains is on a mission to make software development a more productive and enjoyable experience. They strive to ensure their software is free of security vulnerabilities and encourage users to report issues directly to their issue tracker. The company also emphasizes discussing common security issues and best practices during code reviews.

JetBrains' job postings indicate a strategic focus on integrating security into developer workflows and CI/CD, signaling a shift-left approach. The company actively manages vulnerabilities, as evidenced by its engineering blog discussing timed disclosures and independent advisories detailing fixes for actively exploited TeamCity vulnerabilities. Furthermore, JetBrains is exploring the application of AI/LLM in security tooling, which suggests potential impacts on developer velocity and the security landscape.

JetBrains actively resolves security issues in its products. They also promote discussions on common security issues and best practices during code reviews, indicating a focus on secure development practices.

Information not publicly available regarding the specific AppSec team structure, reporting lines, key leaders, team size, or active job postings. The company is JetBrains.