DevOps Dozen 2022 – Tools Awards Finalists

Best End to End DevOps Tool

Category 1 – Best End to End DevOps Tool/Service

Consolidation in the DevOps space has led to a greater selection of platforms offering end-to-end solutions. This award honors the platform with the most diverse and robust solution for DevOps teams.


Broadcom DevOps Suite [Nominated 1 time(s)]

The Broadcom DevOps Suite brings DevOps, and the value it creates, to these mission critical transactional systems.  By modernizing the software lifecycle, the Suite closes the gap between the new business needs and the confidence of application owners to change these systems.  In a space where the “fail fast” mantra is unacceptable, delivering small changes with quality built-in can create a virtuous cycle that elevates comfort in bigger changes. The Broadcom DevOps Suite is for champions who realize adoption with mission critical systems will be a journey of education.  By introducing DevOps incrementally into diverse environments without disruption, they build a portfolio of proof points upon which to build additional investment.

CloudBees Platform [Nominated 1 time(s)]

CloudBees Platform is an end-to-end, integrated platform that provides a single solution for continuous integration (CI), continuous delivery (CD) and release orchestration (RO), feature management (FM), continuous compliance, and value stream management. The platform streamlines DevOps – creating self-service, fast, and secure workflows that connect software delivery to business outcomes. It also significantly simplifies cross-team communication, improves visibility and management across pipelines, tools, and teams, and is flexible enough to support applications from monoliths to modern cloud native microservices. Pairing modern practices with CloudBees’ DevOps expertise, it is the only DevOps platform that supports massive enterprise scalability.

Codefresh [Nominated 1 time(s)]

Codefresh is the most trusted CI/CD platform, providing a foundation for growth with modern CI, CD, GitOps, and more. Its mission is to give DevOps teams the control, stability, and confidence they need to release more frequently and enable smoother software deployments to the cloud, on-prem, or at the edge. Codefresh is built on an enterprise distribution of Argo, the industry’s leading declarative continuous integration and continuous delivery tool. Available today in hosted, on-premise, and hybrid deployment options, Codefresh’s flagship code-to-cloud solution enables unrivaled visibility into CI/CD deployments. It provides an easy-to-use framework for implementing GitOps and a scalable solution for large teams targeting multi-cluster, multi-application deployments.

Contrast Secure Code Platform [Nominated 1 time(s)]

Contrast Secure Code platform unifies application security across all teams and development stages securing code as applications are built and deployed. Built by developers, trusted by security teams, the platform helps get secure code moving across web applications, serveless, APIs, open source, and custom code. The Platform delivers scan times 10x faster than industry averages with 200% more accuracy at identifying vulnerabilities at DevOps speed, which empowers DevSecOps teams to find and fix code defects 45x faster. The Contrast Application Security Platform enables organizations to lower their security debt which directly translates into dramatic time and cost savings.

Copado Platform [Nominated 1 time(s)]

Copado is the leading DevOps platform for low-code SaaS platforms that run the world’s largest digital transformations.

Copado accelerates multi-platform, enterprise deployments by automating the end-to-end software delivery process to maximize customers’ return on their cloud investment. More than 1,200 companies rely on Copado to drive digital transformation with speed, quality and value including Boston Scientific, Coca-Cola, Fair Trade, Linde, MassMutual, Schneider Electric and Shell. Copado processes over 50 million DevOps transactions per month and is rated with a 100% score on the Salesforce AppExchange.  AI-Powered DevOps Platform [Nominated 1 time(s)]’s  AI-Powered DevOps Platform unifies, secures and generates predictive insights across software delivery and empowers organizations to scale software development teams, and continuously deliver software with speed, quality and security while uncovering new market opportunities and enhancing business value through smarter software investments.

DuploCloud [Nominated 1 time(s)]

DuploCloud’s no-code/low-code platform is the easiest to use and fastest to deploy for cloud infrastructure automation and compliance. From infrastructure provisioning and application deployment to security controls and alerts, the solution is designed to meet the end-to-end DevOps needs of growing companies and lower the technical barriers to cloud automation and on-going logging, monitoring and alerting. Its solution frees DevOps engineers from mundane tasks, allowing them to focus on activities that truly differentiate the business.

Harness Software Delivery Platform [Nominated 1 time(s)]

Harness’s Software Delivery Platform confidently delivers software with velocity – without compromising quality, reliability, security, or efficiency. Harness offers solutions for all phases of software delivery, increasing velocity while improving the reliability, governance, and efficiency of their applications. Further, it builds security into every step of the delivery process, while also deploying cutting-edge AI and ML technologies.  Together, these functionalities interweave to promote the quality of life and work for the developer, cutting out monotonous tasks and allowing for the redistribution of more time to innovative development tasks that push their software to new heights.

Incredibuild Platform [Nominated 1 time(s)]

Incredibuild is the creator of the leading development acceleration platform for DevOps teams. Incredibuild’s innovative platform dramatically speeds up builds, testing and go-to-market, allowing DevOps to focus their valuable time on creativity and quality – lowering frustration and burnout levels while increasing job satisfaction.

Kong Konnect [Nominated 1 time(s)]

Kong Konnect is an end-to-end multi-cloud API lifecycle management platform ensures new services are connected reliably, securely, and efficiently in every environment. That includes on-premise and the cloud – and allows developers to work with their tools of preference. The hosted control plane also gives developers more freedom to do their best work and focus on shipping apps faster, thanks to Kong’s support team assisting in managing the operations side.

Opsera Continuous Orchestration Platform [Nominated 1 time(s)]

Opsera is the first no code DevOps orchestration platform that combines choice of any CI/CD tools with no code automation across the DevOps lifecycle. By orchestrating tools, pipelines, and insights through a single platform, Opsera speeds time to deployment, optimizes resources, and provides a holistic cross-functional perspective with KPIs that better correlate technical performance with business outcomes. Opsera empowers software and DevOps engineers to deliver software faster, safer, and smarter by providing them with a continuous orchestration platform that enables the choice of any CI/CD tools and no-code automation across the entire DevOps life cycle.

Pagerduty [Nominated 1 time(s)]

PagerDuty offers a digital operations management platform that enables real-time visibility into issues, along with full context, when something goes wrong. PagerDuty is uniquely positioned to help enterprises, mitigate risk to maximize agility, ensure they have a scalable, secure enterprise-grade architecture to adhere to requirements for privacy and security, and power enterprise workflows by integrating PagerDuty with any third-party or custom solution.

Best DevOps Repo

Category 2 – Best DevOps Repo/GitOps Tool/Service

Git has led to GitOps and it has become an integral part of the DevOps toolbox. This award is presented to the most outstanding Repo/Git/GitOps tool.


Cycloid [Nominated 1 time(s)]

Based on your Git, Cycloid is an internal engineering platform that allows any end-users to interact with tools and cloud without the need to become a DevOps expert. This means that Cycloid can be used to create an opinionated platform to define the governance and the level of flexibility wanted. Cycloid is entirely technology, tool, and cloud-agnostic with easy to deploy modules covering Governance, Deployment, Operations and FinOps. In addition to stacks, Cycloid provides features like InfraImport and StackCraft as part of a GitOps approach that enables organizations to easily establish an IaC baseline of an environment.

Iterative Studio [Nominated 1 time(s)]

Iterative Studio provides collaboration for machine learning teams. It provides seamless data and model management, experiment tracking, visualization and automation, with Git as the single source of truth.

Red Hat OpenShift GitOps [Nominated 1 time(s)]

As the number of clusters in a Kubernetes environment grows and as applications are deployed to different clusters in different environments — such as development, staging and production — Red Hat OpenShift GitOps ensures the kind of consistency, security and support that enterprises require. OpenShift GitOps is based on Argo CD, a CNCF project that acts as the declarative GitOps engine that enables GitOps workflows across multicluster OpenShift and Kubernetes infrastructure.

CD Tool

Category 3 – Best CI/CD Tool

This award recognizes the best CI/CD tool that helps create a solid pipeline to deliver quality code more quickly.


BMC Compuware ISPW solution [Nominated 1 time(s)]

The BMC Compuware ISPW solution is a source code management (SCM), build, and deploy solution that enables continuous integration and continuous delivery (CI/CD) on the mainframe. It gives organizations the confidence to build, test, and deploy software on the mainframe quickly and efficiently.

CircleCI [Nominated 1 time(s)]

CircleCI is leading the way in the increasingly important corner of DevOps known as CI/CD, empowering thousands of software developers to build faster and more accurately, decreasing the time to innovation. By automating manual tasks in development cycles and enabling developer productivity across industries, CircleCI powers companies like Samsung, Ford Motor Company, Spotify, Lyft, Coinbase and Stitch Fix to work smarter.

CloudBees CI [Nominated 1 time(s)]

Built on the most widely used automation server in the world, Jenkins™ – CloudBees CI provides flexible, scalable, and governed CI, designed for enterprise sized requirements. The CloudBees solution enables enterprises to simplify experiences with Jenkins, leverage Kubernetes elasticity and resiliency, confidently manage plugins, secure workflows, and deliver Jenkins at scale – all while ensuring security, governance, and compliance are met.

Continuous Machine Learning (CML) [Nominated 1 time(s)]

Continuous Machine Learning (CML) is an open-source CLI tool for implementing continuous integration & delivery (CI/CD) with a focus on MLOps. Use it to automate development workflows — including machine provisioning, model training and evaluation, comparing ML experiments across project history, and monitoring changing datasets. CML can help train and evaluate models — and then generate a visual report with results and metrics — automatically on every pull request. GitHub repo:

Copado Platform [Nominated 1 time(s)]

Copado is redefining the standard of Salesforce DevOps with its low-code approach to delivering faster, higher quality releases and improving trust across customer transformation projects.

Designed for the new breed of non-technical and technical low-code delivery teams, Copado enables customers to integrate continuous quality into every branch of code deployed by embedding end-to-end testing. One of the first companies to achieve this milestone, Copado ensures quality, security and compliance across every step of the software development lifecycle. Earlier this year, it was the first to natively integrate testing into its low-code CI/CD DevOps platform.

GitKraken CI/CD for Jira [Nominated 1 time(s)]

CI/CD for Jira allows teams to view build and deployment information from your CI/CD pipelines directly in Jira. This application is a free extension for Git Integration for Jira by GitKraken. CI/CD for Jira is SOC2 certified, is part of the Atlassian Marketplace Bug Bounty Program, and has completed the Security Self-Assessment Program.  Users can also unlock additional triggers for Jira automation and search parameters for JQL queries.

Harness Software Delivery Platform [Nominated 1 time(s)]

Harness provides a CI/CD platform that is both simple and powerful for engineers to deliver software. Weaving both CI and CD together allows for even more seamless development processes, and this is taken to the next level with ingrained security, compliance, and governance. While the cloud has rapidly modernized, most CI/CD tools have remained stagnant. In contrast, Harness’s CI/CD tool is the only tool on the market that deploys AI and ML technology, making it a pioneering solution for DevOps teams. While the tool is on the cutting edge, it can meet organizations at any stage of their cloud modernization journey – empowering teams to chart their own paths forward.

(see also:

LaunchDarkly [Nominated 1 time(s)]

LaunchDarkly’s platform provides developers and engineers with the freedom to take risks with fewer limitations and fear of failure. With LaunchDarkly, companies can control which users a feature is released to by targeting specific user identities (browser-based vs. mobile device users, for example). This way, if there’s a problem, developers can implement a quick kill switch so they don’t have to go through the entire CD process again to redeploy an older version of the software. Now, they can simply toggle the feature off, fix the problem, and redeploy, saving developers from a ton of added stress and time. Beyond the benefit for developers, it ultimately results in building better software for customers.

Octopus Deploy [Nominated 1 time(s)]

Octopus Deploy enables software teams to deploy their solutions in a continuous and automated way. It simplifies complex deployment processes allowing software solutions to be delivered faster and in a unified way to various deployment environments. Octopus Deploy addresses the needs of enterprise organizations which now don’t need to choose between the speed and the quality of their software deployments. It also provides robust permission and auditing capabilities to ensure internal and external compliance. Octopus Deploy integrates, out-of-the-box, with leading CI/CD solutions to streamline deployment pipelines and to provide additional value to organizations’ existing systems.

OpsMx Intelligent Software Delivery Platform [Nominated 1 time(s)]

The OpsMx Intelligent Software Delivery (ISD) Platform simplifies and intelligently automates software delivery, enabling hundreds of thousands of developers at Google, Cisco, Western Union, and other leading global enterprises to ship better software faster. Incorporating open source Argo and Spinnaker, OpsMx’s ISD Platform is the first open, unified platform for deploying applications in container, virtual machine, and multi-cloud environments. OpsMx ISD utilizes the power of Spinnaker and Argo by integrating with more than 70 popular CI/CD tools to automate CD pipelines – with a user experience that is second to none.

Red Hat OpenShift Pipelines [Nominated 1 time(s)]

Red Hat OpenShift Pipelines — which is designed for decentralized teams that work on microservice-based architecture — is a cloud-native, serverless continuous integration and continuous delivery (CI/CD) solution based on the Tekton Continuous Delivery Foundation project, a powerful yet flexible Kubernetes-native open source framework for creating CI/CD systems.

Best Value Stream Management Tool

Category 4 – Best Value Stream Management Tool

Value stream management has come into its own as an important tool for measuring the business value of DevOps and application development. This award recognizes the value stream management tool that most effectively helps visualize the value stream, track metrics and measure improvement.


Allstacks Platform [Nominated 1 time(s)]

The Allstacks platform was created with the goal of supporting engineers and helping them secure a spot in the boardroom. By providing clear, easy-to-understand benchmark data, Allstacks makes it easier to transparently communicate project status. Improving the internal communications process helps make the development process smoother, an important step to success.

In 2022, Allstacks released a live dashboard with valuable industry benchmark data from software engineering teams for free on its website, which was an industry first. Any company can access this real-time, actionable data to enable continuous improvement goals by comparing the progress of its own software teams against 250,000 contributors.

BMC Compuware zAdviser [Nominated 1 time(s)]

BMC Compuware zAdviser continuously captures data from different development sources to create key performance indicators (KPIs) and metrics for visualizing and understanding the software development lifecycle. With BMC Compuware zAdviser, management can track efforts and determine where bottlenecks lie. Using data from the BMC Compuware ISPW (for source code management), BMC Compuware zAdviser reports on time spent on code development, lead time for changes, change failure rate, deployment frequency, and overall lifecycle time.

These metrics, along with a dozen other metrics, are also available in easy-to-navigate dashboards. BMC Compuware zAdviser benchmarks help to better understand what “good” looks like.

CloudBees Platform [Nominated 1 time(s)]

CloudBees Platform is an end-to-end, integrated platform that provides a single solution for continuous integration (CI), continuous delivery (CD), value stream analytics, feature management (FM), release orchestration and continuous compliance. Users can view and analyze their software delivery process from end to end, leveraging DORA metrics to drive improvement across teams. CloudBees Platform enables organizations to simplify building and managing DevOps pipelines by minimizing the overhead involved in orchestration, integration and governance, thus maximizing value by providing visibility, traceability and observability into the flow of work.

ConnectALL [Nominated 1 time(s)]

ConnectALL’s value stream management platform has the capability to connect any and all of the tools, systems and platforms in the DevOps and software delivery value stream ecosystem. With these connections, people can see, measure, and automate their value streams empowering them to improve flow, be data driven, and deliver business value. It provides visibility to data across an organization’s DevOps pipeline activities and tools. Value Streaming Management [Nominated 1 time(s)]’s Value Streaming Management Tool unifies, secures and generates predictive insights across the software lifecycle, empowering teams, propelling innovation and enhancing business value.

ValueOps from Broadcom [Nominated 1 time(s)]

ValueOps from Broadcom delivers on the promise of VSM, by combining business- and investment-oriented product management features with advanced, operationally focused Agile planning and management capabilities. Breaking down the silos between business and IT reduces waste, optimizes the flow of value, and unites the enterprise.

By integrating the proven investment planning features in Clarity™ with the advanced Agile management capabilities in Rally® software, ValueOps from Broadcom aligns business and IT leaders. This alignment allows them to create and manage consistent value streams that span the enterprise to eliminate friction, accelerate development, and improve both quality and accountability.

ZenHub [Nominated 1 time(s)]

Over 8,000 software-focused startups, high-growth companies, agile teams, and open source projects use Zenhub’s productivity management solution to deliver software innovation faster. Zenhub helps strategic firms foster effective communication among team members, set goals, plan with greater transparency and participation, and ship software releases more predictably.

Best Observability Solution

Category 5 – Best Observability Solution

This award recognizes the best observability solution for observing and monitoring to understand the performance of individual components, systems and entire applications.


AppDynamics Cloud [Nominated 1 time(s)]

In June 2022 Cisco launched AppDynamics Cloud, a cloud-native observability platform for modern applications which are based on increasingly complex, distributed architectures and services. Designed for simplicity, usability, and intuitiveness, it empowers IT teams to deliver the exceptional digital experiences currently demanded by businesses, consumers and end users.

CodeLogic [Nominated 1 time(s)]

CodeLogic is a breakthrough technology that uniquely addresses the massive scope and complexity of today’s enterprise software and data infrastructure. It provides a clear understanding of software structure, from API and code to data, to address the hidden connections and dependencies that are humanly impossible to observe. CodeLogic delivers insights into the current state of growing software systems and the adverse impact of code changes that hinder innovation and cause failure.

Cribl Stream [Nominated 1 time(s)]

Cribl Stream is a vendor-agnostic observability pipeline that gives you the flexibility to collect, reduce, enrich, normalize, and route data from any source to any destination within your existing data infrastructure. You’ll finally achieve full control of your data, empowering you to choose how to treat your data to best support your business goals.

Get Data from Anywhere to Anywhere

CrowdStrike Falcon LogScale [Nominated 1 time(s)]

CrowdStrike Falcon LogScale is CrowdStrike’s centralized log management and observability solution. It addresses head-on the most common observability pain points: speed, scalability and cost. Built using an index-free architecture and advanced compression technology that drastically reduce hardware requirements, CrowdStrike Falcon LogScale enables developers to log everything and search an incomprehensible amount of data in seconds — delivering insight at every step of the development lifecycle.

Grafana LGTM [Nominated 1 time(s)]

Grafana LGTM (Loki for logs, Grafana for visualization, Tempo for traces, and Mimir for metrics) is an open and composable monitoring and observability stack built around the leading open source technology for dashboards and visualization. The stack can be run fully managed with Grafana Cloud or self-managed with the Grafana Enterprise Stack, both featuring the full suite of visualization plus metrics, logs, and traces as well as extensive enterprise data source plugins, dashboard management, alerting, reporting, and security.

Lumigo Platform [Nominated 1 time(s)]

Lumigo is a cloud-native observability and debugging platform built for serverless and

microservices applications. AI-driven distributed tracing and visual debugging provide critical

navigation through distributed environments. With Lumigo, users no longer have to comb

through logs and metrics to find and fix issues. Instead, Lumigo follows every request and

visualizes its path to help users quickly get around bottlenecks. Lumigo is agentless, no-code

and unlocks black box third-party services to surface issues.

New Relic CodeStream [Nominated 1 time(s)]

New Relic CodeStream effectively consolidates tools by facilitating production telemetry and collaboration in the integrated development environment (IDE). CodeStream allows developers to uncover production errors, discuss code and review pull requests within the IDE itself, reducing context switching and improving developer productivity. The new feature also syncs discussions between the IDE, Slack, Microsoft Teams and email, ensuring seamless communication cross platforms.

Nobl9 Platform [Nominated 1 time(s)]

Nobl9 is the first observability platform that accelerates software delivery by adding business context and eliminating data overload. Global Enterprises use Nobl9 to accelerate engineering, set clear software reliability goals, and ensure end-user satisfaction. Nobl9 enriches data from popular enterprise observability systems and fits into developer workflows using popular DevOps and collaboration tools like GitHub, Gitlab, Terraform, Helm, and more.

SolarWinds® Observability [Nominated 1 time(s)]

SolarWinds® Observability is a fully integrated, cloud-native software as a solution (SaaS) offering, built to deliver unified and comprehensive visibility for today’s modern, distributed, hybrid, and multi-cloud application environments. SolarWinds Observability also helps DevOps teams accelerate innovation to deliver better applications faster. Live code profiling is designed to flag and fix potential issues before code is shipped and user performance is impacted.

Splunk Observability Cloud [Nominated 1 time(s)]

Splunk Observability Cloud is the only fully integrated, turn-key package of all the tools DevOps teams need to conquer the complexity caused by modern applications and infrastructure.

It allows customers to deliver high performing applications and world-class customer experiences by eliminating operational blindspots. Users can quickly find, analyze and resolve incidents anywhere in their stack with all the answers in one place.R. One tightly integrated modern UI powered by the most advanced capabilities means reduced tool sprawl, centralized management, cost control, and one seamless and streamlined workflow for monitoring, troubleshooting, investigation and resolution.

StackState [Nominated 1 time(s)]

StackState provides a topology-powered observability platform purpose-built to improve the performance of today’s dynamic IT environments. The company’s observability platform auto-discovers and tracks component dependencies, relationships and configuration changes across your entire stack. The StackState platform correlates topology changes with telemetry and trace data from all components. The correlated data provides a complete view of your stack as it changes over time, enabling you to find and fix problems fast. The ability to track every change is due to our unique version graph database and a framework that we call the 4T® Data Model. This approach eliminates data silos and provides a unified topology.

The Dynatrace Software Intelligence Platform [Nominated 1 time(s)]

Dynatrace’s unified, end-to-end software intelligence platform delivers the deepest and broadest observability for dynamic hybrid and multicloud environments, all in context, and at massive scale. This observability extends beyond metrics, logs, and traces to also integrate user experience and security data, as well as data from the latest open source standards, such as OpenTelemetry. With the integration of Grail, Dynatrace’s new core technology, the software intelligence platform is revolutionizing data analytics and management by unifying observability, security, and business data from cloud-native and multicloud environments, retaining its context, and delivering instant, precise, and cost-efficient AI-powered answers and automation.

Category 6 – Best DevSecOps Solution

This award honors the best DevSecOps solution, which enables security to be included earlier and continuously throughout the SDLC.


Aqua Platform [Nominated 1 time(s)]

Aqua Security released the industry’s first and only end-to-end software supply chain security solution. Integrating right into developer workflows, Aqua protects the whole lifecycle of DevSecOps protecting against supply chain risk from code all the way through to runtime, across the application and underlying infrastructure. Capabilities include:

Code Scanning: Scan an organization’s code in a matter of minutes without leaving the developer workflow. Powered by Aqua Trivy Premium, the enterprise version of the popular open source universal cloud native security scanner, developers can find and remediate vulnerabilities and other risks within code to deliver safer code faster.

Arnica [Nominated 1 time(s)]

Arnica helps Security & DevSecOps teams make software supply chain security and CI/CD security effective and easy. Arnica’s behavior-based permissions management solution ensures that developers’ access is continuously evaluated and updated to least privilege without disrupting their workflow. Developers can easily recover or request permissions through collaboration tools they are already using, like Slack or Teams. The platform also evaluates developer behavior and code to detect and prevent impersonators from pushing malicious code or accessing secrets. Underpinning these security controls is an ability to easily achieve and demonstrate compliance across industry and government-dictated compliance frameworks such as SOC2, SOX, FFIEC, and more.

Bionic Application Security Posture Management [Nominated 1 time(s)]

Bionic Application Security Posture Management (ASPM) helps teams make their applications secure and resilient through a complete real-time view of their application security posture in production. Bionic ASPM does for application security what CSPM tools like Wiz, Lacework, and Prisma do for cloud infrastructure.

CloudBees Compliance [Nominated 1 time(s)]

CloudBees Compliance is the industry’s first real-time compliance and risk analysis capability and it runs continuously across the entire organization and software delivery lifecycle (SDLC), including production, comparing the digital estate against those policies and regulatory requirements. CloudBees Compliance reimagines shift left into Shift-Left, Done Right. It is a platform that runs continuously with the end to end software delivery process, using common regulatory frameworks to automate the enforcement, assessment and reporting of application compliance in real time.

CrowdStrike Cloud Security (CNAPP) [Nominated 1 time(s)]

CrowdStrike’s agent-based and agentless approach to CNAPP brings together CrowdStrike Falcon Horizon (CSPM) and CrowdStrike Falcon CWP modules via a common cloud activity dashboard to help security and DevOps teams prioritize top cloud security issues, address runtime threats and enable cloud threat hunting. The added benefit of an agent-based CWP solution is that it enables pre-runtime and runtime protection, compared to agentless-only solutions that only offer partial visibility and lack remediation capabilities.

Cycode [Nominated 1 time(s)]

By focusing on understanding the entire software lifecycle and the context of security risks, Cycode makes AppSec cheaper, faster and more effective. It makes AppSec tools easier to use, reduces friction in development workflows, and improves collaboration between the development and security functions. Instead of researching upstream causes and downstream impacts to eliminate noisy findings, teams can immediately fix the most impactful risks.

DHA Ektropy [Nominated 1 time(s)]

Ektropy is a web-based custom solution created by DHA that provides an unprecedented view between cost, contracts, personnel, and programs across the Military Health System (MHS) to ensure effective stewardship of tax payer resources for the successful modernization and standardization of information technology. It is used across DHA and by hundreds of hospitals and treatment facilities within the Army, Navy, and Air Force to bring higher agility and data discipline into decision making so that leadership can plan, prioritize, and execute resources to optimize care delivery for the 9.6M+ beneficiaries and families who serve our country. Supporting this mission requires the solution to iterate at intense velocity build speeds without compromising the security necessary to protect the platform and its data. To keep pace, the team automated SAST and SCA processes while shifting left their cybersecurity and IA engagement using sanitized and secure build environments that allow early risk identification and proactive remediation – all without data exposure.

DuploCloud [Nominated 1 time(s)]

DuploCloud is an industry pioneer for no-code/low-code cloud infrastructure automation and compliance. DuploCloud offers a unified DevSecOps automation platform that executes the enterprise-grade procedures required for today’s cloud-native applications. Designed for startups, SMBs, and companies building enterprise-grade applications or migrating to the cloud, DuploCloud’s platform acts as a digital subject matter expert across more than 500 services in AWS, Azure, GCP, Kubernetes, Security, and IoT, among others. It allows users to build applications via a simple declarative web interface or Terraform provider, avoiding the low-level infrastructure details like VPC, security groups, IAM, Jenkins setup, and more.

Enso Security [Nominated 1 time(s)]

Enso is transforming application security by empowering organizations to build, manage and scale their AppSec programs. Its Application Security Posture Management (ASPM) platform easily deploys into an organization’s environment to create an actionable, unified inventory of all application assets, their owners, security posture and associated risk. With Enso Security, AppSec teams gain the capacity to automatically manage the tools, people and processes involved in application security, enabling them to build a simplified, agile and scalable application security program without interfering with development.

Graylog Operations [Nominated 1 time(s)]

Graylog Operations, a comprehensive log management and analysis solution built on the Graylog Platform, is a critical component in the deployment of DevSecOps strategy by helping to centralize, search, and analyze event log data so resource-constrained professionals can identify performance issues faster, reduce downtime, and streamline operations – at all stages of the Software Development Life Cycle.

JFrog Advanced Security [Nominated 1 time(s)]

JFrog Advanced Security integrates the company’s DevOps and security expertise in a single, unified platform, providing the enterprise visibility and control needed to safeguard the entire software supply chain and intelligently deliver secure software at speed and scale. JFrog Advanced Security delivers holistic, binary-based security for the entire DevOps workflow, enabling organizations to identify and resolve cybersecurity threats in hours instead of weeks

Legit Security Platform [Nominated 1 time(s)]

The Legit Security Platform secures your software supply chains by scanning development pipelines for gaps and leaks, securing SDLC infrastructure and systems within those pipelines, and monitoring the security hygiene of people and their code as they operate within it. The Legit Security Platform provides a foundation of complete visibility across your SDLC secureing businesses with a single pane of glass across the software supply chain, providing real-time visibility, and identifies security issues that reduces organizational risk. We improve security effectiveness by allowing customers to address security issues earlier in the SDLC, along with deeper contextual info and automation to improve speed and productivity.

NowSecure Platform [Nominated 1 time(s)]

The NowSecure Platform centralizes and streamlines modern mobile app security and privacy testing within one, easy-to-use portal that integrates directly with leading DevSecOps tools. Mobile app developers, QA, and security teams utilize the NowSecure platform to uncover security flaws, privacy issues, compliance gaps, and appstore blockers at the pace mobile DevOps requires. NowSecure Platform not only finds issues fast, it helps devs fix issues fast through embedded remediation including evidence, details about how to fix it, code examples and links to Android and iOS documentation – all directly fed into their workflow via ticketing systems they use every day.

Opsera Continuous Orchestration Platform [Nominated 1 time(s)]

The Opsera Continuous Orchestration Platform™ makes it easy to build resilient software by automating security best practices into every stage of your software development lifecycles. Opsera security orchestration breaks down the silos between existing processes and teams to continuously protect your source code and safeguard release management.

ReversingLabs [Nominated 1 time(s)]

ReversingLabs solution offers development and SOC teams the only software supply chain security platform that automates the assessment of third-party or internally developed software for tampering, open-source attacks, and 3rd party risks. In doing so, it ensures only secure software is deployed across your enterprise and customers. Allowing SOC Teams to get the visibility necessary to provide that last line of defense before the software is deployed into production environments—when new threats are uncovered, ReversingLabs provides deep software threat intelligence, which accelerates response and isolation.

Secure Code Warrior Learning Platform [Nominated 1 time(s)]

The Secure Code Warrior Learning Platform helps developers at all stages of their secure coding journey to progressively upskill their secure coding skills. A proven preventative, tiered approach to learning combines defensive and offensive, framework-specific coding challenges and hands-on missions to rapidly build an organization’s security posture.

It is known that the same 10 software vulnerabilities have caused more security breaches in the last 20+ years than any others. And yet, many businesses will still opt for the post-scan, post-breach, post-event remediation approach; muddling through the human and business ramifications of it all. Secure Code Warrior has pioneered a people-powered approach that uncovers security-aware developers in every team.

StrongDM™ People-First Access Platform [Nominated 1 time(s)]

The StrongDM™ People-First Access platform combines authentication, authorization, networking and observability capabilities all within a single platform. StrongDM seeks to do one thing: make it easy for the technical employee to securely access the infrastructure they need. Companies can better keep track of who has access to sensitive information and softwares, and IT teams no longer require cheat sheets that harm company security for their credentials. StrongDM customers enjoy easy and secure infrastructure access regardless of tech stack or environment. Trusted from fast-growing businesses StrongDM delivers the fast, intuitive, and auditable access required for DevOps and modern security and compliance.

The Dynatrace Software Intelligence Platform [Nominated 1 time(s)]

The Dynatrace Software Intelligence Platform combines broad and deep observability and continuous runtime application security with the most advanced AIOps to provide answers and intelligent automation from data at enormous scale. This enables innovators to modernize and automate cloud operations, deliver software faster and more securely, and ensure flawless digital experiences.

ThreatModeler Platform [Nominated 1 time(s)]

ThreatModeler secures highly sensitive, regulated, complex, specialized and global environments. ThreatModeler saves organizations vast amounts of time and enables collaboration so people can work on DevOps with security built in. ThreatModeler’s Automated Threat Intelligence Framework saves businesses valuable time with automatic threat data in real-time. ThreatModeler’s Automated Threat Intelligence Framework provides an effective solution to manual processes by automatically updating threat data in real-time for effective decision making.

Veracode Continuous Software Security Platform [Nominated 1 time(s)]

Veracode’s Continuous Software Security Platform embeds application security into the software development lifecycle (SDLC). The  comprehensive software security platform provides flexible policy management, a holistic assessment of software risk, and integrated remediation guidance. The platform runs continuous scans of applications in use by an organization using static, dynamic, and software composition engines and provides an ongoing feedback loop from customers, allowing the platform to learn from every scan and make each scan more accurate than the last. The single-pane vantage point offers powerful updated tools while simplifying the complexity of managing multiple solutions and empowering organizations to deliver secure software at scale and with unmatched speed.

Vulcan Enterprise [Nominated 1 time(s)]

Vulcan Enterprise helps tame the challenge of vulnerability sprawl, alleviates the logistical impossibility of staying ahead of threat actors’ favorite attack vectors, and makes the best use of short-staffed cybersecurity teams. The Vulcan Cyber platform integrates with DevSecOps teams existing toolsets and empowers them through vulnerability and asset data correlation, risk-based prioritization, remediation intelligence, remediation campaign orchestration, task assignment automation, and vulnerability mitigation performance tracking and reporting. The Vulcan Cyber platform automates and orchestrates vulnerability mitigation campaigns and integrates with an organization’s existing tools to make vulnerable cloud-native application environments a thing of the past.

Best Testing Service

Category 7 – Best Testing Service/Tool

Testing is a mainstay in the DevOps toolchain, and this award recognizes the best testing tool for ensuring the quality of code.


Applause [Nominated 1 time(s)]

Applause is a world leader in testing and digital quality. For brands that capture and keep customers through digital interactions, we are the only partner that can deliver authentic, real-world feedback on their quality.  Applause’s disruptive approach to testing and quality harnesses the power of the Applause platform and leverages a global uTest community of independent digital experts worldwide. Unlike traditional testing companies and models (including lab-based and offshoring), Applause responds with the speed, scale and flexibility that digital-focused brands require and expect, and provides aggregated, actionable insight that can directly inform go/no go release decisions, helping development teams build better software and release it with confidence.

BMC Compuware Topaz for Total Test solution [Nominated 1 time(s)]

BMC Compuware Topaz for Total Test solution allows mainframe development teams to find and fix bugs earlier through shift-left automated testing. This increases the effectiveness and coverage of software testing, leading to fewer bottlenecks in the software delivery pipeline, lower failure rates, and higher quality software.

Cobalt’s Agile Pentesting [Nominated 1 time(s)]

Cobalt’s Agile Pentesting allows organizations to proactively identify and address vulnerabilities at a faster, more frequent rate in order to minimize risk. Agile Pentesting enables modern DevSecOps teams to both test and secure their code faster, allowing teams to move quickly without sacrificing security in the SDLC and accelerate their DevOps journeys while aligning with their CI/CD pipelines. This new PtaaS offering comes at a vital time for devops teams that are suffering from talent shortages and an evolving threat landscape. Fast, incremental pentesting saves time, money, and keeps valuable data safe.

Delphix DevOps Data Platform [Nominated 1 time(s)]

The Delphix API-first TDM platform, transforms application delivery across the multi-cloud, while protecting data privacy and security.

Headquartered in Silicon Valley and led by founder and CEO Jedidiah Yueh, Delphix empowers customers including 25 of the top 100 global companies with 10x faster releases, 10x fewer defects and 100% masked data. Customers using the Delphix DevOps Data platform realize a 40% average increase in development productivity, an average 5-year ROI of 560% and $15M in revenues attributable to faster data, according to IDC.

Deque Platform [Nominated 1 time(s)]

Successful DevOps requires agile processes with minimum friction and maximum flow. Deque’s axe tool suite automates the majority of accessibility testing incorporating seamlessly into existing DevOps toolchains and processes. Users can integrate accessibility testing into CI/CD in 15 minutes or less. Our tools are modular so they can be implemented in manageable steps: Address the area with the highest need and expand in any direction. Users can get started with no accessibility expertise with just-in-time learning as they go. Continuous Testing [Nominated 1 time(s)] Continuous Testing is used by enterprises including CVS, Discover, Fidelity and Charles Schwab to help teams test at scale while increasing test coverage and making data-driven decisions to deliver high-quality, error-free web and mobile apps. The solution enables faster software releases by providing continuous tests for functional, performance and accessibility scenarios; testing on a matrix of devices and browsers with a variety of manufacturers operating systems and execution of all testing from the same tool within the context of functional testing.

Katalon Platform [Nominated 1 time(s)]

Katalon offers a modern and comprehensive software quality management platform that enables teams of any size to easily and efficiently test, launch, and optimize apps, products, and software. It solves the problem of not getting products to market fast enough as businesses spend most of their efforts on integration and maintenance, leaving little time for quality testing.

In a single platform, Katalon enables development and quality teams to address all steps in the continuous testing lifecycle with one user interface and a unified data model. As software companies face challenges recruiting and retaining talent, Katalon offers an improved experience for developers and testers that maximizes their talent and efforts.

LaunchDarkly [Nominated 1 time(s)]

LaunchDarkly’s feature management platform solves the “last mile” problem of software delivery — helping organizations test innovations collaboratively, standardize safe feature releases and software updates, and accelerate application modernization and cloud migrations. With it being nearly impossible to replicate real-world conditions when staging environments, testing in production is a logical and natural extension of the QA process.

Leapwork Platform [Nominated 1 time(s)]

Leapwork is a visual, no-code test automation platform. It uses a flowchart model to provide an intuitive, visual way to automate tests and processes. Intelligent building blocks handle the logic, providing a graphical overview of each step that empowers non-technical users to build tests. With Leapwork, automation can be built, maintained, and scaled across tech stacks, projects and teams by non-coders, resulting in improved collaboration, fewer silos, and faster time to value.

Best Kubernetes Platform

Category 8 – Best Kubernetes Platform/Service

The adoption of containers has paved the way for an entire solutions ecosystem supporting and enhancing the container technology. Kubernetes is perhaps the most widely recognized and utilized tool in the space. There are many platforms and services that offer Kubernetes based solutions. This award honors the best Kubernetes platform/service available.


Gloo Platform [Nominated 1 time(s)]

The Gloo Platform integrates API Gateway, Service Mesh and Networking technologies into a unified application networking platform. Gloo Platform is focused on four core use-cases to enable companies to deploy, operate and secure their cloud-native applications and APIs.

Kalix Platform [Nominated 1 time(s)]

Kalix (@kalix_io) is a Platform-as-a-Service developed by Lightbend (@lightbend). Kalix is the first and only platform that fully manages the inherent complexity of Kubernetes while simultaneously maximizing its performance. Kalix is designed for developers using any language (from Java to Python) to focus solely on the app’s business logic, while Kalix handles any and all ops duties, including databases. This enables developers to  easily build large-scale, high performance microservices and APIs with no operations required. The most admired brands around the globe use Lightbend product offerings to transform their businesses and engage billions of users every day through software that is changing the world.

Kasten by Veeam® [Nominated 1 time(s)]

The Kasten by Veeam K10 solution helps enterprises overcome Day 2 data management challenges to confidently run applications on Kubernetes. Kasten K10 integrates with relational and NoSQL databases, all major Kubernetes distributions, and runs in any cloud to maximize freedom of choice. It provides enterprise operations teams with an easy-to-use, scalable, and secure system for backup/restore, disaster recovery, and application mobility with unparalleled operational simplicity.

Palette Edge Platform [Nominated 1 time(s)]

The Palette Edge platform, was first announced in March 2022 and shortly thereafter earned Spectro Cloud recognition as a 2022 Gartner Cool Vendor in Edge Computing. Palette Edge helps IT teams redefine how cost-efficiently they can deploy and manage edge K8s clusters at scale: this includes locations with small form factor devices, no on-site IT skills and marginal connectivity. Palette Edge delivers remote troubleshooting, zero-downtime rolling upgrades and patch management, even in single-server edge deployments. This can be accomplished thanks to the platform’s unique A/B OS partition, multi-node failsafe design and support for both ARM and x86 architectures, including Intel’s Trusted Platform Module (TPM).

Rafay Kubernetes Operation Platform [Nominated 1 time(s)]

Rafay’s Kubernetes Operation Platform (KOP) is the industry’s first and only offering purpose-built for platform teams. Rafay’s built-in automation and governance helps simplify and reduce the time it takes to deliver Kubernetes services and enterprise-wide standards that empower developers to innovate faster and focus on what they do best – shipping new, innovative software.

Red Hat OpenShift [Nominated 1 time(s)]

Red Hat OpenShift is a container orchestration platform that builds on Kubernetes’ rock-solid foundation—paying full respect to the open source community that continues to nurture the project. The downstream OpenShift project extends Kubernetes to make it suitable for enterprise operations teams. Indeed, Red Hat OpenShift focuses on an enterprise user experience. It’s designed to provide everything a full-scale company may need to orchestrate containers—including enhanced security options and full-time professional support—and it integrates directly into enterprises’ custom IT stacks.

StormForge Optimize Live [Nominated 1 time(s)]

StormForge Optimize Live, released in February of 2022, uses machine learning to analyze observability data and make recommendations that make applications run more efficiently without sacrificing application performance or reliability.

Best Cloud Native Security Solution

Category 9 – Best Cloud Native Security Solution/Service

The cloud-native movement has been steadily gaining ground as more organizations recognize the benefits of building applications and services specifically for cloud-native environments. This award recognizes the best solutions and services considered cloud-native.


Aqua Platform [Nominated 1 time(s)]

Aqua stops cloud native attacks with the industry’s first unified cloud native application protection platform (CNAPP), featuring intelligence-driven cloud native detection and response capabilities. Aqua secures customers’ cloud native assets from day one and protects them in real time.No other solution can stop attacks in progress. Aqua protects the entire application lifecycle, including the code, and is the only solution that is fully integrated with software supply chain security capabilities, protecting against supply chain risk from code all the way through to runtime, across the application and underlying infrastructure. Aqua ensures that prevention is automated and response is immediate, and it guarantees that protection with a $1M warranty.

Axiomatics Platform [Nominated 1 time(s)]

Axiomatics provides an enterprise-ready, dynamic authorization strategy for authoring, managing, and auditing access control policies. Made for today’s Zero Trust challenges. With the Axiomatics solution, Information Access Management (IAM) teams establish policy guardrails, while enabling developers, DevOps and DevSecOps teams as well as application owners to author, test, deploy, and analyze policies. Organizations on the journey toward an Orchestrated Authorization approach do so with the goal of implementing an authorization vision that can support every application and resource in their technology environment.

Bionic Application Security Posture Management [Nominated 1 time(s)]

Bionic Application Security Posture Management (ASPM) helps teams make their applications secure and resilient through a complete real-time view of their application security posture in production. Bionic ASPM does for applications what CSPM (cloud security posture management) tools like Wiz, Lacework, and Prisma do for cloud infrastructure. In just a few clicks, teams can drill down to see the details of each critical risk and service along with auto-ticketing to provide immediate feedback to engineering teams, so they can remediate risk efficiently.

CrowdStrike Falcon Platform [Nominated 1 time(s)]

The CrowdStrike Falcon platform is helping enterprises improve operational and security efficiency, while eliminating redundant cybersecurity tools. The platform was purpose-built in the cloud with a single-agent architecture to provide unmatched scalability, superior protection and performance, reduced complexity and immediate time-to-value. The lightweight cloud-native architecture of the Falcon agent ensures that customers benefit from the latest versions without the expensive management overheads associated with most security vendor products and push out multiple updates and upgrades as needed, ensuring customers can stay ahead of evolving threats without any disruption or interruptions.

Deepfactor [Nominated 1 time(s)]

Designed from the ground up to secure cloud native applications, Deepfactor is a developer security platform that enables engineering teams to quickly discover and resolve security vulnerabilities, supply chain risks, and compliance violations early in development and testing.

Ermetic [Nominated 1 time(s)]

Ermetic provides a single platform where Security, DevOps, DevSecOps and IAM stakeholders can work together to govern access, improve cloud security posture and achieve least privilege access, without impacting application continuity or speed to market. Its shift left capabilities, including Just-in-Time (JIT) access and IaC scanning, help democratize security and cover the full lifecycle from development to deployment, enhancing organizational security efforts and cross-team collaboration.

Legit Security Platform [Nominated 1 time(s)]

The Legit Security Platform supports both cloud-native and on premises development and protects an organization’s software supply chain environment from attack.

The Legit Security Platform provides a foundation of complete visibility across your SDLC including visibility of other security controls like SAST and SCA.

It secures businesses with a single pane of glass across the software supply chain, providing real-time visibility, and identifies security issues that reduces organizational risk. We improve security effectiveness by allowing customers to address security issues earlier in the SDLC, along with deeper contextual info and automation to improve speed and productivity.

Orca Platform [Nominated 1 time(s)]

Orca was the first-to-market with an agentless cloud security solution (its patented SideScanning technology) that instantly offers 100% coverage and visibility into cloud workloads—whether VMs, serverless or containers—without the performance impact, security gaps and operational costs of agents. The Orca platform also pioneered combining CSPM, CWPP and CIEM capabilities in a single solution, defining the CNAPP category. This Unified Data Model not only reduces cloud security complexity, but also enables Orca to leverage broad contextual intelligence to prioritize alerts and recognize when seemingly unrelated issues are combined to create dangerous attack paths.

Red Hat Advanced Cluster Security [Nominated 1 time(s)]

Red Hat Advanced Cluster Security (ACS)  for Kubernetes is a Kubernetes-native security platform that enables organizations to more securely build, deploy and run cloud-native applications anywhere, as well as ensure that the underlying Kubernetes infrastructure remains hardened and protected.

Slim Platform [Nominated 1 time(s)]

Knowing what’s in your container is critical to securing your software supply chain. The Slim platform lifts the veil on container internals so you can analyze, optimize, and compare changes before deploying your cloud-native apps.

ThreatModeler Platform [Nominated 1 time(s)]

CloudModeler is ThreatModelers flagship product built for securing cloud infrastructure from design to deployment. CloudModeler is built on IaC-Assist, the latest plug-in that enables organizations to reduce their threat drift from code to cloud by reducing the manual labor required to scan and remediate security threats. CloudModeler, improves developer productivity by identifying the design flaw or vulnerability, explaining the issue represented, and providing just-in-time contextual guidance for revision.

TrilioVault for Kubernetes [Nominated 1 time(s)]

TrilioVault for Kubernetes (TVK) is a cloud-native data protection platform that supports applications in any environment. Whether on-prem, in the cloud, or at the edge, TVK protects your entire Kubernetes application, including data, metadata, and all associated objects, allowing you to restore from any point in time with just one click. With TVK, you can easily backup and recover your applications, recover from ransomware attacks, meet DR protocols, and migrate apps across cloud infra.

Category 10 – Best DevOps for Mainframe Solution

Mainframes are far from being the dinosaur of the IT world, and a variety of solutions are available for enabling DevOps practices in mainframe environments and hybrid environments. This award recognizes the best of them.


Open Mainframe Project Zowe [Nominated 1 time(s)]

Zowe is the most exciting innovation in the mainframe space in a generation.  It’s an open source framework that bridges DevOps and modern ways of working to the mainframe.

While mainframe processes have experienced incremental improvements over the years, DevOps has reset expectations for software velocity and quality.  The mainframe community now broadly accepts the value of DevOps and Zowe is viewed as the gateway. While there was some dispute about proprietary solutions or open source, the direction is now clear.  Rather than continuing to be constrained by proprietary options, the mainframe community now truly understands the value of the open source solutions.

Liquibase Enterprise [Nominated 1 time(s)]

Liquibase has brought its enterprise database change management platform. Liquibase Enterprise, and database DevOps to Db2 for z/OS. Liquibase allows development teams and organizations around the world to standardize and streamline their database change process within their existing CI/CD toolchain and has extended this to the world’s central data repositories running on mainframes.Liquibase Enterprise provides enterprise reliability and security for mission-critical databases in high transaction environments for highly regulated industries. Liquibase delivers developer and DBA productivity, governance and security, deployment agility, and mission-critical reliability for leading companies in banking, insurance, healthcare, and more.

The BMC Compuware Topaz Solution [Nominated 1 time(s)]

The BMC Compuware Topaz Solution provides a single user interface (UI) that both mainframe and non-mainframe developers can easily use, regardless of their expertise or skill set. We integrate the mainframe into the DevOps toolchain and enable virtualized and non-virtualized testing and automated build-test-deploy processes for higher, faster quality code. We empower developers to make changes to code, test, debug and performance tune, all in one easy to use tool.

Category 11 – Best DevOps for DataOps/Database Solution

Databases often have been left out of the DevOps conversation, but that is changing. This award recognizes the best database related solution for DevOps and DataOps.


Apollo GraphQL [Nominated 1 time(s)]

Apollo GraphQL’s supergraph architecture provides a flexible framework for all of a company’s data, microservices, and digital capabilities, empowering DevOps and DataOps teams alike to make the most efficient, effective and unimpeachable use of data from stakeholders across the business.

The GraphQL-based supergraph is an essential new layer in the stack and is being effectively leveraged by companies including Priceline, Expedia Group, Square and Zillow, among many others. The supergraph integrates organizations’ data, services and business logic and transforms them into building blocks that can be arranged and rearranged to quickly, efficiently and intelligently meet–and anticipate–customer demand.

BMC AMI DevOps for Db2 [Nominated 1 time(s)]

BMC AMI DevOps for Db2 integrates with application development orchestration tools to automatically capture database changes and communicate them to the database administrator (DBA). This not only enforces DevOps best practices but also speeds up application changes by automatically integrating mainframe database changes into the agile application development process. BMC AMI DevOps for Db2 integrates with application development orchestration tools, such as Jenkins and IBM® UrbanCode Deploy, to automatically capture and propagate database changes across Db2 environments, while enforcing DevOps best practices.

Broadcom Database Management Solutions for Db2 for z/OS [Nominated 1 time(s)]

Broadcom’s DevOps for Db2 for z/OS solution allows teams to do just that. The Zowe CLI is a foundation for script-based automation, enabling application developers to use their CLI to transparently retrieve mainframe-based Db2 object definitions (DDL) from the production environment, provision a replica of that environment to their sandbox, and alter, check, and push production change requests back into their sandbox. This allows developers to completely build and test their database changes without requiring the intervention of a DBA. DBAs still retain ultimate control and must validate all changes, but can do so much more quickly and efficiently.

DataStax’s Astra DB [Nominated 1 time(s)]

DataStax’s Astra DB is the best solution in the database and DataOps space because it simplifies application development on the world’s most scalable database, Apache Cassandra. The cloud-native platform reduces deployment time from weeks to minutes, and delivers an unprecedented combination of serverless, pay-as-you-go pricing with the freedom and agility of multi-cloud and open source. This provides significant cost-savings and improved efficiency for end-users working with Cassandra. Astra DB empowers organizations to deliver engaging, interactive digital experiences for customers anywhere around the globe.

Decodable [Nominated 1 time(s)]

Decodable is a real-time data stream processing platform. Serverless and powered by SQL, it makes real-time stream processing so easy it becomes the default choice for every developer, data engineer, and data scientist, on any project. Decodable provides the simplest way to move data anywhere, with real-time speed, transformed to match the needs of its destination. The platform provides a fully managed stream processing service so developers can be up and running in minutes, not months.

EDB BigAnimal [Nominated 1 time(s)]

EDB BigAnimal™, EDB’s fully managed Postgres cloud database as a service (DBaaS), gives developers, IT leaders and others an enterprise Postgres solution combined with expert support and the freedom to choose where they deploy in the cloud.

EDB BigAnimal™ was built in 2021 as a direct response to challenges with the existing cloud Postgres offerings. Large enterprises demand a certain level of transparency and performance to run their mission-critical applications in the cloud. Unfortunately, enterprises seeking greater flexibility with their data through traditional cloud service providers can often become captive to a single company, preventing hybrid and multi-cloud solutions and stunting their ability to scale.

Liquibase [Nominated 1 time(s)]

Liquibase brings DevOps to the database. With support for more than 50 databases, including relational, NoSQL, and graph databases, Liquibase allows development teams and organizations worldwide to standardize and streamline their database change process within their existing CI/CD toolchain.

Liquibase delivers developer and DBA productivity, database governance and security, deployment agility and reliability, and cloud scalability to the leading companies in banking, insurance, healthcare, retail, technology, and more.

Percona Platform [Nominated 1 time(s)]

Percona is on a mission to help businesses make databases and applications run better through a unique combination of expertise and open source software. Percona delivers enterprise-class products, support and services for a range of open source databases including MySQL®, MariaDB®, MongoDB®, and PostgreSQL across traditional deployments, cloud-based platforms and hybrid IT environments. Percona works with numerous global brands across many industries creating a unified experience to monitor, manage, secure, and optimize database environments on any infrastructure.

Redis Enterprise [Nominated 1 time(s)]

Redis Enterprise’s unparalleled 99.999% uptime, at any scale, anywhere, leads the database market and is designed to serve workloads across on-premises, the public cloud, hybrid, and multi-cloud deployments. With flexible deployment options, virtually unlimited linear scalability and high performance, global distribution (with Active-Active geo-distribution), and multi-tenant architecture. Redis Enterprise enables developers and operators to deploy and manage their Redis databases just like they do application code. Changes are recognized as just another code deployment to be managed, tested, automated, and improved with the same kind of seamless, robust, reliable methodologies applied to application code.

TDengine™ 3.0 [Nominated 1 time(s)]

TDengine combines a database with caching, stream processing, and data subscription as a complete, purpose-built solution for time-series data in IoT applications. TDengine is the only time-series database to solve the high cardinality issue with a unique architecture that supports billions of data points while still out-performing general purpose and legacy time-series databases in data ingestion, querying, and data compression. In less than 3 years, open source time-series database TDengine has already garnered more than 19,400 stars on GitHub, 4,400 forks and over 156,000 instances in more than 50 countries worldwide.

TigerGraph Machine Learning Workbench [Nominated 1 time(s)]

TigerGraph’s new Machine Learning Workbench provides deeper, more impactful insights and better predictions with improved ML model accuracy and shortened development cycles.

TigerGraph’s Machine Learning Workbench is a Python-based framework that accelerates the development of graph-enhanced machine learning and leverages the added insight from connected data and graph features for better predictions.

Category 12 – Best New DevOps Tool/Service Provider

This award recognizes the best new service provider or tool that has brought innovation to the DevOps space in the past year. (less than 24 months old)


ArmorCode AppSecOps Platform [Nominated 1 time(s)]

The ArmorCode AppSecOps Platform provides AppSec teams with the visibility, actionable insight, automation, and integration needed to build, deliver, and scale an effective and efficient AppSec program across the entire organization, as well as the DevSecOps pipeline.  ArmorCode is the only platform that enables organizations to scale Application Security Posture, Compliance and Vulnerability Management, and DevSecOps Workflow Automation all from a single platform.

Astra Streaming [Nominated 1 time(s)]

Astra Streaming is an advanced, fully-managed messaging and event streaming service built on Apache Pulsar. Featuring built-in API-level support for Kafka, RabbitMQ and Java Message Service (JMS), Astra Streaming is a ground-breaking innovation in the DevOps space that makes it easy for enterprises to get real-time value from all their data-in-motion. Delivered as a fully-managed SaaS with boundless scale, the platform offers massive throughput and low latency. Astra Streaming is the simplest way for businesses to modernize their event driven architecture and turbo charge their data-in-motion strategy.

Bionic Application Security Posture Management [Nominated 1 time(s)]

Bionic is an Application Security Posture Management (ASPM) platform that provides unique visibility into the security, data privacy, and operational risk of applications running at scale in production. In just a few clicks, you can drill down to see the details of each critical risk in the context of the service, the deployment, or the business application. Bionic’s auto-ticketing provides immediate feedback to DevOps and engineering, so they can remediate risk efficiently. Bionic integrates with all of your existing clouds, apps, and DevOps tools in minutes, so you can clearly contextualize and understand how cloud security risks now impact your business applications.

BMC Compuware zAdviser DORA Metrics dashboard [Nominated 1 time(s)]

BMC Software announced the availability of its new DORA Metrics dashboard within BMC Compuware zAdviser. This analytics tool enables the continuous measurement of DevOps key performance indicators (KPIs) for the mainframe. As part of the dashboard, users can benchmark their performance against peers in their industry through anonymous data aggregation with BMC Compuware zAdviser. Additionally, the solution uses machine learning (ML) to correlate developer behavior and KPIs and suggest optimizations.

CodeSec by Contrast Security [Nominated 1 time(s)]

Contrast’s CodeSec,  ( brings the fastest and most accurate scanner on the market right to developers for free. Developers can start scanning code, serverless environments and open source software (OSS) with ease. Contrast’s demand-driven analysis allows CodeSec to deliver 10x faster and more accurate scanning results for code and serverless applications right to the developer’s laptop. In only three clicks, users can download, authenticate (with an existing GitHub or Google Account), and start scanning with ease.

Fiberplane [Nominated 1 time(s)]

Modern CI/CD workflow, microservices and distributed teams and systems all require a new explorative form factor for infrastructure debugging, one that works real-time and takes into account the changing nature of teams. Fiberplane allows users to integrate data sources from their observability stack to get to the heart of problems quickly and collaboratively. Fiberplane offers collaborative investigation and documentation tools with real data, all hosted within a technical open source notebook format.

Firefly CloudOps [Nominated 1 time(s)]

Firefly provides a purpose-built cloud asset management solution that enables DevOps teams to manage their entire cloud infrastructure as IaC, using the same Git repo and DevOps processes and governance as they use for application software. Firefly continuously catalogs their entire cloud footprint across multi-cloud, multi-accounts and Kubernetes deployments to understand which parts of it are codified as IaC, and what is unmanaged or misconfigured. Unmanaged assets can be automatically codified as Terraform, Helm, etc, saving countless hours of engineering time.

GitKraken CI/CD for Jira [Nominated 1 time(s)]

CI/CD for Jira allows teams to view build and deployment information from your CI/CD pipelines directly in Jira. This application is a free extension for Git Integration for Jira by GitKraken. CI/CD for Jira is SOC2 certified, is part of the Atlassian Marketplace Bug Bounty Program, and has completed the Security Self-Assessment Program.  Users can also unlock additional triggers for Jira automation and search parameters for JQL queries.

Inigo Platform [Nominated 1 time(s)]

Inigo is a new GraphQL API management platform for DevOps/DevSecOps teams that offers a unique one-stop-shop for GraphQL API security, analytics, and developer productivity at scale. Inigo enables developers to avoid resource-heavy in-house tools that are costly to maintain and prone to errors. Inigo offers the absolute best developer experience around GraphQL APIs, so developer teams can scale with confidence and efficiency.

Jellyfish Benchmarks [Nominated 1 time(s)]

Jellyfish Benchmarks is the industry’s first comparative benchmarking tool for engineering leaders. With the industry’s only in-app benchmarking capability, Jellyfish customers can now understand how they stack up against peers on a percentile basis across numerous metrics on the organization, division, group or team level. Jellyfish Benchmarks also provide data-driven insights with which to inform and influence non-engineering executives, and thus drive better strategic decisions and more closely align engineering with the wider business. The new benchmarking tool enhances the Jellyfish platform’s current capabilities to measure engineering alignment against strategic business priorities and the performance and operations of engineering teams.

Rezilion Platform [Nominated 1 time(s)]

Rezilion is an automated DevSecOps platform that allows organizations to effortlessly manage and eliminate software vulnerabilities from development to production and across cloud workloads, applications, and IoT devices. Rezilion’s unified software attack surface management platform is purpose-built to manage software vulnerabilities end-to-end across the entire technology stack.

vFunction Platform [Nominated 1 time(s)]

vFunction’s application modernization platform is designed for IT organizations — from the CIOs seeking to accelerate innovation to the architects and developers who manage and maintain applications —  to rapidly and incrementally modernize their legacy application portfolios. Adopted by Microsoft, AWS and HPE, vFunction’s award-winning, patented technology is the first and only AI for App Modernization platform that alculates the complexity, risk, and technical debt associated with your applications, so you can accurately understand and present the business case around modernizing. Then it automates the design and transformation of the monolithic architecture into microservices — at a cost 3x less, a rate 25x faster with 10x less risk than doing it manually.