• August 2, 2022
  • Press Release

Nucleus Security Named in Two 2022 Gartner Hype Cycle Reports

Sarasota, Florida – Nucleus Security, a leader in risk-based vulnerability management and process automation, is pleased to be included as a Sample Vendor in two recent Gartner Hype Cycles: Hype Cycle for Security Operations, 2022 and Hype Cycle for Application Security, 2022. Gartner Hype Cycles provide a graphic representation of the maturity and adoption of technologies and applications, and how they are potentially relevant to solving real business problems and exploiting new opportunities.1

“The Nucleus platform reduces automation work effort by 85-95% in most cases compared with competitive products. The result is a solution that allows practitioners to accelerate their vulnerability prioritization and triage process using automation at scale.”

The Gartner Hype Cycle for Security Operations “aims to help security and risk management leaders strategize and deliver effective response and remediation.” Nucleus Security is named as a sample vendor under the vulnerability prioritization technology (VPT) category, which has a benefit rating of high and is defined as tools that “streamline the vulnerability analysis and remediation/mitigation process by focusing efforts on identifying and prioritizing the vulnerabilities that pose the greatest risks to the organization.”2

According to Gartner, “VPT can provide savings in terms of operational full-time employee (FTE) costs due to better prioritization, as well as reduce the organization’s attack surface, preventing the vulnerabilities from being exploited. This is especially beneficial for organizations looking to retain talent by focusing them on more value-added activities.”2

In the Hype Cycle for Application Security, Nucleus Security is named under the application security orchestration and correlation (ASOC) category, which has a benefit rating of transformational and is defined as tools that “ease software vulnerability testing and remediation by automating workflows and processing findings. They automate security testing within and across the development life cycle, ingesting data from multiple sources; and correlate and analyze findings to centralize efforts for easier interpretation, triage and remediation, acting as a management and orchestration layer and control between application development and security testing.”3

Gartner reports that, “Gartner clients struggle with prioritizing vulnerability remediation and mitigation efforts during and after development, given the growing volume of information provided by application security testing tools. ASOC tools address this challenge by ingesting information from multiple testing sources, correlating results and increasingly aiding in the automation of prioritization and triage tasks. This helps to identify those vulnerabilities posing the greatest risk to an application, enabling development and security teams to streamline remediation efforts.”3

“Nucleus Security is extremely proud to be mentioned in not one, but two 2022 Gartner Hype Cycle reports. We are consistently innovating the Nucleus platform to be flexible and versatile, and we believe that being recognized as a sample vendor offering significant benefits in two key markets serves as validation of our work,” said Steve Carter, CEO of Nucleus Security. “The Nucleus platform reduces automation work effort by 85-95% in most cases compared with competitive products. The result is a solution that allows practitioners to accelerate their vulnerability prioritization and triage process using automation at scale.”

The Nucleus platform provides unique features around vulnerability data organization that are particularly useful for large and complex enterprise environments. Nucleus Security will be at the 2022 Black Hat conference from August 9-11. Visit their team at Booth 44 in the Innovation City to learn more about how Nucleus Security became one of the top 14 fastest growing cybersecurity companies in Q2 2022, according to IT-Harvest.

Gartner Disclaimer
Gartner® does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner® research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner® disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

GARTNER and HYPE CYCLE are a registered trademarks and service marks of Gartner, Inc. and/or its affiliates in the U.S. and internationally and are used herein with permission.

About Nucleus Security
Nucleus Security is a Risk-Based Vulnerability Management (RBVM) solution that automates time-consuming vulnerability management processes, enabling large and complex enterprises to scale their vulnerability management program and remediate vulnerabilities 10x faster. Supporting nearly 100 integrations, Nucleus Security creates a unified vulnerability inventory, fully enriched with the world’s leading threat intelligence, and provides the automation engine needed to eliminate the stovepipes of chaos found in large enterprise vulnerability management programs today. Harness the power of a unified vulnerability solution today at https://nucleussec.com/trial/.

Gartner Hype Cycle Research Methodology
2 Gartner, “Hype Cycle for Security Operations, 2022”, Andrew Davis, 5 July 2022,
3 Gartner®, Hype Cycle™ for Application Security, 2022, Joerg Fritsch, 11 July 2022