Companies that use Github Advanced Security

Analyzed and validated by Henley Wing Chiu ยท Updated
All โ€บ application security testing โ€บ Github Advanced Security

Github Advanced Security We detected 2,878 companies using Github Advanced Security. The most common industry is Software Development (33%) and the most common company size is 1,001-5,000 employees (30%). We find new customers by discovering URLs with known URL patterns through web crawling or modifications to subprocessor lists. Note: We track companies that are using Github Advanced Security in a public Github repo. We also track organizations that use Github here

โฑ๏ธ Data is delayed by 1 month. To show real-time data, sign up for a free trial or login
Company Employees Industry Country Region Usage Start Date
Sonos, Inc. 1,001โ€“5,000 Computers and Electronics Manufacturing
United States
North America 2026-06-06
Child Mind Institute 201โ€“500 Mental Health Care
United States
North America 2026-06-05
Siemens 10,001+ Automation Machinery Manufacturing
Germany
Europe
JPMorganChase 10,001+ Financial Services
United States
North America
Oracle 10,001+ IT Services and IT Consulting
United States
North America
UK Civil Service 10,001+ Government Administration
United Kingdom
Europe
HSBC 10,001+ Financial Services
United Kingdom
Europe
Target 10,001+ Retail
United States
North America
Government of Canada 10,001+ Government Administration N/A North America
SAP 10,001+ Software Development
Germany
Europe
CVS Health 10,001+ Hospitals and Health Care
United States
North America
Ericsson 10,001+ Telecommunications
Sweden
Europe
Nokia 10,001+ Telecommunications
Finland
Europe
RBC 10,001+ Banking
Canada
North America
Morgan Stanley 10,001+ Financial Services
United States
North America
Cisco 10,001+ Software Development
United States
North America
Tencent 10,001+ Software Development
China
Asia
Showing 1-20

Market Insights

๐Ÿข Top Industries

Software Development 111 (33%)
IT Services and IT Consulting 27 (8%)
Financial Services 24 (7%)
Government Administration 24 (7%)
Computer and Network Security 17 (5%)

๐Ÿ“ Company Size Distribution

1,001-5,000 employees 101 (30%)
10,001+ employees 83 (24%)
501-1,000 employees 80 (24%)
5,001-10,000 employees 34 (10%)
201-500 employees 26 (8%)

๐Ÿ“Š Who usually uses Github Advanced Security and for what use cases?

Source: Analysis of job postings that mention Github Advanced Security (using the Bloomberry Jobs API)

Job titles that mention Github Advanced Security
i
Job Title
Share
Information Security Engineer
27%
DevOps Engineer / SRE
24%
Director, Information Security
11%
Application Security Engineer
10%
My analysis reveals that GitHub Advanced Security buyers span both security and engineering leadership, with Directors of Information Security (11%) and Directors of Software Engineering (4%) driving purchase decisions. These leaders are focused on scaling secure development practices, implementing DevSecOps at scale, and meeting compliance requirements across SOC 2, federal regulations, and industry standards. Leadership positions represent about 26% of all postings, indicating that GHAS adoption requires executive sponsorship to drive organizational change and cross-functional collaboration.

The day-to-day users are predominantly Information Security Engineers (27%) and DevOps Engineers (24%), who embed GHAS into CI/CD pipelines, configure SAST and SCA scanning, manage vulnerability remediation workflows, and build security automation. Application Security Engineers (10%) use it for secure code review, threat modeling, and developer enablement. These practitioners are implementing shift-left security, creating reusable workflows and templates, tuning quality gates to reduce false positives, and integrating GHAS with tools like SonarQube, Snyk, and cloud security platforms.

The recurring pain points center on scaling security without slowing development velocity and building security into the SDLC by default. Companies seek to "make secure design and delivery the default path for engineering teams" and "enable teams to move quickly without repeatedly solving the same security problems." I noticed emphasis on "shift-left security," "secure-by-design principles," and "reducing risk through secure by default architecture." Organizations want to "empower security teams to stay one step ahead" while "minimizing friction between security and engineering."

๐Ÿ‘ฅ What types of companies use Github Advanced Security?

Source: Analysis of Linkedin bios of 2,878 companies that use Github Advanced Security

Company Characteristics
i
Trait
Likelihood
Funding Stage: Secondary market
158.8x
Funding Stage: Series C
53.2x
Industry: Computer Networking Products
42.7x
Funding Stage: Post IPO debt
35.2x
Industry: Computer and Network Security
19.5x
Industry: Software Development
15.4x
I noticed that Github Advanced Security attracts companies building developer-facing infrastructure and technical products. These aren't retail businesses or traditional service companies. They're creating platforms, APIs, databases, cloud services, and open-source tools. Companies like Elastic building search platforms, Docker providing container infrastructure, Dynatrace delivering observability solutions, and Fastly operating edge cloud platforms. Even those in seemingly different industries like Einride (freight) or Utility Warehouse (home services) are fundamentally technology companies building software products.

These companies span the full maturity spectrum, but most are in active growth phases. I see post-IPO giants like Expedia Group and Elastic alongside Series A startups like E2B and pre-seed companies like Wafer. However, the majority cluster around Series A through Series C stages with 50-500 employees. Even mature companies like Docker or Dynatrace position themselves as innovators still scaling. The common thread is that they're all actively building and shipping software at scale, not maintaining legacy systems.

๐Ÿ”ง What other technologies do Github Advanced Security customers also use?

Source: Analysis of tech stacks from 2,878 companies that use Github Advanced Security

Commonly Paired Technologies
i
Technology
Likelihood
3032.5x
2543.7x
2498.8x
2248.0x
569.1x
463.8x
I noticed that companies using Github Advanced Security are deeply invested in security-first DevOps practices and modern cloud infrastructure. The extremely high correlation with Dependabot tells me these organizations prioritize automated security scanning and dependency management, which means they're likely running complex applications where vulnerabilities could have serious business consequences. The presence of Helm and Terraform shows they're operating at significant scale with containerized applications and infrastructure as code.

The pairing of Dependabot with Github Advanced Security makes perfect sense because these companies want comprehensive security coverage across their entire codebase, from vulnerabilities in their own code to risks in third-party dependencies. The Terraform and Helm combination is equally telling. These teams are managing sophisticated cloud deployments, probably across multiple environments, and need the kind of security guardrails that Github Advanced Security provides to catch issues before they reach production. The high adoption of AI coding agents alongside these security tools suggests teams that are moving fast and need automated security checks to keep pace with AI-accelerated development.

The full stack reveals these are product-led companies in growth or mature stages. They've moved past scrappy startup phase and built serious engineering teams that need enterprise-grade tooling. The verified Github organizations and Azure Pipelines presence indicates they have formal security requirements, possibly due to enterprise customers, compliance needs, or handling sensitive data. These aren't marketing-led companies focused on acquisition tactics. They're building complex technical products where security and reliability are competitive advantages.

Alternatives and Competitors to Github Advanced Security

Explore vendors that are alternatives in this category

Chainguard Chainguard DeepSource DeepSource SonarQube SonarQube Aikido Security Aikido Security Semgrep Semgrep SonarQube Cloud SonarQube Cloud Astra Security Astra Security Checkmarx One Checkmarx One Hackerone Hackerone Detectify Detectify BlackDuck BlackDuck Tinfoil Security Tinfoil Security Github Advanced Security Github Advanced Security F5 Web App Scanner F5 Web App Scanner

Loading data...