Sonatype

OverviewSuggest Edit

Sonatype is a company that develops open source governance automation solutions. It offers Nexus Lifecycle to control the flow of components throughout the software supply chain. The company also provides Nexus Firewall to stop risky components from entering software supply chain, as well as provides policy management for identifying and protecting repositories.

TypePrivate
Founded2008
HQFulton, MD, US
Websitesonatype.com
Employee Ratings4.6
Overall CultureB

Latest Updates

Employees (est.) (Apr 2021)377(+5%)
Job Openings35
Cybersecurity ratingBMore

Key People/Management at Sonatype

Wayne Jackson

Wayne Jackson

CEO
Matt Howard

Matt Howard

EVP & Chief Marketing Officer
Brian Fox

Brian Fox

SVP & Chief Technology Officer
Paul Bosco

Paul Bosco

General Counsel
Dave Miller

Dave Miller

SVP & Chief Financial Officer
Kristin Davidson

Kristin Davidson

Vice President of Human Resources
Show more

Sonatype Office Locations

Sonatype has offices in Fulton, McLean, Sydney and London
Fulton, MD, US (HQ)
8161 Maple Lawn Blvd #250
McLean, VA, US
8281 Greensboro Dr #630
Sydney, AU
5 Martin Pl
London, GB
154-168 Shoreditch High St, Shoreditch
London, GB
1 Primrose St, Spitalfields
Show all (5)

Sonatype Financials and Metrics

Summary Metrics

Founding Date

2008

Sonatype total Funding

$149.5 m

Sonatype latest funding size

$80 m

Time since last funding

3 years ago

Sonatype investors

Sonatype's latest funding round in September 2018 was reported to be $80 m. In total, Sonatype has raised $149.5 m
Show all financial metrics

Sonatype Operating Metrics

Sonatype's Customers was reported to be 1 k in Nov, 2019.
Nov, 2019Aug, 2020

Products

6

Customers

1 k

Patents (US)

14

Trademarks (US)

10
Show all operating metrics

Sonatype Acquisitions / Subsidiaries

Company NameDateDeal Size
Vor SecurityJune 29, 2017

Sonatype Cybersecurity Score

Cybersecurity ratingPremium dataset

B

80/100

SecurityScorecard logo

Sonatype Online and Social Media Presence

Embed Graph

Sonatype Company Culture

  • Overall Culture

    B

    82/100

  • CEO Rating

    A+

    89/100

  • Compensation

    A-

    85/100

Learn more on Comparably

Sonatype News and Updates

Sonatype Helps Organizations Manage Open Source License Obligations and Speed up Legal Compliance with New Tool

The Advanced Legal Pack mitigates license risk through automation, providing a more efficient way to collect, compile, report, and remediate open source legal obligations The Advanced Legal Pack mitigates license risk through automation, providing a more efficient way to collect, compile, report, an…

Sonatype acquires MuseDev, expands Nexus code analysis platform

Sonatype's acquisition of MuseDev extends Nexus into a full-fledged software supply chain management platform.

Sonatype Adds Infrastructure as Code Security and Compliance

New Infrastructure as Code Pack for Nexus Lifecycle brings developer-friendly cloud and open source security together in one place New Infrastructure as Code Pack for Nexus Lifecycle brings developer-friendly cloud and open source security together in one place

Sonatype Adds Cloud-Native Container and Kubernetes Security for Developers

Powered by NeuVector, Nexus Container provides developer-friendly security and continuous visibility into the composition, and management of containers Powered by NeuVector, Nexus Container provides developer-friendly security and continuous visibility into the composition, and management of contain…

Sonatype Unveils Full-Spectrum Software Supply Chain Management Platform

Company dramatically expands portfolio with new developer-first features, the acquisition of MuseDev and launch of its Nexus Container and Infrastructure as Code Pack Company dramatically expands portfolio with new developer-first features, the acquisition of MuseDev and launch of its Nexus Containe…

Russian Enterprises Turn to Swordfish Security and Sonatype to Combat Risk Associate with Open Source

Companies look to the duo to build mature DevSecOps processes into their software development lifecycle and help protect their applications Companies look to the duo to build mature DevSecOps processes into their software development lifecycle and help protect their applications
Show more

Sonatype Blogs

Biden Executive Order on Cybersecurity Calls for Enhanced Software Supply Chain Security

The newly minted, and highly anticipated, Cybersecurity Executive Order from President Biden, marks the strongest stance ever taken by the Federal government in an attempt to secure our nation’s software supply chains from attack.  For the first time in history, any company that sells so…

Slaying the Dragon of OSS Legal Compliance with the Advanced Legal Pack

It goes without saying that open source software (OSS) dependencies are growing explosively. Along with that maturity comes an increasingly complex web of licenses, terms, and legal necessities. And while we’ve spoken at length about the crucial role of license compliance, the focus has …

Sonatype + Muse: How Improved Code Quality Compliments Enterprise SAST

Last month Sonatype announced the acquisition of MuseDev, an innovative code analysis platform that does three things remarkably well:

Onboarding Nexus Lifecycle Through SCM

Has anyone ever asked you where all of your applications were located; and your response was “Somewhere in GitHub?” We know that feeling too.

How We're Staying Connected with Our Channel Partners in a Virtual World

For people like me who thrive on in-person interactions not only personally, but professionally, in my role leading EMEA Partner marketing here at Sonatype, the past year has certainly been trying. We, just like all B2B software vendors, have struggled with building partner relationships…

Damaging Linux & Mac Malware Bundled within Browserify npm Brandjack Attempt

Over the weekend, Sonatype spotted a rather unique malware sample published to the npm registry, within a day of its release on npm.
Show more

Sonatype Frequently Asked Questions

  • When was Sonatype founded?

    Sonatype was founded in 2008.

  • Who are Sonatype key executives?

    Sonatype's key executives are Wayne Jackson, Matt Howard and Brian Fox.

  • How many employees does Sonatype have?

    Sonatype has 377 employees.

  • Who are Sonatype competitors?

    Competitors of Sonatype include NetBrain Technologies, Black Duck and WhiteHat Security.

  • Where is Sonatype headquarters?

    Sonatype headquarters is located at 8161 Maple Lawn Blvd #250, Fulton.

  • Where are Sonatype offices?

    Sonatype has offices in Fulton, McLean, Sydney and London.

  • How many offices does Sonatype have?

    Sonatype has 5 offices.