Application SecurityApplication Security TestingAppSec TestingDevelopersDevOpsSecure CodingSecurity Vulnerabilities Adoption Exposure: Your Software Security Needs Integration and Automation Jul 30, 2019 by Stephen Gates There are many software security solutions available today designed to provide insight into important security issues found during software development. As organizations begin moving forward with DevOps initiatives, are their current Application Security Testing (AST) solutions doing the work they need them to accomplish? If you haven’t integrated AST automatically into your vulnerability detection, triage, Read More › Application SecurityApplication Security TestingAppSec TestingDevelopersDevOpsSecure CodingSecurity Vulnerabilities
Application SecurityApplication Security TestingAppSec TestingData Security BreachDeveloperssecure coding practicesSecurity Vulnerabilities Houston [I mean Bulgaria], we’ve got a problem Jul 18, 2019 by Dana Raveh Every relationship is built on trust. Trust is at the core of every lasting relationship, whether it’s between family members, between spouses, between organizations and their customers, and even between citizens and their government. At the start of this week, this trust was unfortunately violated in Bulgaria. The data of 5M people was leaked from Read More › Application SecurityApplication Security TestingAppSec TestingData Security BreachDeveloperssecure coding practicesSecurity Vulnerabilities
Application SecurityAppSec TestingDevelopersOpen Source ComponentsOpen Source SecuritySecure CodingSecurity Vulnerabilities Code Exposure: The Vulnerabilities in Your Code & Where They Originate Jul 10, 2019 by Stephen Gates Code Exposure: The Vulnerabilities in Your Code & Where They Originate Typical software applications are comprised of two types of code: custom code created by your internal development teams, and third-party code – often open source – created outside the organization. Until about 10 to 15 years ago, almost all software was custom code, and Read More › Application SecurityAppSec TestingDevelopersOpen Source ComponentsOpen Source SecuritySecure CodingSecurity Vulnerabilities
Application SecurityappsecAppSec TestingCloud AppSec TestingCloud SecurityDevelopersSecure Coding Talking Cloud Technology is Yesterday’s News Jul 2, 2019 by Liron Golan Talking Cloud Technology is Yesterday’s News The other day I was on the phone with a colleague, discussing market trends of cloud computing. With me in the room was my 55-year old uncle, who heard bits of our conversation. After the call, he asked me why we spent so much time talking about clouds when Read More › Application SecurityappsecAppSec TestingCloud AppSec TestingCloud SecurityDevelopersSecure Coding
Application SecurityappsecDevelopersSecure Coding Checkmarx Named a June 2019 Gartner Peer Insights Customers’ Choice for Application Security Testing Jun 28, 2019 by Dafna Zahger Customer feedback is critically important in delivering security solutions that address modern business challenges while enabling key digital-transformation initiatives. It also provides the real-world insights other organizations need when making important purchasing decisions. At Checkmarx, we value customer feedback and rely on it heavily to shape our products and services. That’s why we’re thrilled to Read More › Application SecurityappsecDevelopersSecure Coding
Application Securityartificial intelligencecloudDevOpsDevSecOpsIoTmicroservicesmobilesoftware exposuresoftware security AppSec Is Dead, but Software Security Is Alive & Well Dec 4, 2018 by Matthew Rose Everyone agrees that an enterprise’s application ecosystem must be protected, especially when data breaches are reported with alarming frequency and the average total cost of a breach comes in at $3.62 million. However, defeating increasingly severe threats requires a holistic approach to security, one that places an emphasis on managing not only application vulnerabilities but all Read More › Application Securityartificial intelligencecloudDevOpsDevSecOpsIoTmicroservicesmobilesoftware exposuresoftware security
Application SecurityDevOpssoftware security Why Security and DevOps Desperately Need Couples Counseling Aug 26, 2018 by David Spark While at the 2018 Black Hat Conference in Las Vegas I asked attendees point blank if they think that security and DevOps should be in couples counseling. The universal response was a laugh and then a resounding, “Yes.” The reason couples go to couples counseling is because they’re not getting along. They’re not communicating. Usually, only Read More › Application SecurityDevOpssoftware security
Application SecurityDevOpssoftware exposuresoftware security Checkmarx Report: Tackling Software Exposure in the DevOps Cycle Aug 7, 2018 by Maty Siman Today, in an effort to better understand the evolving nature of software delivery and the role security plays, we released a new report, “Managing Software Exposure: Time to Fully Embed Security into Your Application Lifecycle,”which we commissioned with FreeForm Dynamics in coordination with The Register. The report aggregates input from 183 respondents worldwide, the majority Read More › Application SecurityDevOpssoftware exposuresoftware security
Application SecurityDevOpssoftware exposure The Era of Software Exposure Aug 1, 2018 by Bernd Leger Software is at the backbone of the digital transformation We live in a world of massive digital transformation. The technical backbone of this transformation is software. Software can be found everywhere. It is in our homes, in our phones, and in our businesses. Over 80% of the code in today’s software applications is open source. Read More › Application SecurityDevOpssoftware exposure
Application SecuritySASTSecure CodingSource Code Analysisstatic code analysis Introducing the Checkmarx Certified Engineer Program (CxCE) Aug 1, 2018 by Liora R. Herman If you were to take a look at the current job market for developers, application security engineers, solution architects, penetration testers, or systems engineers, it’s clear that application security testing skill sets are in high demand. You’ll also notice that Checkmarx has become synonymous with application security testing. Gartner further validated this by naming Checkmarx Read More › Application SecuritySASTSecure CodingSource Code Analysisstatic code analysis