AppSec Specialistsbusiness leadersChief Information OfficerChief Information Security OfficerCIOCISOCloud Operationscompliancedata usersDevelopersGDPRIT SecuritylegalPIPEDASDLCSecurity Championssecurity teamsoftware development life 9 Key Players for a Winning Security Team Dec 18, 2018 by Kurt Risley Basketball legend Michael Jordan once said, “Talent wins games, but teamwork and intelligence win championships.” When it comes to something as important as your company’s security, you can’t afford to rely on anything less than a championship security team. What does a championship security team mean for your organization? You may have hired the best Read More › AppSec Specialistsbusiness leadersChief Information OfficerChief Information Security OfficerCIOCISOCloud Operationscompliancedata usersDevelopersGDPRIT SecuritylegalPIPEDASDLCSecurity Championssecurity teamsoftware development life
Application SecuritySDLCSecure SDLCsSDLC Quick Tips To Secure Your SDLC Dec 22, 2016 by Arden Rubens Applications have become as complex as ever, and with the constant evolution and advancement of applications, cyber threats have become of the biggest risks that organizations today face – and as most of the past cyber attacks on organizations teach us, those risks can be absolutely disastrous. Therefore, along with the increased business risks and Read More › Application SecuritySDLCSecure SDLCsSDLC
SDLCSecure SDLCstatic code analysis The Best Ways to Ensure a Lasting Secure SDLC Aug 5, 2016 by Sarah Vonnegut To start the discussion on why a Secure SDLC is more important now than ever, we need to take a look at the evolution in applications and how they’re being secured. Both applications and the way organizations are tasked with securing them have changed dramatically over the past few decades. Read More › SDLCSecure SDLCstatic code analysis
Application SecurityApplication Security VulnerabilitiesSASTSDLCStatic Application Security Testing Why SAST is Essential for a Security Vulnerability Assessment May 5, 2016 by Sarah Vonnegut Let’s start with this: the idea of a security vulnerability assessment is certainly not “breaking news”. For centuries, organizations have proactively scanned their physical security in search of real or potential weaknesses, and for decades they’ve shifted their skeptical gaze to IT systems and devices. And while it’s true that some organizations are better Read More › Application SecurityApplication Security VulnerabilitiesSASTSDLCStatic Application Security Testing
Application SecuritySDLCSecurity Testingsoftware security Who Needs Software Security, Anyway? Apr 12, 2016 by Andrei Cheremskoy In recent years, the advent of mobile and cloud computing revolution has brought to light a serious issue affecting both organizations and individuals: software security. Every day, there’s a new story we hear about some website or application being penetrated, releasing sensitive information that is sold, abused, and exploited. As a consequence, companies lose their credibility (along with Read More › Application SecuritySDLCSecurity Testingsoftware security
Application SecuritySDLCSecurity AutomationSource Code Analysisstatic code analysis Static Analysis Tools: All You Need to Know Apr 8, 2016 by Sarah Vonnegut Application security is finally beginning to hit the mainstream, and organizations are beginning to see the benefit and need of securing their applications, both internal and external. With so many facets to AppSec, it can be hard to know where to start, especially when trying to build a program from scratch. Read More › Application SecuritySDLCSecurity AutomationSource Code Analysisstatic code analysis
Application Security AwarenessApplication Security VulnerabilitiesAppSec 101SDLC 10 Easy Ways to Increase Your Application Security Knowledge Mar 18, 2016 by Sarah Vonnegut If you’re new to the world of security, in whatever capacity, gaining a good understanding of AppSec can seem daunting and distant – but don’t fear. Becoming more application security aware doesn’t have to be hard or time-consuming. It can be as easy as taking a few minutes out of every day to advance your Read More › Application Security AwarenessApplication Security VulnerabilitiesAppSec 101SDLC
Application SecurityBest practicesDevSecOpsSDLCSource Code AnalysissSDLCWeb Application Security RSA Conference 2016: AppSec Track Impressions Mar 13, 2016 by Amit Ashbel 2 weeks ago I attended RSA Conference 2016 in San Francisco. I had the chance to attend multiple talks in the AppSec track and listen to what the other vendors, thought-leaders and experts had to say. In a nutshell, all talks and discussions revolved around how to get the developers engaged with the security process. Read More › Application SecurityBest practicesDevSecOpsSDLCSource Code AnalysissSDLCWeb Application Security
Automated TestingSASTSDLCSecure SDLCSecurity Testing Security Testing in the SDLC: A Beginner’s Guide Feb 26, 2016 by Sarah Vonnegut As requirements for faster release cycles and applications packed with more features than ever keep organizations rushing to production, we can’t afford to skip a beat when it comes to security. Developers with all stages of security knowhow are being hired, and right beside giving developers a thorough education in secure coding is ensuring the Read More › Automated TestingSASTSDLCSecure SDLCSecurity Testing
Application Security ProgramRisk ManagementSDLCSecure DevelopmentSoftware Security Assurance Software Security Assurance: 4 Secrets to Unleashing the Power of Your Program Feb 19, 2016 by Sarah Vonnegut The software and web applications we design, develop and deploy in our organizations are a major resource in and of themselves, without even considering the critical data they may hold. Building secure software should be an essential part of any organization, and yet software security assurance still lags depressingly behind quality assurance in the vast Read More › Application Security ProgramRisk ManagementSDLCSecure DevelopmentSoftware Security Assurance