The adoption of DevOps in enterprises around the world has created a whole new meaning to constant, rapid innovation and delivery. Iteration after iteration, DevOps is designed to improve the end product endlessly, pushing the limits of speed and collaboration. Don’t sacrifice security while achieving speed – embrace DevSecOps.
Tag: security awareness
They say the best defense is a great offense – and with application security, that’s certainly a big factor in staying ahead of the hackers. Organizations keen on keeping malicious hackers out of their systems will use any number of offensive measures as a way to find the kinds of holes attackers could use against
Read the first post, 15 Vulnerable Sites to (Legally) Practice Your Hacking Skills here. There’s a well-known saying that before you judge someone you should always “walk a mile in the other person’s shoes.” You can’t get the full picture behind a person without first living like they do and understanding what goes on
In honor of National Cyber Security Awareness Month, Checkmarx — a global leader in software application security — has several things planned, the first of which is the launch of SecureDevKit to raise awareness. The campaign is designed to give CISOs/CSOs and software development managers a kit that “includes physical and online tools to promote
Checkmarx Asks Developers: “Are You #SecureDevAware?” to Mark National Cyber Security Awareness Month
In honor of National Cyber Security Awareness Month, Checkmarx, a global leader in software application security, today launched http://securedevkit.com to raise awareness for secure development within R&D teams. The campaign provides CISOs/CSOs and software development managers with a kit that includes physical and online tools to promote secure application development within their organizations. “We’ve been
Unless you were living under a rock last fall, you heard about the major iCloud hack that saw nude pictures of A-list celebrities posted all over the web. The fact that someone could hack into private clouds and steal the sensitive data contained within alarmed web users around the world. That wasn’t the only
In the same post where Bruce Schneier famously said that he personally believes “that training users in security is generally a waste of time, and that the money can be better spent elsewhere,” he added an important caveat about training developers. Developers, he wrote, “are people who can be taught expertise in a fast-changing environment, and
So, what happens when a core component of Mac, Linux and other Unix-based operating systems is found to be highly vulnerable and easily exploitable? Last week, we found out: On September 24th, the world was first introduced to a family of bugs in the Bash shell, being referred to both as ‘Shellshock’ and ‘Bashdoor’. Here’s
Today’s targeted cyber-attacks force organizations to act rapidly and involve more and more security professionals in order to secure their software. Security education awareness focuses on the need to involve developers in the security testing process. These are great blog posts surrounding security awareness and education; we thought it’s worth a share.