Bill Doerrfeld analyzes the state of modern CI/CD security, reviews the most common risks, and offers some safeguarding suggestions.
devsecops
Key RSA 2023 takeaways include a strong emphasis on AI defense, the push for an identity-centric security model, and management of the increasingly complex modern attack surface.
Chris Hughes explains why sharing insights from threat intelligence with other senior execs can be a force multiplier in reducing organizational risk.
With DroidGPT, Endor Labs applies generative AI to software development to ensure open-source packages are current and secure.
With its low-code platform, Appian empowers customers to build applications that automate key business functions. It’s prepared to guarantee their success.
The latest “Secrets Sprawl” report from GitGuardian highlights a troubling data point: the amount of human error that results in corporate secrets being exposed.
GitGuardian, a Cybersecurity Top 10 Shortlist company, offers a secrets detection platform that ensures source-code security for the DevSecOps era.
Robert explains why communication is key to getting security, legal, sales, and engineering teams on board with a DevSecOps strategy shift.
Penetration testing is an inherently manual process and runs in contrast to the DevSecOps movement, so where does it fit in? Robert Wood delves into it.
It’s often said that security must be baked in rather than bolted on, and this is especially true when it comes to CISO involvement in an organization’s data governance plans.
With complex and distributed software ecosystems, organizations need to reach beyond traditional security measures through observability tools and practices.
Application Security (AppSec) is a robust domain with myriad specialties, tools, and best practices. Here’s what to focus on first.
As IT moves to the cloud, new threats emerge. DevSecOps is the answer to incorporating security throughout the continuous software lifecycle.
The way that data and collaboration tools, cross-team engagement, and SOAR tools are improving is expanding the how and where that the SOC can add value to an organization.
Because trust is an essential component when working with customers, cybersecurity plays a crucial role to ensure a positive customer service experience.
While cybersecurity often causes friction towards delivering value, explore the dynamic of how security teams can enable the business.
With an abundance of cybersecurity tools, vulnerability management can benefit from simplifying the user experience.