DevSecOps
Creating Marketplace Efficiencies for the Healthcare Industries
With approximately 6 million patients that visit this digital healthcare company per month to schedule and book doctor appointments, they strive to adapt, innovate, and modernize the healthcare industry by providing a ...
At the Intersection of Finance and Security
Envestnet | Yodlee is a leading data aggregation and data analytics platform powering dynamic, cloudbased innovation for digital financial services. More than 1,000 companies, including 13 of the 20 largest U.S. banks ...
Securing the Digital Commerce Ecosystem for Merchants, Customers, and Banks
Founded in 2006, GreenSky, Inc. is a leading financial technology company “Powering Commerce at the Point-of-Sale” for a growing ecosystem of merchants, consumers and banks. Their highly scalable, proprietary technology platform enables ...
Case Study – Travis Perkins plc by Checkmarx
With over 20 leading brands providing various online services for tens of thousands of consumers, Travis Perkins had the need for a strong AppSec solution in its arsenal to protect its applications ...
Modern Application Development on AWS
Modern application development using containers and serverless technologies can help your organization accelerate innovation. This paper includes information about important best practices and design patterns that you can use to build your ...
Serverless is great, but what about the security of my AWS Lambda functions and their dependencies?
Function as a Service (FaaS) platforms patch your operating system dependencies for you, but do nothing to secure your application dependencies, such as those pulled from npm, PyPI, Maven and the likes ...
Putting the Sec in DevOps
Originally presented at TechStrongCon, watch the session presented by Checkmarx entitled "Putting the Sec in DevOps". Below is the description for the presentation: Automation and DevOps have changed the way organizations deliver ...
Time Inc Case Study by Checkmarx
Time Inc. is a mass media corporation that shares news and stories impacting global dialog across multiple media platforms for nearly a century. With some of the world’s biggest media brands under ...
Interactive Application Security Testing (CxIAST) from Checkmarx
In today’s competitive world, the name of the game is time-to-market. Organizations are under increasing pressure to continuously deliver new and improved software. To win the race, nothing can get in the ...
An Integrated Approach to Embedding Security into DevOps
What’s making your software essential to your business, is also making it more dangerous. When software is everywhere, everything becomes an attack surface. The way your organization develops and depends on software ...
Deliver Secure Software at the Speed of DevOps
We live in an era of digital transformation. Software is the backbone of this digital transformation. Mobile, cloud, open source, Internet of Things, microservices and AI have made software more complex. Over ...
Checkmarx Software Composition Analysis (CxSCA)
As with custom code and commercial software, open source libraries can introduce risks which organizations must identify, prioritize, and address. Security vulnerabilities can leave sensitive data exposed to a breach, license requirements ...