DevSecOps
Serverless is great, but what about the security of my AWS Lambda functions and their dependencies?
Function as a Service (FaaS) platforms patch your operating system dependencies for you, but do nothing to secure your application dependencies, such as those pulled from npm, PyPI, Maven and the likes ...
Putting the Sec in DevOps
Originally presented at TechStrongCon, watch the session presented by Checkmarx entitled "Putting the Sec in DevOps". Below is the description for the presentation: Automation and DevOps have changed the way organizations deliver ...
Time Inc Case Study by Checkmarx
Time Inc. is a mass media corporation that shares news and stories impacting global dialog across multiple media platforms for nearly a century. With some of the world’s biggest media brands under ...
Interactive Application Security Testing (CxIAST) from Checkmarx
In today’s competitive world, the name of the game is time-to-market. Organizations are under increasing pressure to continuously deliver new and improved software. To win the race, nothing can get in the ...
An Integrated Approach to Embedding Security into DevOps
What’s making your software essential to your business, is also making it more dangerous. When software is everywhere, everything becomes an attack surface. The way your organization develops and depends on software ...
Deliver Secure Software at the Speed of DevOps
We live in an era of digital transformation. Software is the backbone of this digital transformation. Mobile, cloud, open source, Internet of Things, microservices and AI have made software more complex. Over ...
Checkmarx Software Composition Analysis (CxSCA)
As with custom code and commercial software, open source libraries can introduce risks which organizations must identify, prioritize, and address. Security vulnerabilities can leave sensitive data exposed to a breach, license requirements ...
Static Application Security Testing (SAST) from Checkmarx
CxSAST is an enterprise-grade solution which provides a high-speed, fully-automated, flexible and accurate static analysis solution used to identify hundred of security vulnerabilities in custom code components. These vulnerability findings are comprehensive, ...
Software Security Platform from Checkmarx
We live in an era of digital transformation with software at the heart of it. Software is everywhere – in our mobile devices, in our computers, in our homes, and our cars ...
AppSec Awareness Solution (CxCodebashing) from Checkmarx
As DevOps continues along its path of domination, organizations are seeking to bring development and security teams closer together to support the release of secure software and faster time-to-market. The needs and ...
3 DevOps Security Best Practices Your Organization Can’t Afford To Ignore
Alexey Klochay | | CI/CD, DAST, devsecops, Dynamic Application Security Testing, GitLeaks, SAST, secure pipeline, Static Application Security TestingCI/CD pipelines are at the core of daily operations for many businesses today. These processes, when set up correctly, help to keep the delivery process consistent by automating many manual tasks and ...
Implementing DevSecOps Goes Beyond Technology
While technology is crucial for implementing DevSecOps, it is the people, processes and culture that drive it forward. As recently as last year, a survey found 58% of technology leaders cited existing ...
