DevOps.com

Tag: appsec

security APIs What is the NIST Cybersecurity Framework

Putting the Security Into DevSecOps

| | appsec, DecOps, devsecops, SOC 2
The non-Newtonian fluid that’s composed of cornstarch and water has been around a long time, but Dr. Seuss’ 1949 book was the impetus for what it’s often called today – Oobleck, from ...
team lead Agile hybrid developer GitLab DevRel developer GitHub BDD CircleCI Rust developer

Empathy for the API Developer

| | API, appdev, appsec, custom software development
Security teams have always been perceived as an impediment to delivery by software teams who feel that security imposes arbitrary and unreasonable policies and use poorly-integrated tools that are beset with high ...
service Q&A: Database Security in Financial Services with Yaniv Yehuda

When DevOps-as-a-Service (DaaS) Meets Security

| | application development, application security, appsec, DaaS, devops, devops adoption, devops culture, devsecops, digital transformation, security, software development
One of the most recent IT methodologies to be offered as a service is DevOps, a cultural and practical approach that brings development and operations teams together under one umbrella of work ...
developer-first

Why Developer-First is the Future of AppSec

| | application security, appsec, developers, devops, devsecops
DevOps culture and rapid cloud adoption mean developers are shipping code faster than ever and, in many cases, security teams struggle to keep up. To avoid relegating security to afterthought status, organizations ...
modernization DevSecOps AppSec Cortex materialized view SIEM

Bridging the AppSec and DevOps Disconnect

| | appsec, DAST, devsecops, SAST, SCA, secure coding
Research estimates that cybercrime is going to cost the world $10.5 trillion annually by 2025, so it is no surprise that cybersecurity has become a top priority for business leaders.  Today, security ...
shared responsibility One Identity

Mastering the Shared Responsibility Model

| | appsec, Cloud Security, cloud-native, shared responsibility model
It’s no secret that cloud-native application development is growing exponentially, with Agile development, IaaS and PaaS from providers like Amazon, Microsoft and Google, enabling innovation at a pace that is challenging for ...
Data Theorem Accurics

Data Theorem Adds Runtime Protection Enabled by Observability

| | appsec, CI/CD, Data Theorem, devsecops, observability
Data Theorem, Inc. this week added an Active Protection offering to its portfolio of application security services that makes it possible for DevOps teams to embed observability and runtime defenses in their ...
Secure Coding Adventure Park

Secure Coding Adventure Park Virtual Summit: Wilder, Faster and More Visionary Than Ever

| | appsec, devsecops, secure coding, Secure Coding Adventure Park Virtual Summit
DevSecOps helps secure code from the start of production, rather than patching and debugging it at a later stage. It brings development, operations and security teams together so they can release secure ...
DevOps DevSecOps security champions

AppSec Marketing in the Age of DevSecOps

| | application security, appsec, devsecops, marketing
A while back, I had a conversation with a friend I went to school with (currently a senior member of the engineering team at a large retail chain) who was tasked with ...
pillar one DevSecOps No More Hot Potato: How Collaboration is Key in Application Security

No More Hot Potato: How Collaboration is Key in Application Security

| | application security, appsec, Shifting Left 2.0, ShiftLeft
Technology is accelerating at an unprecedented rate and companies with little digital footprint or experience in application security are struggling to keep up. With more and more breaches and vulnerabilities being detected ...
OWASP DevSecOps vulnerabilities security Pulumi DevSecOps Analyzing Code for Security Vulnerabilities

How to Analyze Your Code for Security Vulnerabilities

| | appsec, code analysis, shifting left, Shifting Left 2.0, ShiftLeft
Shifting Left 2.0 is a two-day virtual conference taking place from 9 a.m. to 2 p.m. PDT on June 22nd-23rd that dives deep into application security in the modern tech space. Security ...
DevOps Connect at RSAC 2021 - RSA Conference - DevSecOps - Christopher Krebs - Former Director - Department of Homeland Security - CISA - cybersecurity - workshops - cloud security - AppSec

DevOps Connect at RSAC 2021: Insightful Talks, Live Q&A, Workshops, Pilates and More

| | appsec, Christopher Krebs, Cloud Security, Cybersecurity, devops connect, devsecops, rsa conference, RSAC, RSAC 2021, virtual event, Workshop Friday
We are excited to announce the return of DevOps Connect: DevSecOps Virtual Summit on May 19, as part of the RSA Conference 2021. This year, internationally recognized speakers will take a deep ...
Show More