Tag: appsec

As the majority of businesses are increasingly moving to the online world, employees keep working remotely and more cyberattacks keep happening all over the globe, there is no doubt that embracing DevSecOps ...

Agile organizations are looking for ways to win at security without slowing down their release cycles. That’s where DevSecOps comes in. The days of a hands-off security approach for developers are over ...

An estimated 84% of security incidents happen at the application layer. And, with the number of cybersecurity threats steadily rising year-over-year, application security (AppSec) has become absolutely essential. Application security refers to ...

Time management can help developers realize the necessary combination of security and speed in application development As software continues to create competitive advantages and market differentiation for organizations focused on successful digital ...

The midmarket space has always been prime for innovation and opportunity. In the DevSecOps space, that is no different. If you look at this report or others about DevSecOps markets, two things ...

Checkmarx, the global leader in software security solutions for modern enterprise software development, and DevOps.com are conducting a survey about the implementation of DevOps and related automation and security tools. The purpose ...

Security testing has always been an important step in the application development process. Yet, traditional measures often occur too late in the process to effectively find and fix vulnerabilities before causing costly ...

In part one of this two-part series, I explored how organizations can more effectively automate security quality decisions and discard doing automation for automation’s sake. I shared why security scans need to ...

The shift-left revolution is upon us. Just because it’s a cliche, doesn’t mean it’s not true. As software development organizations continue to implement DevOps culture, processes, and tools, developers are adopting the ...

DevSecOps has changed the way developers approach security in their application development cycle. But it's also been the source of confusion, as some developers grapple with understanding how DevSecOps is different from ...

In this DevOps/Security Boulevard Chat we speak with Rohit Sethi, COO of Security Compass about ASRTM, which stands for Application Security Requirements and Threat Management. Gartner has recently released a hype cycle ...

In part one, we discussed how education content publisher Pearson applied ThreadFix to its AppSec request workflow needs. Here’s the rest of the story. The ThreadFix Implementation Senior software security engineer Matt ...