Tag: compliance

The EU’s Cyber Resilience Act: Redefining Secure Software Development

Thabang Mashologu | August 26, 2025 | compliance, Cyber Resilience Act, devsecops, EU, software development

The European Union's Cyber Resilience Act (CRA) marks a turning point for anyone building, selling, or maintaining digital products. Whether it’s enterprise software, consumer apps, IoT devices, or embedded systems, the CRA ...

agents, onboarding, shadow ai, workflows,

Enterprise AI Development Gets a Major Upgrade: Claude Code Now Bundled with Team and Enterprise Plans

Tom Smith | August 21, 2025 | Anthropic, Claude Code, compliance, Enterprise AI, governance

Enterprise development teams have faced an impossible choice: move fast with cutting-edge AI coding tools or maintain the security and governance standards their organizations demand. Today, that tradeoff no longer exists. Anthropic ...

CRA, compliance, continuous compliance, validated, devops, liability, software, compliance Checkly Palo Alto Networks Checkov

Eclipse Foundation Publishes Toolkit to Simplify CRA Compliance

Mike Vizard | August 14, 2025 | compliance, CRA, EU, Europe, ORC, regulations

The Eclipse Foundation has launched the OCCTET project, offering open-source compliance tools to help smaller organizations meet the EU’s new Cyber Resilience Act requirements ...

Merging Business Logic and DevOps

Chris Brill | June 17, 2025 | automation, CI/CD pipeline, compliance, devops, devsecops, it

Bridging the gap between DevOps and business logic means product and application owners should map out business outcomes and then embed them in DevOps pipelines ...

Why Validated DevOps is the Path Forward for Regulated Software

Erez Kaminski | January 30, 2025 | AI/ML, CI/CD, compliance, Regulated software, Validated DevOps

Validated DevOps is a groundbreaking approach that combines the speed of modern software development with the rigorous validation required for safety-critical product compliance.  ...

Ready or Not: U.S. Tech Companies Must Be Ready for EU Accessibility Compliance Rules

Jason Baum | January 23, 2025 | accessibility, compliance, EU

On June 28, 2025, the European Union’s Accessibility Act (EAA) will take effect, and the ripple effects will be felt far beyond Europe’s borders. U.S. companies that do business in Europe or ...

Understanding Liability in Software Development: Minimizing Legal Risks

Devin Partida | January 21, 2025 | compliance, liability, software development

Software liability will only become more important as digitization increases. Developers must take the time today to review where they fall under applicable regulations and how they can minimize their legal risk ...

Succeeding at DevSecOps Requires a Rubric for SDLC Governance

Raj Mallempati | July 26, 2024 | CI/CD, CISO, code, compliance, developers, devsecops, Identity, SDLC Governance

Now is the time to engage your SDLC stakeholders and begin the journey of securing your development pipelines — the future of your organization’s security depends on it ...

supply chain, software, Checkmarx, data, Endor, SCA, supply chain, security, workflows, supply chain, software, supply chain security, appsec, polyfill, software, supply chains, DevOps, DevSecOps, Google supply chain

Survey Surfaces Troubling Signs of Software Supply Chain Insecurity

Mike Vizard | July 19, 2024 | ai, compliance, CRA, regulatory compliance, Software Supply Chain, supply chain security

A survey of software engineering professions has uncovered disconcerting signs of software supply chain insecurity ...

SEC Introduces Enhanced Climate-Related Disclosure Rules

Bonnie Schneider | March 6, 2024 | carbon emissions, climate change, compliance, devops, digital transformation, IT operations, observability, SEC, sustainability

The Securities and Exchange Commission (SEC) has adopted new rules to enhance and standardize climate-related disclosures by public companies and in public offerings. These rules aim to meet investor demands for consistent, ...