Testing modern application security requires a variety of tools to scan different aspects. Static application security testing (SAST) for issues in custom code. Software composition analysis (SCA) for known open source vulnerabilities. Dynamic application security testing (DAST) for runtime flaws. Gartner recommends taking a "shift-left" approach and invest in automation ... Read More

Today's threat landscape is evolving faster than ever before. In light of recent high-profile breaches, it is evident that we need to begin to put cybersecurity first in software development. SecDevOps and DevSecOps offer the required security-first mindset and solve the need for rapid software changes that detect and plug ... Read More

Continuous integration and delivery (CI/CD) pipeline can help a DevOps team establish uninterrupted delivery and flow of information, resulting in maximization of the team's productivity. Join Everbridge on July 21, as we discuss improving resolution time of CI/CD issues that require intervention, speeding up pipeline gates that require human decisions, ... Read More

Continuous integration (CI) and continuous delivery (CD) are scalable software development practices for automation and shortening feedback times. With a CI/CD pipeline you can identify vulnerabilities and errors earlier in the SDLC, reduce the amount of potential risk and improve the quality of your software. However, as the tech landscape ... Read More

The rapid growth in adoption of cloud-native approaches to modernize applications based on microservice architectures that leverage serverless and container technologies continue to pose unique security challenges that current solutions fail to address. Visibility into user activities, secure controls, constantly changing attack surfaces, monitoring and troubleshooting DevOps, SRE and run-time ... Read More

How can you get your DevOps data to work for you, and how can you make sure you’re using the right data? That’s what we’ll explore in this panel discussion with DevOps experts from HCL Software. The speakers in this session have first-hand experience with initiating a data-first approach to ... Read More

Join Maciej Mansfield, Senior Product Manager at WhiteSource and Eylam Milner, Co-Founder & CTO Argon Security as they describe various types of supply chain attacks which have been observed and blocked in the past year. They will discuss their experience defending against malicious packages and artifactory manipulation, and how this ... Read More

Are you implementing cloud native DevOps? Are your mission-critical applications running on Kubernetes? Is it harder than you thought? You’re not alone. While microservices and CI/CD are increasingly the standard for building modern applications, operationalizing and managing resources for these applications remains a pain-point for DevOps, SRE, and Ops teams ... Read More

Black swan events are inherently unpredictable—you can’t prepare for every possible threat. Instead, you must identify the ways systems can fail and develop strategies to restore them to full service when these failures happen. But a disaster recovery plan (DRP) can’t be relied on until it’s been proven to work ... Read More

Automation is a critical part of improving the operational efficiency and time to market application development teams. But recent supply chain breaches like the SolarWinds attack demonstrated why it’s important to secure, authenticate, and audit access to sensitive data, containers and microservices early in the software development process ... Read More