[Webinars] DevOps, security tool abuse, Coverity and Threadfix
Practice DevSecOps with automated continuous testing, defend your apps from security tool misuse, and learn how Coverity and ThreadFix enable developers.
Security Tool Misconfiguration and Abuse
As your organization’s security program matures, you’ll add tools and techniques to automate processes to improve your security posture. However, if you don’t configure these tools properly, they can lead to the total compromise of your network by an attacker.
In this webinar, Thomas Richards will review case studies of penetration testers abusing these tools, as well as remediation methods to prevent attacks.
What: Security Tool Misconfiguration and Abuse
When: Tuesday, Aug. 20 @ 1 p.m. Eastern / 10 a.m. Pacific
Who: Thomas Richards, network and red team practice director, Synopsys
Shift Left, Shift Right, or Run Security Right Through the Middle?
Demands for more secure software and more rapid application development have led to the emergence of DevSecOps. DevSecOps maturity requires a risk-based approach to adding security activities, increasing depth, and improving testing governance. The best strategy is to shift from a reactive to a proactive security approach that injects security at the right time and place with automated continuous testing.
This presentation covers these aspects of automated continuous testing:
- Practices to avoid
- Drawbacks
- Prerequisites
- When and where to use automated testing
- Best practices for implementing and improving continuous testing throughout the development life cycle
What: Shift Left, Shift Right, or Run Security Right Through the Middle?
When: Tuesday, Aug. 20 @ 12 p.m. GMT / 8 a.m. Eastern
Who: Meera Rao, senior principal consultant, Synopsys; Brandon Dunlap, moderator, (ISC)2
Enabling Developers in Your Application Security Program With Coverity and ThreadFix
Developers need to move quickly and efficiently. Coverity’s speed, accuracy, ease of use, and scalability meet the needs of even the largest, most complex environments. ThreadFix allows you to centralize all test and vulnerability data in one place so your software security team can spend less time on manually correlating results and more time focusing on higher-level risk decisions. Join us to get a firsthand look at how Coverity and ThreadFix arm development teams with the tools they need to advance security programs in real time.
What: Enabling Developers in Your Application Security Program With Coverity and ThreadFix
When: Thursday, Aug. 22 @ 12 p.m. Eastern / 9 a.m. Pacific
Who: Dan Cornell, CTO and principal, Denim Group; James Croall, Coverity product management director, Synopsys
*** This is a Security Bloggers Network syndicated blog from Software Integrity Blog authored by Synopsys Editorial Team. Read the original post at: https://www.synopsys.com/blogs/software-security/webinars-aug-19-23/
