When You Need to Report a Single AppSec Metric: Our Recommendation

Metrics are critical for measuring and expanding an application security program. And there are a lot of important numbers you need to track to gauge your program’s progress, but sometimes you need one number that sums up your progress. Executives don’t always want to see a slew of complicated charts and graphs – they want one simple number that answers, in a nutshell, is this working, are we getting a return on our investment? When this is the case, and you need to report a single metric, we actually recommend a “single” metric that is a combination of two metrics. Maybe that’s cheating, but we feel strongly that this is the only way to get an accurate view of an AppSec program without looking at a bunch of different variables. With that said, our recommended “single” AppSec metric is the total number of apps in program, alongside the percentage of apps in compliance with your AppSec policy. This gives you a more clear and accurate picture of your AppSec progress than only the percentage of apps in compliance – why? Because you might start your program with a small number of apps and then grow over time. Reporting...
Read more

Women in Business: Take the Risk!

We recently hosted Gloria Larson, the President of Bentley University and one of Boston Magazine's “50 Most Powerful People,” at CA Veracode to talk about diversity with a specific focus on women in business. Our General Manager Sam King and Gloria had a discussion about: President Larson’s career and experience, culminating in her current leadership role The data on diversity in business The role both individuals and companies can play to improve gender and racial diversity This is a critical issue for CA Veracode, and for Gloria Larson. At CA Veracode, diversity and inclusion impact us on a personal level in our day-to-day lives, but also at the business level: diverse companies regularly outperform their peers on every measure, and outperform the competition. A 2015 study by MSCI found that the MSCI World Index with strong female leadership generated a return on equity of 10.1 percent per year versus 7.4 percent for those without. For Gloria – as she asks all Bentley students to call her – this has been a subject of passion throughout her career, and in 2011, she founded Bentley’s
Read more