A Security Champion in the Developer Midst May Just Solve the Secure Code Conundrum

A Security Champion in the Developer Midst May Just Solve the Secure Code Conundrum

The enterprise challenge in generating secure code is well known: as software becomes a competitive advantage and customers expect regular updates, the need to release new features and content frequently often trumps the need to release secure code. Although that's a true conflict, it's not the full story. Psychology can ... Read More
Can DevSecOps Boost Your Bottom Line?

Can DevSecOps Boost Your Bottom Line?

One of the sad truths about security is that it has typically been viewed by enterprise C-level executives as akin to an insurance policy – necessary, but would never produce profits, boost revenue, or attract new customers. But are those long-held perceptions changing? A recent CA study found that they ... Read More
Maximizing the Bang for Your Security Training Buck

Maximizing the Bang for Your Security Training Buck

Training developers on application security is critical to the success of every security program, but many companies deploy training improperly or insufficiently, argues Maria Loughlin, VP of Engineering at CA Veracode. Companies can increase the bang for their training buck by matching their training delivery and curriculum to the needs ... Read More
IT Is Finally Embracing DevSecOps

IT Is Finally Embracing DevSecOps

It’s taken quite some time to get here, but enterprise IT execs are finally embracing DevSecOps. The latest indicator that it’s happening is the 2018 Gartner Magic Quadrant for Application Security Testing, which predicted in March that “by 2019, more than 50% of enterprise DevOps initiatives will have incorporated application ... Read More