Cybersecurity Insights with Contrast Co-founder and CTO Jeff Williams | 11/18

Cybersecurity Insights with Contrast Co-founder and CTO Jeff Williams | 11/18

| | Thought Leaders
Insight #1 " Feds continue to push aggressive timelines for requiring app/API security “attestations” from software vendors.  OMB 22-18 is the latest and it requires all software vendors to publish a statement disclosing how they ensure their applications are secure by October 2023."   Insight #2 " Organizations are running ... Read More
Building a modern API security strategy — API protection

Building a modern API security strategy — API protection

| | API security, APIs, rasp
Part four of the five-part series, Building a modern API security strategy ... Read More
AppSec Salt Security API security rise GitOps Finite State API APIs tokenization

Is Your AppSec Program Developer-Centric?

You need an AppSec program.  Software supports your business, and you need to know that attackers can’t kick that ground out from under you. But which is the right path to take for your application security program: Minimal, adversarial or developer-centric? Regardless of what bells and whistles you opt for, ... Read More
Security Boulevard
Building a modern API security strategy — API components

Building a modern API security strategy — API components

| | API security, APIs, AppSec
Part three of the five-part series, Building a modern API security strategy ... Read More
Building a modern API security strategy — API testing

Building a modern API security strategy — API testing

Part two of the five-part series, Building a modern API security strategy ... Read More
API inventory: Focusing on runtime code, not never-invoked libraries

API inventory: Focusing on runtime code, not never-invoked libraries

| | API security
Part one of the five-part series, Building a modern API security strategy ... Read More
Building a modern API security strategy: A five-part series — Overview

Building a modern API security strategy: A five-part series — Overview

| | API security, APIs
The Spring4Shell exploit was, really, quite elegant.  ... Read More
Feeble APIs = Feeble app security

Feeble APIs = Feeble app security

  Your apps are only as secure as each one of your scores of APIs.   ... Read More
Contrast Security Named a Visionary in the 2022 Gartner® “Magic Quadrant™ for Application Security Testing”

Contrast Security Named a Visionary in the 2022 Gartner® “Magic Quadrant™ for Application Security Testing”

|
Contrast Security was named a “Visionary” in the 2022 Gartner “Magic Quadrant for Application Security Testing.” Vendors are evaluated based on their completeness of vision and ability to execute.  ... Read More
Transforming Modern Software Development with Developer-First AppSec - Jeff Williams - ASW 166

Why We Need “Developer-First” Application Security

|
I recently did a podcast with Security Weekly that highlights developer-first application security. A recent survey that we conducted shows that, despite increasing pressure for accelerated release cycles, developers actually are interested in security ... Read More