AppSec Becomes A Priority For New CISOs/CSOs: Recommendations For The First 100 Days
With digital transformation as a top concern for many organizations today, application security (AppSec) is more important than ever for CISOs/CSOs. Newly hired leaders must account for AppSec from the very start, and should assemble a comprehensive and strategic vision for software security in their first 100 days. While this ... Read More
Priorities in Agile Lead to Software Observability in Annual Agile Report
It has been nearly 20 years since a group of 17 software developers conceived the “Manifesto for Agile Software Development.” Frustrated by a development methodology that followed a set path—with long development cycles before a final product was ready to be released—the group wanted an approach that would bring new ... Read More
43% of Data Breaches Connected to Application Vulnerabilities: Assessing the AppSec Implications
Web applications are a growing focus point for cyber criminals. Motivated by financial outcomes, they understand the value of the information exchanged and stored in web applications. The 2020 Verizon Data Breach Investigations Report (DBIR) confirms that this is the case: 43% of data breaches are tied to web application ... Read More
Traditional AppSec Code Halts Kill DevOps Release Cycles
In recent years, the application security (AppSec) field has not advanced as rapidly as the software development discipline. While developers are under constant pressure to push code, legacy security tools inhibit their ability to do so. Developers face constant code halts for security testing, which wastes time and greatly diminishes ... Read More
Incident Response Requires a New AppSec Model
Incident response found its way into our technological vernacular back in 1988 when the first internet worm—dubbed “The Morris Worm”—was released. In response, the Computer Emergency Response Team/ Coordination Center (CERT/CC) by DARPA was formed ... Read More
Accuracy in AppSec Is Critical to Reducing False Positives
According to a new report from the Neustar International Security Council (NISC), over one-quarter of security alerts fielded within organizations are false positives. Surveying senior security professionals across five European countries and the U.S., the report highlights the need for more advanced and accurate security solutions to help reduce alert-wary ... Read More
When Developing from Home is Your New Status Quo Due to COVID-19
This past week is one we’ll never forget, even though many of us would like to do so. Beyond massive economic and social impact, the coronavirus disease (COVID-19) is massively disrupting how we live and work. From global travel restrictions to the cancellation of events worldwide, organizations are quickly pivoting ... Read More
