[VIDEO] Top 5 Tips on Application Security Policies

[VIDEO] Top 5 Tips on Application Security Policies

Policies are a critical part of your application security program; you need them to frame your program, set goals, measure success, and report on progress. But they can also stall your program if they work against, and not with, developer processes and priorities. With the shift to DevOps, and developers ... Read More
What the CA Veracode Verified Standard Tier Looks Like

What the CA Veracode Verified Standard Tier Looks Like

We recently revamped and relaunched our CA Veracode Verified program. To better suit the needs of organizations that are producing and updating apps at DevOps speed, we are moving away from attesting to the security of an application at one point in time, and, rather, attesting to the security of ... Read More
Podcast: AppSec's Effect on the Bottom Line

Podcast: AppSec’s Effect on the Bottom Line

Traditionally, most executives have thought of security as a necessary evil – an investment that was needed solely to avoid a bad outcome, but not something that would bring in new customers or boost revenue. But that seems to be changing. CA Technologies recently surveyed IT and business leaders to ... Read More
Do IT Pros Consider Security When Purchasing Software?

Do IT Pros Consider Security When Purchasing Software?

Traditionally, security was about cost avoidance. It was thought of like insurance – something you have to have in case something bad happens, but not something that would boost the bottom line or attract customers. But in today’s environment, we are increasingly seeing that security is about more than cost ... Read More
Security: Create a Development Champion

Security: Create a Development Champion

We talk a lot about the need for development teams to create security champions. With the shift to DevOps – and the intersecting of development, security, and operations teams – development and security teams can no longer operate in their traditional silos. Each team needs to not only work closely ... Read More
Top 5 Ways to Get Developer Application Security Buy-In [VIDEO]

Top 5 Ways to Get Developer Application Security Buy-In [VIDEO]

The speed and scope of software development today is creating new challenges in ensuring the security of software. But they also create the opportunity to finally get application security right. Both the challenge and the opportunity stem, in part, from the fact that security is “shifting left.” The responsibility for ... Read More
5 Essential Steps to Shift Security Left [VIDEO]

5 Essential Steps to Shift Security Left [VIDEO]

Speed rules in software development today. The DevOps model means getting newer, better, faster into the hands of customers as quickly as possible is the name of the game. But where does that leave security? If it’s not done right -- overlooked or worked around. Done right -- it’s embedded ... Read More
Security: Here’s What You Need to Know About Development

Security: Here’s What You Need to Know About Development

The days of security and development working in separate and isolated silos are over. Security is now a task shared by the development and security teams throughout the software lifecycle – from inception to production. Security testing has become primarily the responsibility of developers, with security taking on more of ... Read More
Appsec Lessons Learned from 2017

Podcast: 2017 AppSec Lessons Learned

“The more things change the more they stay the same” could be the application security motto for 2017. Last year featured breaches stemming from the same vulnerabilities that have been wreaking havoc for years. In fact, we saw SQL injection in about 30 percent of the apps we scanned in ... Read More
What Security Pros Will Get Out of our Upcoming DevSecOps Virtual Summit

What Security Pros Will Get Out of our Upcoming DevSecOps Virtual Summit

The shift to DevOps and DevSecOps is happening. Organizations in all industries are creating software not just faster, but also in a more precise, collaborative and incremental way. In fact, we’ve seen the shift in our own customer base, where the percentage of applications scanned for security on a weekly ... Read More
Loading...