Integrating the Risk Management Framework (RMF) with DevOps

Information security should be at the heart of every system launched. In accordance with the Federal Information Security Management Act (FISMA), an information technology system is granted an Authority to Operate (ATO) ...

Now Is The Perfect Time For CISOs to Tame the Security Frontier

This is the second installment of a six-part series offering guidance to CISOs who tell us finding success in the world… The post Now Is The Perfect Time For CISOs to Tame ...

Video: Managing Digital Certificates in DevOps – Keyfactor

Digital certificates (e.g. SSL/TLS, X.509) can be issued and managed through many different tools in your DevOps tool-chain. However, the more tools you have for managing the issuance of these certificates lead ...
Privileged Access Management

The Gartner 2020 Magic Quadrant for PAM is Here!

Today, we announced that CyberArk has been named a Leader in the Gartner 2020 Magic Quadrant for Privileged Access Management.1 CyberArk was positioned both highest in ability to execute and furthest in ...
How to Find Additional Hidden Vulnerabilities During DAST Testing

How to Find Additional Hidden Vulnerabilities During DAST Testing

Current DAST testing tools often miss vulnerabilities that make it to production. Learn how you can find additional hidden vulnerabilities during DAST testing of your web applications. The post How to Find ...
Press Release: Anitian Included in Gartner’s Market Guide for Compliance Automation Tools in DevOps

Press Release: Anitian Included in Gartner’s Market Guide for Compliance Automation Tools in DevOps

Link to release via BusinessWire PORTLAND, OR – August 5, 2020 Anitian, the leading cloud security and compliance automation provider, has been included as a Representative Vendor in Gartner’s inaugural Market Guide ...

Why Secure DevOps is the New Sheriff in Town

We’ve listened to the pain points of CISOs around the country, many of whom say managing an effective application security… The post Why Secure DevOps is the New Sheriff in Town appeared ...
DevOps Vs DevSecOps – What is the difference?

DevOps Vs DevSecOps – What is the difference?

DevOps and DevSecOps may have you wondering, what's the difference. DevSecOps simply means placing security practices early during the SDLC (Software Development Life Cycle) processes within an Agile framework. Learn more here ...
Styra

Styra Adds Declarative Tool to Generate Authorization Policies

Styra this week launched a declarative tool that enables cybersecurity teams to generate authorization policies that can be implemented programmatically by a DevOps team. Company CEO Bill Mann said Rego Policy Builder ...
Security Boulevard
Source Code Leak Lesson: Secure Development Environments

Source Code Leak Lesson: Secure Development Environments

Once again we are seeing how vulnerable and easily development environments can be exploited with the recent news of a massive trove of leaked code from 50+ enterprises across multiple industries, including ...