DevSecOps best practices Archives

database, Real-time, data, data governance, concentric, ai, AWS, amazon, cloud, security, tools, Bedrock, data security, data breach, third parties, searchlight, data, AWS, Amazon, cloud security, just-in-time, security, Snyk, cloud, data, data lake, data, cloud storage, next-generation, cloud-native, cloud security, organizations, endpoint data Trend Micro

Mobile App Platforms: Don’t Let Database Security Come Back to Bite You

Mert Celik | November 20, 2025 | AI-generated code risks, app database protection, backend security, cloud database security, cryptographic purging, data lifecycle management, DevSecOps best practices, Firebase security misconfiguration, Identity Verification, insider threats, least privilege access, mobile app security, mobile data breaches, Role-Based Access Control, secure coding practices, secure mobile development, Tea app breach, third-party API security

The Tea app breach highlights how weak back-end security can expose sensitive user data. Learn essential strategies for access control, data lifecycle management and third-party risk reduction ...

Security Boulevard

Webinar Recap: Best Practices for Managing (and Supercharging) Your Software Supply Chain

Sonatype | October 28, 2022 | DevSecOps best practices, Events and Webinars, Forrester

“Everyone is responsible for delivering reliable, secure, high-quality software and you need to do it in a way that you can release frequently and with confidence.” - Janet Worthington, Senior Analyst, Forrester ...

Sonatype Blog

DevSecOps Elite and Their Reference Architecture

Katie McCaskey | October 25, 2019 | DevSecOps, devsecops architectures, DevSecOps best practices, DevSecOps journey, Post security/devsecops

Who are members of the DevSecOps elite, and what tools do they use? And, why should you care? The Sonatype community has a few insights. Two Sonatypers shared insights at DevOps World ...

Sonatype Blog

20 DevSecOps Pros Reveal the Most Important Considerations in Building a DevSecOps Pipeline

Pan Chhum | October 10, 2019 | Building a DevSecOps Pipeline, DevSecOps, DevSecOps best practices, Security Research & Strategy

In a recent Threat Stack report, 44 percent of DevOps professionals we surveyed said that when it comes to security-related issues, they’d have to rely on someone else. Even if DevOps pros ...

Blog – Threat Stack

Take This Interactive DevSecOps Reference Architecture For a Test Drive

Katie McCaskey | August 30, 2019 | DevSecOps, devsecops architectures, DevSecOps best practices, DevSecOps journey, DevSecOps Maturity model, FEATURED, Post security/devsecops, reference architecture

How do you get started with DevSecOps? There is so much to consider -- people, processes, tools, and measurement. To help plan and build a DevSecOps practice we’ve offered 40 reference architecture ...

Sonatype Blog

Success Requires Reflection on DevSecOps Failures

DJ Schleen | August 23, 2019 | DevOps culture, DevSecOps, DevSecOps best practices, DevSecOps Maturity model, FEATURED, maturity model, Post security/devsecops

It was just over a year ago on an extremely hot and humid day in Singapore when a group of DevSecOps nomads gathered to share our stories at DevSecOps Days. We represented ...

Sonatype Blog

DevSecOps best practices

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On