Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

Get Management Buy-in with AppSec Metrics

Oct 17, 2023 By Cenk Kalpakoğlu In Kondukto

Getting management to back your application security plans can be a tough sell. Metrics are vital because they help you understand how effective your initial cybersecurity measures are and how to turn them into measurable data that's easy for everyone to understand. This article will explore how to use metrics to get the support you need and make your application security programs more effective.

Read Post

Kondukto

Read more about Get Management Buy-in with AppSec Metrics

New ESG Research Report Outlines Best Practices for Effective Application Security Programs

Oct 17, 2023 By Adam Murray In Mend

New research from TechTarget’s Enterprise Strategy Group (ESG) has identified that organizations’ application security programs struggle to keep up with the pace of software development, and it reveals best practices to secure modern software applications.

Read Post

Mend

Read more about New ESG Research Report Outlines Best Practices for Effective Application Security Programs

6 steps for scaling risk-based AppSec programs

Oct 13, 2023 By Julia Kraut In Snyk

Scaling a risk-based AppSec program involves adapting your security practices to accommodate the growth and evolving needs of your business, while effectively managing and mitigating security risks.

Read Post

Snyk

Read more about 6 steps for scaling risk-based AppSec programs

Security team at 1Password monitors, detects, and responds to threats with Datadog Cloud SIEM

Oct 13, 2023 By Datadog In Datadog

View Video

Datadog

Read more about Security team at 1Password monitors, detects, and responds to threats with Datadog Cloud SIEM

Detecting vulnerable curl and libcurl versions with Black Duck SCA | Synopsys

Oct 12, 2023 By Synopsys In Synopsys

Learn how to identify which of your applications are impacted by the recent open source libcurl and curl vulnerability with Black Duck SCA.

View Video

Synopsys

Read more about Detecting vulnerable curl and libcurl versions with Black Duck SCA | Synopsys

Thought your Node.js latest Docker image was safe?

Oct 12, 2023 By Jan Schulte In Panoptica

For all developers who run containerized JavaScript workloads in production: Is relying on node:latest as your base image a safe choice? It's effective from a developer productivity standpoint as you're up and running quickly. Have you ever wondered if the image is secure? This blog post examines the potential security implications of using node:latest as your base image.

Read Post

Panoptica

Read more about Thought your Node.js latest Docker image was safe?

Web Application Security: 5 Security Tips for Software Engineers

Oct 11, 2023 By Michael Man In Veracode

As a software engineer in a cloud-native world, you’re the first line of defense in web application security. Armed with a few best practices that have a huge impact, securing both the code you create and the code you compile can be simple. Here are five tips that make your role easier in protecting data with secure development.

Read Post

Veracode

Read more about Web Application Security: 5 Security Tips for Software Engineers

Modern Application & Software Security Roundtable - with Jim Manico & Bearer

Oct 11, 2023 By Bearer In Bearer

Jim Manico, Guillaume Montard, and Nipun Gupta discuss how the application and software security paradigm has changed in 2023, and what technologies like SAST and code security might look like in the future. Recorded on October 9th, 2023.

View Video

Bearer

Read more about Modern Application & Software Security Roundtable - with Jim Manico & Bearer

Find open source vulnerabilities in containers with Black Duck Binary Analysis | Synopsys

Oct 6, 2023 By Synopsys In Synopsys

Discover how to identify open source components and vulnerabilities in various software binaries including container images, mobile apps, and embedded software with Black Duck Binary Analysis What’s covered?

View Video

Synopsys

Read more about Find open source vulnerabilities in containers with Black Duck Binary Analysis | Synopsys

Track and manage open source risks across your application portfolio with Black Duck SCA | Synopsys

Oct 6, 2023 By Synopsys In Synopsys

Learn how your security teams can take a proactive approach to managing open-source risk using Black Duck. Join us as we explore the process of analyzing scan results, addressing new CVEs, and prioritizing remediation efforts.

View Video