Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

Three Big Myths About Application Testing With SAST Tools

Jul 14, 2022 By Adam Murray In Mend

Static Application Security Testing (SAST) is one of the principal techniques for assessing the source code of applications to detect possible vulnerabilities. SAST enhances application security during the early stages of the development life cycle and plays an important role in shifting security left. However, there are quite a few myths that are often associated with implementing SAST security tools. Let’s run through the big three.

Read Post

Mend

Read more about Three Big Myths About Application Testing With SAST Tools

Mobile Application Testing Overview

Jul 13, 2022 By Pentest People In Pentest People

Pentest People have a wealth of knowledge in the area of Mobile Application Security Testing, and the professional Mobile Application Security Testing Service can be used to identify vulnerabilities that exist on your Mobile applications.

View Video

Pentest People

Read more about Mobile Application Testing Overview

Build a holistic AppSec program

Jul 11, 2022 By Boris Cipot In Synopsys

What does it mean to build a holistic AppSec program? Learn what’s involved in a holistic approach and how to get started. Digital technology is the centerpiece of modern life today. All around us, technology is transforming business operations from end-to-end, from digital-first businesses to those simply updating existing processes. According to Gartner, 65% of executives report that they accelerated the pace of their digital business initiatives in 2021.

Read Post

Synopsys

Read more about Build a holistic AppSec program

How to Leverage Self-Service Peer Benchmarking to Manage and Measure Your Software Security Program

Jul 11, 2022 By Devin Maguire In Veracode

It is not hard to set application security goals. Security teams want to reduce risk. Developers want to quickly meet the requirements of security policy and hit deadlines. Executives want growth within their risk tolerance. What is hard is defining an appropriate level of risk and measuring whether your AppSec program is efficient, effective, and returning expected outcomes based on your investments.

Read Post

Veracode

Read more about How to Leverage Self-Service Peer Benchmarking to Manage and Measure Your Software Security Program

Discover application security training services | Synopsys

Jul 11, 2022 By Synopsys In Synopsys

Synopsys security training services allow organizations to build security champions within by delivering learning-centric solutions through on-demand, virtual, or in-person sessions. The curriculum covers a range of topics so you can tackle security from all angles and depths.

View Video

Synopsys

Read more about Discover application security training services | Synopsys

Unifying Security and Development

Jul 8, 2022 By Colleen Reidy In Veracode

Most developers don’t learn about secure coding in the college IT programs. And once they join the workforce, they often don’t have the time to learn about secure coding. The responsibility of training developers in secure coding best practices usually falls on security practitioners. Security practitioners are notoriously overworked, often lacking the bandwidth to train developers. Organizations are thus turning to AppSec learning experiences built specifically for development teams.

Read Post

Veracode

Read more about Unifying Security and Development

AppSec Decoded: Get the most out of your open source software | Synopsys

Jul 7, 2022 By Synopsys In Synopsys

Watch our latest edition of AppSec Decoded as Tim Mackey, principal security strategist at Synopsys Cybersecurity Research Center, and Taylor Armerding, security advocate at Synopsys Software Integrity Group, discuss the value of Black Duck® by Synopsys audit services in the M&A world, and ways to reap the benefits of your open source software without falling victim to the risks.

View Video

Synopsys

Read more about AppSec Decoded: Get the most out of your open source software | Synopsys

Unified Summary Report

Jul 7, 2022 By Veracode In Veracode

The Unified Summary Report presents findings across all scan types in a “single pane of glass.” This update incorporates SCA results into the application summary report and makes it easier to filter and explore scan results.

View Video

Veracode

Read more about Unified Summary Report

Self Service Peer Benchmarking.

Jul 7, 2022 By Veracode In Veracode

As part of Veracode's comprehensive platform experience, peer benchmarking puts the power of Veracode’s unparalleled data into the hands of customers so they can measure their flaw and remediation performance against subsets of the #Veracode customer community directly in the Veracode portal.

View Video

Veracode

Read more about Self Service Peer Benchmarking.

3 Ways Using ASVS Can Help Your Organization

Jul 1, 2022 By Can Taylan Bilgin In Kondukto

As digital transformation continues to take over the world, security increasingly becomes a concern for companies of all sizes. No matter how big of a security team you might have, it is hard to speak a common language between security and development teams on what controls you need during the software development life cycle. To tackle this problem, OWASP has released Application Security Verification Standard towards the end of 2021.

Read Post