DevSecOps

Announcing the 11th Volume of Our State of Software Security Report

Oct 26, 2020 By Suzanne Ciccone In Veracode

Today, we released the 11th volume of our annual State of Software Security (SOSS) report. This report, based on our scan results, always offers an abundance of insights and information about software vulnerabilities – what they are, what’s causing them, and how to address them most effectively. This year is no different. With last year’s SOSS Volume 10, we spent some time looking at how much things had changed in the decade spanning Volume 1 to Volume 10.

Read Post

Veracode

Read more about Announcing the 11th Volume of Our State of Software Security Report

[webinar] How To Build A Cloud Native DevSecOps Pipeline With JFrog and AWS

Oct 26, 2020 By JFrog In JFrog

Are you taking advantage of the best practices to easily adopt DevSecOps in the cloud? Discover the strategies and tools you can use to ensure you can easily overcome the challenges of securing your software releases.

View Video

JFrog

Read more about [webinar] How To Build A Cloud Native DevSecOps Pipeline With JFrog and AWS

How The JFrog Platform Drives DevSecOps At Scale

Oct 23, 2020 By JFrog In JFrog

With the JFrog Platform at the core of your DevSecOps tool chain, you will over achieve your deployment frequency and change lead time metrics. By integrating JFrog into your existing CI environment current skills (people) and processes are maximized, while aggregating all the commercial and open source software artifacts, dependencies and documentation for re-use across all of your development projects to drive consistency and quality of the build.

View Video

JFrog

Read more about How The JFrog Platform Drives DevSecOps At Scale

Get effective DevSecOps with version control

Oct 19, 2020 By Taylor Armerding In Synopsys

“Version control” sounds a bit like something used by people scattered around the country trying to collaborate on a story. But it’s a crucial part of software development, especially in the DevSecOps era, where you need to ensure that the speed of the CI/CD pipeline doesn’t outrun quality and security. That’s because software development isn’t like an assembly line where a product moves from one group of workers to the next in a perfectly coordinated sequence.

Read Post

Synopsys

Read more about Get effective DevSecOps with version control

Watch Here: How to Build a Successful AppSec Program

Oct 16, 2020 By Meaghan McBee In Veracode

Cyberattackers and threat actors won’t take a break and wait for you to challenge them with your security efforts – you need a proactive application security (AppSec) program to get ahead of threats and remediate flaws quickly. It’s critical that you stand up an AppSec program covering all the bases, from which roles each team member will have to alignment on KPIs and goals, and even a detailed application inventory to stay on top of your code.

Read Post

Veracode

Read more about Watch Here: How to Build a Successful AppSec Program

Enhancing Observability in DevSecOps

Oct 15, 2020 By Sumo Logic In Sumo Logic

Digital transformation often accelerates innovation at the expense of creating an intelligence gap with massive amounts of unanalyzed data. This is where Continuous Intelligence comes into play. Join Sumo Logic’s Systems Engineer, Suresh Govindachetty, as he demonstrates how Continuous Intelligence helps find and solve information gaps, and how a single platform approach allows organisations to combine devs, operations, and security in ways that ease the burden for all teams across the organisation.

View Video

Sumo Logic

Read more about Enhancing Observability in DevSecOps

Container Inspection: Walking The Security Tightrope For Cloud DevOps

Oct 9, 2020 By Sergio Loureiro In Outpost 24

Containers are at the forefront of software development creating a revolution in cloud computing. Developers are opting for containerization at an impressive rate due to its efficiency, flexibility and portability. However, as the usage of containers increases, so should the security surrounding it. With containers comprising of many valuable components it is of the utmost importance that there are no vulnerabilities exposed when developing applications, and risks are mitigated before containers, and their contents, reach the end-user.

Read Post

Outpost 24

Read more about Container Inspection: Walking The Security Tightrope For Cloud DevOps

5 Lessons About Software Security for Cybersecurity Awareness Month

Oct 8, 2020 By Hope Goslin In Veracode

October is cybersecurity awareness month, and this year, the overarching theme is “Do Your Part. #BeCyberSmart.” When considering what “cybersmart” means in application security, we realized we unearthed some data this year that made us a little cybersmarter and could help other security professionals and developers increase their AppSec smarts as well. We’re sharing those data gems below.

Read Post

Veracode

Read more about 5 Lessons About Software Security for Cybersecurity Awareness Month

A New Framework for Modern Security

Oct 6, 2020 By Greg Martin In Sumo Logic

We are in the midst of an unprecedented convergence of events that are forcing enterprises to dramatically change how they secure their modern businesses. With the acceleration of digital transformation from COVID-19, work-from-home initiatives, the continued growth of SaaS and the increasing adoption of microservices-based applications, the modern enterprise threat landscaping is transforming rapidly.

Read Post