Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Mend

mend

Forrester's State of Application Security, 2020: Key Takeaways

May 27, 2020 By Patricia Johnson In Mend

In The State of Application Security, 2020, Forrester predicts application vulnerabilities will continue to be the most common external attack method. Because of this, organizations are urged to continue testing early in the software development life cycle (SDLC), implementing auto-remediation for security vulnerabilities, and shoring up production protections.

Read Post
mend

DevSecOps vs. SecDevOps: A Rose by Any Other Name?

May 21, 2020 By Julie Peterson In Mend

The terms DevSecOps and SecDevOps are often -- but not always -- used interchangeably. So is there any real difference between the two terms or is it all just semantics? Let’s look at how the role of security has changed as the software development life cycle (SDLC) has evolved to explore whether there’s really any difference between these two words.

Read Post
mend

Gartner 2020 Magic Quadrant for Application Security Testing: Key Takeaways

May 14, 2020 By Patricia Johnson In Mend

The Gartner Magic Quadrant for Application Security Testing 2020 reports a 50% increase in the number of their end-user client conversations about DevSecOps and AST (Application Security Testing) tools, in 2019. According to the report, users continue to adopt DevOps methods like integrating security into the software development lifecycle from the earliest stages of development.

Read Post

From Zero to DevSecOps: How to Implement Security at the Speed of DevOps

May 10, 2020 By Mend In Mend
Your organization has already embraced the DevOps methodology? That’s a great start. But what about security? It’s a fact - many organizations fear that adding security to their DevOps practices will severely slow down their development processes. But this doesn’t need to be the case. the DevOps pipeline
View Video
mend

May Open Source Security Vulnerabilities Snapshot

May 7, 2020 By Patricia Johnson In Mend

May is here, and with it our May’s open source security snapshot, our monthly overview of the new open source security vulnerabilities published in April, to see what’s new in the ever-evolving open source security ecosystem. In order to give you all the low-down on emerging or ongoing trends, our hardworking research team analyzed all of the new open source security vulnerabilities added to the WhiteSource database.

Read Post
mend

Observability: What You Need to Know

Apr 30, 2020 By Ayala Goldstein In Mend

Observability has recently become quite the buzzword, populating headlines in DevOps and IT publications. Industry experts like Charity Majors, CTO and co-founder of Honeycomb, and Cindy Sridharan, to name a few, have been spreading the word about the importance of observability, making it clear that it’s more than just a passing trend, it’s an approach that DevOps organizations need to adopt.

Read Post
mend

Copy and Paste Code: How to Lose Your Job Using Open Source Code

Apr 23, 2020 By Julie Peterson In Mend

Have you ever wondered whether it’s ok to copy and paste code from an open source project? If you have, you’re not alone. A quick look around several developer websites shows a number of variations on this age-old question. It is never ok to copy and paste code from an open source project directly into your proprietary code. Don’t do it. Just don’t. Even if you’re on a tight deadline. Even if it’s only one loop.

Read Post

Securing Container-Based Applications at the Speed of DevOps

Apr 19, 2020 By Mend In Mend
Thanks to containerization and automation, applications are being developed and delivered faster than ever. With tools such as AWS ECR, developers are able to store, manage and deploy Docker container images without having to worry about operating their own container repositories or scaling the underlying infrastructure. With this, however, arise challenges around managing the security and compliance aspect of your container images. With tools such as WhiteSource, developers are able to manage the security of their containers and container images with no impact on agility and speed.
View Video

Whose vulnerability is it anyway?

Apr 19, 2020 By Mend In Mend
Application security is a top priority today for companies that are developing software. However, it is also becoming more challenging and complex as release frequency continues to rise, more open source components are adopted, and the requirements for data security are getting stricter. Thanks to new DevOps practices and tools, development cycles are getting shorter, allowing organizations to meet market demands and deliver a superior customer experience, but is application security keeping up?
View Video
Subscribe to Mend

Copyright © 2024 OpsMatters™. All rights reserved.