Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Strange Bedfellows: Software, Security and the Law

Jul 21, 2023 By Mend In Mend
The ongoing rise in cyberattacks across the software supply chain and a shifting regulatory landscape are forging an unlikely alliance between CISOs, software leaders and legal experts. Privacy, the shifting and diverse regulatory landscape, liability and new AI/ML use cases all present unique challenges and opportunities for risk management, but to best navigate these challenges, legal teams must be involved, too. Why? Because today, software vulnerabilities can represent not just a business risk but a legal risk.
View Video

Two Birds, One Stone: Shrinking Security Debt and Attack Surfaces

Jul 21, 2023 By Mend In Mend
Cybersecurity teams and developers continually struggle to reconcile what can seem like two competing priorities. Delivering new capabilities and addressing existing security technical debt. But what if they can do both at the same time? Forward-leaning AppSec programs are finding smart ways to reduce security debt by instituting a strategic approach to managing security vulnerabilities. This approach starts by reducing the attack surface early on and throughout development.
View Video

Malicious Package Trend Analysis

Jul 21, 2023 By Mend In Mend
It might seem obvious that regularly upgrading software and dependencies means your software is inherently more secure, but in practice, this is hard to achieve. Choice Hotels struggled to manually maintain their codebase and remediate all the transitive vulnerabilities lurking in the code. Today’s compositional applications created a complex archeological exploration challenge for developers trying to resolve security issues across a codebase. It was time-consuming, tedious, and imperfect.
View Video
Sponsored Post
manageengine

Automation and the value of power management

Jul 20, 2023 By Nivetha T In ManageEngine
Has the pandemic come to an end? Are we back to a full-fledged, in-office work style? The answer is absolutely not. What we proposed as the "new normal" (working from home) back in 2020 is now just normal in 2023. Gartner research predicted that "almost 50% of employees will will continue to work remotely post-pandemic," which is the reality now! With this shifting trend towards a flexible work culture, it's essential for front line IT workers, aka sysadmins, to stay equipped with a supercharged remote troubleshooting toolkit to rescue endpoints in trouble.
Read Post
Snyk

8 tips for securing your CI/CD pipeline with Snyk

Jul 20, 2023 By Eric Smalling In Snyk

Securing your CI/CD pipeline is critical to modern application security. So, we created a cheat sheet to make the process easier. In this post, we’ll cover using Snyk in your CI/CD pipelines to catch security issues quickly and empower your developers to fix them before they get to production.

Read Post
mend

Why is Software Vulnerability Patching Crucial for Your Software and Application Security?

Jul 20, 2023 By Adam Murray In Mend

Software vulnerability patching plays a critical role in safeguarding your code base, software, applications, computer systems, and networks against potential threats, and ensuring they’re compliant, and optimized for efficiency. Organizations’ codebases have become increasingly complex, involving sophisticated relationships between components and their dependencies.

Read Post
styra

Real-time authorization with Enterprise OPA and gRPC

Jul 19, 2023 By Philip Conrad In Styra

In this article, you will learn about how to achieve high-throughput, real-time authorization. You should gain a basic understanding of the different protocols for interacting with the Open Policy Agent (OPA) and Styra Enterprise OPA APIs, as well as how and when to use different options. We will also cover the strengths of different protocol choices, and where they may make sense in your system architecture.

Read Post

Unlocking AI Potential: Streamlining Database Access with Teleport

Jul 19, 2023 By Teleport In Teleport
- Captivated by the capabilities of OpenAI’s ChatGPT, today, many of our data research friends are experimenting with tools and datasets to learn how Artificial Intelligence (AI) and Generative Pretrained Transformers (GPT) can be used to solve unique and challenging business problems. While many sample corpora datasets exist, experimenting on your production datasets is often needed but difficult due to access restrictions, challenging network configurations, or complicated approval processes.
View Video

Understanding GitGuardian Roles and Teams

Jul 18, 2023 By GitGuardian In GitGuardian
GitGuardian makes it easy for teams of any size to manage code security. We also make it simple to manage access to the GitGuardian dashboard as your security team grows and you need to assign roles and permissions. In this video, we will take a closer look at the various Workspace member roles. We will also explore how to create and manage Teams, allowing you to group users and incidents, as well as give users more fine-grained permissions.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.