DevSecOps

Enhancing Observability in DevSecOps

Oct 15, 2020 By Sumo Logic In Sumo Logic

Digital transformation often accelerates innovation at the expense of creating an intelligence gap with massive amounts of unanalyzed data. This is where Continuous Intelligence comes into play. Join Sumo Logic’s Systems Engineer, Suresh Govindachetty, as he demonstrates how Continuous Intelligence helps find and solve information gaps, and how a single platform approach allows organisations to combine devs, operations, and security in ways that ease the burden for all teams across the organisation.

View Video

Sumo Logic

Read more about Enhancing Observability in DevSecOps

Container Inspection: Walking The Security Tightrope For Cloud DevOps

Oct 9, 2020 By Sergio Loureiro In Outpost 24

Containers are at the forefront of software development creating a revolution in cloud computing. Developers are opting for containerization at an impressive rate due to its efficiency, flexibility and portability. However, as the usage of containers increases, so should the security surrounding it. With containers comprising of many valuable components it is of the utmost importance that there are no vulnerabilities exposed when developing applications, and risks are mitigated before containers, and their contents, reach the end-user.

Read Post

Outpost 24

Read more about Container Inspection: Walking The Security Tightrope For Cloud DevOps

5 Lessons About Software Security for Cybersecurity Awareness Month

Oct 8, 2020 By Hope Goslin In Veracode

October is cybersecurity awareness month, and this year, the overarching theme is “Do Your Part. #BeCyberSmart.” When considering what “cybersmart” means in application security, we realized we unearthed some data this year that made us a little cybersmarter and could help other security professionals and developers increase their AppSec smarts as well. We’re sharing those data gems below.

Read Post

Veracode

Read more about 5 Lessons About Software Security for Cybersecurity Awareness Month

A New Framework for Modern Security

Oct 6, 2020 By Greg Martin In Sumo Logic

We are in the midst of an unprecedented convergence of events that are forcing enterprises to dramatically change how they secure their modern businesses. With the acceleration of digital transformation from COVID-19, work-from-home initiatives, the continued growth of SaaS and the increasing adoption of microservices-based applications, the modern enterprise threat landscaping is transforming rapidly.

Read Post

Sumo Logic

Read more about A New Framework for Modern Security

Veracode Streamlines AppSec Workflows for Developerswith New GitHub Action

Oct 5, 2020 By Veracode In Veracode

DevSecOps becomes a seamless experience by making AppSec tools accessible in familiar interface

Read Post

Veracode

Read more about Veracode Streamlines AppSec Workflows for Developerswith New GitHub Action

Veracode Makes DevSecOps a Seamless Experience With GitHub Code Scanning

Oct 5, 2020 By Meaghan McBee In Veracode

Developers face a bevy of roadblocks in their race to meet tight deadlines, which means they often pull from risky open source libraries and prioritize security flaws on the fly. In a recent ESG survey report, Modern Application Development Security, we saw that 54% of organizations push vulnerable code just to meet critical deadlines, and while they plan for remediation on a later release, lingering flaws only add to risky security debt.

Read Post

Veracode

Read more about Veracode Makes DevSecOps a Seamless Experience With GitHub Code Scanning

CNCF Webinar: Critical DevSecOps considerations for Multicloud Kubernetes

Oct 2, 2020 By Sysdig In Sysdig

The distributed nature of Kubernetes has turned both legacy infrastructure and traditional cybersecurity approaches on their heads. Organizations building cloud-native environments in their own data centers grapple with operationalizing and scaling Kubernetes clusters, and then ensuring system-wide security from the infrastructure layer all the way up to each container. In this webinar, you’ll hear from two cloud-native experts in infrastructure and security who will offer up valuable insights on.

View Video

Sysdig

Read more about CNCF Webinar: Critical DevSecOps considerations for Multicloud Kubernetes

96% of Organizations Use Open Source Libraries but Less Than 50% Manage Their Library Security Flaws

Oct 1, 2020 By Hope Goslin In Veracode

Most modern codebases are dependent on open source libraries. In fact, a recent research report sponsored by Veracode and conducted by Enterprise Strategy Group (ESG) found that more than 96 percent of organizations use open source libraries in their codebase. But – shockingly – less than half of these organizations have invested in specific security controls to scan for open source vulnerabilities.

Read Post

Veracode

Read more about 96% of Organizations Use Open Source Libraries but Less Than 50% Manage Their Library Security Flaws

Hot off the Press: Veracode Named a 2020 Gartner Peer Insights Customers' Choice for AST

Oct 1, 2020 By Hope Goslin In Veracode

Veracode has been officially recognized by Gartner Peer Insights as a 2020 Customers’ Choice for Application Security Testing. The report includes Veracode’s aggregate score of 4.6 out of 5 stars out of 95 independent customer reviews (as of July 31, 2020), and of the reviewers, 92 percent said that they would recommend Veracode’s AST solutions. Veracode, the largest global provider of application security (AST) solutions.

Read Post

Veracode

Read more about Hot off the Press: Veracode Named a 2020 Gartner Peer Insights Customers' Choice for AST

Watch Here: Using Analytics to Measure AppSec ROI

Sep 24, 2020 By Meaghan McBee In Veracode

Maximizing the value of your application security (AppSec) analytics not only provides a window into whether or not you’re meeting security requirements but also it helps you prove your ROI. That can be a challenge for a lot of organizations – when stakeholders are not close to the data, they may miss milestones like hitting goals for reducing security debt or even how much AppSec program has matured by data.

Read Post