DevSecOps Archives - Help Net Security

DevSecOps

Application security approaches broken by rising adoption of cloud-native architectures

June 8, 2021

The rising adoption of cloud-native architectures, DevOps, and agile methodologies has broken traditional approaches to application security, a survey of 700 CISOs by Coleman …

A leadership guide for mitigating security risks with low code platforms

May 25, 2021

The low code market continues to grow, increasingly finding adoption for more diverse and serious applications among enterprises and independent software vendors (ISVs). The …

The state of AppSec and the journey to DevSecOps

May 24, 2021

While the perceived benefits of DevSecOps to both security and DevOps are high, much progress must be made in defining a repeatable and consistent governance model for true …

DevOps didn’t kill WAF, because WAF will never truly die

May 14, 2021

The web application firewall (WAF) is dead, they say, and DevOps is the culprit, found over the body in the server room with a blade in its hand and splattered code on its …

Infrastructure drift: A multidimensional problem with the need for new DevSecOps tools

May 13, 2021

As modern infrastructures get more complex everyday, DevOps teams have a hard time tracking infrastructure drift. The multiplicity of factors involved when running …

Digital business requires a security-first mindset

April 19, 2021

Security is an undeniable necessity for the survival and success of any company. COVID-19 accelerated digital transformation initiatives across all industries and this shift …

The influence of the Agile Manifesto, 20 years on

March 17, 2021

On 11th February 2001, many software delivery thought leaders came together in Snowbird, Utah, to discuss how to create processes that can enable enterprises to continuously …

Tips for boosting the “Sec” part of DevSecOps

February 17, 2021

The most significant barrier to achieving DevSecOps is the continued perception that “Sec” is not already a part of “Dev” and “Ops”, says James Arlen, CISO at cloud data …

Retail and hospitality sector fixing software flaws at a faster rate than others

January 22, 2021

The retail and hospitality sector is fixing software flaws at a faster rate than five other sectors, a Veracode analysis of more than 130,000 applications reveals. The ability …

Enterprises move on from legacy approaches to software development

January 18, 2021

Application development and maintenance services in the U.S. are evolving to meet changing demands from enterprises that need dynamic applications with rich user interfaces, …

SQL injection: The bug that seemingly can’t be squashed

January 11, 2021

If you’re in a hands-on cybersecurity role that requires some familiarity with code, chances are good that you’ve had to think about SQL injection over and over (and over) …

How to make DevSecOps stick with developers

December 14, 2020

While DevOps culture has brought innovation to the industry and transformed the way software is developed, it’s arguably an outdated concept. The truth is that DevOps has …

DevSecOps

Application security approaches broken by rising adoption of cloud-native architectures

A leadership guide for mitigating security risks with low code platforms

The state of AppSec and the journey to DevSecOps

DevOps didn’t kill WAF, because WAF will never truly die

Infrastructure drift: A multidimensional problem with the need for new DevSecOps tools

Digital business requires a security-first mindset

The influence of the Agile Manifesto, 20 years on

Tips for boosting the “Sec” part of DevSecOps

Retail and hospitality sector fixing software flaws at a faster rate than others

Enterprises move on from legacy approaches to software development

SQL injection: The bug that seemingly can’t be squashed

How to make DevSecOps stick with developers

Don't miss

The importance of compute lifecycle assurance in a zero-trust world

With Crime-as-a-Service, anyone can be an attacker

Ransomware attacks skyrocketed in H1 2021

Critical vulnerabilities may allow attackers to compromise hospitals’ pneumatic tube system

CISA launches US federal vulnerability disclosure platform