Topic: devsecops

Report: Developers aren’t to blame for security issues

The idea that developers don’t care about application security is a myth. A recently released report found that not only do developers take application security seriously, they take the time to find and fix vulnerabilities in their applications. “Developers want to create great code, and to them that also means code that won’t get their … continue reading

SD Times news digest: Android 8.1 final developer preview, Fugue’s new capabilities, and VMware and AWS expanded partnership

The final developer preview of Android 8.1 is now available. This is the last update Google plans to roll out before the operating system’s official launch. The latest update will have optimizations for Android Go and a new Neural Networks API, as well as several other enhancements. Android 8.1 will be available on all supported … continue reading

CA Technologies focuses on the Modern Software Factory at CA World

CA Technologies is bringing agile practices, intelligent automation, experience insights and end-to-end security to customers in its latest release. The company has announced the addition of more than 20 new products and enhancements to its Modern Software Factory portfolio at CA World 2017. “The Modern Software Factory frames how organizations transform themselves by leveraging agile, … continue reading

Building application security in from start to finish

Building end-to-end security into the software development process from the requirements phase through code delivery to production, is easier said than done. Often companies only run a few security tests and activities. That’s no longer good enough. In today’s environment it’s necessary to use multiple techniques to scour the entire software development lifecycle (SDLC) from … continue reading

veracode

Veracode survey indicates cybersecurity skills gap

Today’s formal education shows significant security skills gaps in the IT and developer professional community. According to new research from Veracode and DevOps.com, 76 percent of developers indicated security and secure development education is needed for today’s world of coding, but it’s missing from current curriculums. By not including security as part of bachelor’s or … continue reading

WhiteHat Security: Improving application security with DevSecOps

Does the DevSecOps approach make a difference when it comes to improving application security? According to this year’s 12th annual WhiteHat Security “Application Security Statistics Report,” it certainly does. This year’s WhiteHat report includes a case study that details a large health organization’s successful implementation of a DevSecOps approach.  According to the study, critical vulnerabilities … continue reading

Sonatype Integrates Nexus Lifecycle with Microsoft Visual Studio

Sonatype, the leader in software supply chain automation, today announced that it has released a new version of Nexus Lifecycle that includes an extension to Microsoft Visual Studio, a popular integrated development environment (IDE). This new Nexus Lifecycle integration empowers millions of Visual Studio developers with direct access to Sonatype’s open source intelligence engine so … continue reading

Instrumentation: Embracing software without compromising security

Companies face a terrible choice. Either transform their business into software and accept rampant vulnerabilities and breaches, or lose the innovation race with their competitors. Companies always choose software – there will be 111 billion lines of new code written in 2017, according to a Cybersecurity Ventures report. And our traditional approaches simply aren’t anywhere … continue reading

Report: Organizations embracing DevSecOps automation

The DevOps community is struggling with bringing security into the organization and across the software development life cycle (SDLC). However, new research from Sonatype reveals that while companies continue to face breaches, mature development organizations finally realize how critical it is to weave automated security early in the SDLC. Sonatype, a software automation and security … continue reading

DBmaestro’s DevSecOps feature, JetBrains’ Kotlin 1.1, and Tableau 10.2—SD Times news digest: March 1, 2017

DBmaestro is adding a DevSecOps comment to its DevOps solution. DevSecOps is a new philosophy that integrates security into the life cycle. According to the company, this maximizes risk management, threat prevention, flexibility, speed, and time to market. The Policy Control Manager is designed to eliminate risks, and reduce downtime and loss of data. “DBmaestro … continue reading

Necessity is the mother of the ‘Rugged DevOps’ movement

No matter how good your perimeter security is, experts agree: Your system has been breached, whether you know it or not. The costs of security flaws—cybersecurity expert Joe Franscella calls them “The Five Horsemen of the Internet Apocalypse: Scam, Extortion, Embarrassment, Theft and Death”—are enormous. So why don’t we consider security a first-class citizen in … continue reading

Ad will close in seconds
Continue to site
Widgets Magazine
HTML Snippets Powered By : XYZScripts.com

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!