AppSec Blog

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Category: DevSecOps

Recent Posts

6 Threats to Development Team Productivity

Time to market is a make-or-break proposition for many development teams. A first-mover advantage can provide a competitive edge that can last for years, if not decades. However, speed isn’t the only priority when delivering software. Code needs to be high-qu...

DevSecOps

Rethinking Application Security in a Post-Pandemic World

Without a doubt, the COVID-19 pandemic has had a massive impact on the financial services landscape. Not only did businesses have to tweak their entire operations under safety regulations, but they also had to contend with a growing list of cybersecurity thre...

DevSecOps Industry AppSec

8 Common Cybersecurity Vulnerabilities in Enterprise Software

Cybersecurity is getting a lot of attention, from the break room to the board room. Few weeks pass without another salacious story in the media about a new large-scale data breach, ransomware outbreak or other attack designed to disrupt normal life. Cyb...

DevSecOps Industry AppSec

5 Essential App Security Analytics

Knowing which app security analytics to track will help your team be more efficient and proactive in stopping potential security threats.

DevSecOps Industry AppSec

The Role of SAST in DevSecOps

Investments in artificial intelligence are predicted to reach $200 billion by 2025, fueled by predictions that advancements in generative AI and machine learning will result in massive productivity gains. Unfortunately, this bright future has a dark side as w...

DevSecOps Software Testing

How OpenSSF Collaborates on Open-Source Security

Open source software is essential to application development, particularly for the web. At the same time, it also represents a key source of application vulnerabilities. To help make open source software more secure, the Linux Foundation has announced a cross...

DevSecOps Programming Language

Understanding Cyber Threat Intelligence (CTI)

Simply put, threat intelligence – also known as cyber threat intelligence, or CTI – is information that is collected, analyzed, organized, and refined to provide insight, input, and advice about potential and current security threats or attacks that could pos...

DevSecOps

Understanding OWASP ASVS

Before open-source software (OSS) was commonplace, building applications was a tedious and time-consuming process. As it became more common to release code for community use, development time rapidly increased. Developers could build on previous work and didn...

DevSecOps

What Are Firmware Vulnerabilities?

Development tools are growing more advanced; large language models can now write code for us based on simple plain English requests. Unfortunately, malicious actors also have access to increasingly powerful tools. As a result, cybersecurity risk management ha...

DevSecOps Risk Management

8 Tips for Mobile App Security

Delivering a secure mobile app to users requires developers to prioritize security throughout the software’s development pipeline. An organization’s System Development Life Cycle (SDLC) should include easy-to-follow security instructions that consider t...

DevSecOps Industry AppSec Risk Management

October Is Cybersecurity Awareness Month

October is Cybersecurity Awareness Month. The theme for 2020 is: “Do Your Part. Be #CyberSmart.” This event, put on by CISA and the National Cyber Security Alliance, is in its seventeenth year. The campaign aims to increase overall cybersecurity aw...

DevSecOps

How to Implement Threat Modeling in DevSecOps

With cybersecurity incidents increasing at an alarming rate, modern development teams are transitioning to a DevSecOps framework to integrate security into the entire software development lifecycle (SDLC). This approach helps create more secure and resilient ...

DevSecOps Risk Management

« Previous Next »

See Kiuwan in Action

App and software breaches can have lasting consequences. They also aren’t going anywhere. Finding vulnerabilities in your app and code early is critical. Maintaining strong security practices during and after development is essential to protecting your business.

Request a Demo