AppSec Blog

Virtual CISO: Leveraging External Security Expertise

Today’s organizations, both big and small, are finding that security activities consume more resources than ever before. Cyber criminals are getting better all the time, and staying just one step ahead of them is getting harder. But it’s not just more sophist...

DevSecOps Integrations

Secure Remote Access: Keeping Employees and the Organization Safe

In this age of lockdowns, social distancing and working from home, organizations must think carefully about how to extend their networks and services across the internet and into employees’ and contractors’ homes. This makes remote access security management ...

6 Threats to Development Team Productivity

Time to market is a make-or-break proposition for many development teams. A first-mover advantage can provide a competitive edge that can last for years, if not decades. However, speed isn’t the only priority when delivering software. Code needs to be high-qu...

DevSecOps

Rethinking Application Security in a Post-Pandemic World

Without a doubt, the COVID-19 pandemic has had a massive impact on the financial services landscape. Not only did businesses have to tweak their entire operations under safety regulations, but they also had to contend with a growing list of cybersecurity thre...

DevSecOps Industry AppSec

8 Common Cybersecurity Vulnerabilities in Enterprise Software

Cybersecurity is getting much attention, from the break room to the board room. Few weeks pass without another salacious story in the media about a new large-scale data breach, ransomware outbreak or other attack designed to disrupt everyday life. Cyber...

DevSecOps Industry AppSec

Vulnerabilities in enterprise software blog graphic

5 Essential App Security Analytics

Knowing which app security analytics to track will help your team be more efficient and proactive in stopping potential security threats.

DevSecOps Industry AppSec

The Role of SAST in DevSecOps

Investments in artificial intelligence are expected to reach $200 billion by 2025, driven by predictions that advancements in generative AI and machine learning will lead to significant productivity gains. Unfortunately, this bright future has a dark side as ...

DevSecOps Software Testing

How OpenSSF Collaborates on Open-Source Security

Open source software is essential to application development, particularly for the web. At the same time, it also represents a key source of application vulnerabilities. To help make open source software more secure, the Linux Foundation has announced a cross...

DevSecOps Programming Language

OpenSSF collaborates on Open-source security graphic

Understanding Cyber Threat Intelligence (CTI)

Simply put, threat intelligence – also known as cyber threat intelligence, or CTI – is information that is collected, analyzed, organized, and refined to provide insight, input, and advice about potential and current security threats or attacks that could pos...

DevSecOps

Understanding OWASP ASVS

Before open-source software (OSS) was commonplace, building applications was a tedious and time-consuming process. As it became more common to release code for community use, development time rapidly increased. Developers could build on previous work and didn...

DevSecOps

Kiuwan Shines in the Fall 2020 G2 Grid Report

Kiuwan Shines in the Fall 2020 G2 Grid Report We’re excited to announce that Kiuwan Code Security and Insights solutions have been recognized in the Fall 2020 G2 Grid Report for Static Code Analysis, due in large part to an overall customer satisfaction ratin...

Kiuwan Press Release

What Are Firmware Vulnerabilities?

Development tools are growing more advanced; large language models can now write code for us based on simple, plain English requests. Unfortunately, malicious actors also have access to increasingly powerful tools. As a result, cybersecurity risk management h...

DevSecOps Risk Management

Keep up with the latest news on cybersecurity, technical trends, and programming best practices.

Recent Posts

Virtual CISO: Leveraging External Security Expertise

Secure Remote Access: Keeping Employees and the Organization Safe

6 Threats to Development Team Productivity

Rethinking Application Security in a Post-Pandemic World