In Episode 75 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA discuss the importance of identity solutions as part of a cyber security strategy ...
DevSecOps
August 29, 2024
You've probably felt the pressure to deploy faster, scale quicker, and innovate constantly. It's exhilarating, but it can also be terrifying. What if a misconfiguration exposes your entire infrastructure? What if a secret gets leaked in a log file? Despite concerns, container security can actually reduce your attack surface, not expand it, and help lock down your containerized applications without sacrificing the agility that drew you to containers in the first place ...
August 27, 2024
Cyberattacks are becoming much more sophisticated and frequent, leaving organizations constantly pressured to prioritize security at every stage of software development ... To counter these threats, one solution is for DevSecOps to embrace "shift-left" testing — a practice that involves moving testing earlier in the software development lifecycle ...
August 23, 2024
In Episode 74 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA compare one-off best-in-class tools vs. all-in-one security solutions ...
August 22, 2024
Development velocity is a standard KPI in software development, while QA velocity is rarely measured. Even with regulatory and compliance demands, DevOps methodologies, and the shifting left of numerous software testing functions, quality assurance topics (like performance, usability, security, and dependability) continue to be an afterthought in 2024 ...
August 21, 2024
CISOs are struggling with the need to empower both development and application security (AppSec) teams with the productivity benefits of AI tools while establishing governance to mitigate emerging risks, according to Seven Steps to Safely Use Generative AI in Application Security, a new report ...
August 16, 2024
In Episode 73 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA provide a recap of the Black Hat and DEF CON conferences ...
August 09, 2024
In Episode 72 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA to discuss the Microsoft DDoS attack and the CrowdStrike outage ...
August 07, 2024
Patrick Debois, the godfather of DevOps, once tweeted: "DevOps is about removing the friction between silos. All the rest is engineering." His idea, which grew into DevSecOps, integrates developers, IT operations, quality assurance, and InfoSec teams' security approaches in the software development lifecycle (SDLC), helping to address vulnerabilities proactively rather than discover them later in the game ...
August 02, 2024
In Episode 71 of the Cybersecurity Awesomeness Podcast, Maggie MacAlpine, Director of Cybersecurity Partnerships and Cybersecurity Evangelism at Seceon, joins Chris Steffen and Ken Buckler from EMA to discuss how managed security service providers (MSSPs) can improve their security offerings with the right security solutions ...
July 30, 2024
To better facilitate the secure development of software built and bought by federal agencies, the Cybersecurity and Infrastructure Security Agency (CISA) and Office of Management and Budget (OMB) created the Secure Software Development Attestation form ... While the time to fill out the Secure Software Attestation Form has come and gone for critical software and around the corner for all software, a recent survey from Lineaje, conducted a month before the June deadline, revealed significant gaps in software producers' preparedness and awareness ...
July 29, 2024
Security teams are struggling to keep pace with the risks posed by organizations' dependency on modern applications — the technology that underpins all of today's most used sites, according to Cloudflare's State of Application Security 2024 Report ...
July 26, 2024
In Episode 70 of the Cybersecurity Awesomeness Podcast, Stephan Jou, Sr. Director, Security Analytics at OpenText, joins Chris Steffen and Ken Buckler from EMA to discuss using AI in your XDR solutions ...
July 22, 2024
Considering the growing sophistication and frequency of cyberattacks, enterprises must make security a priority when developing new applications. To protect sensitive data and preserve the integrity of corporate operations, it's essential to follow the best practices. This blog discusses the best practices for secure enterprise application development so that your subsequent application development becomes easy, safe, and time effective ...
July 19, 2024
In Episode 69 of the Cybersecurity Awesomeness Podcast, Chris Steffen from EMA discusses how to best correlate and utilize your vast enterprise data stores using a data fabric with Nicole Bucala, Databee CEO, and Paul Kivikink, Databee SVP of Products and Alliances ...
July 16, 2024
API abuse is rampant, impacting organizations of all sizes and industries ... Despite increasing awareness, many organizations are still in the initial stages of implementing strong API security. Our recent research, the Salt Security State of API Security Report 2024, painted a concerning picture of the current state of the market ...
July 12, 2024
In Episode 68 of the Cybersecurity Awesomeness Podcast, Sam Kumarsamy, Director of Product Marketing at OpenText, joins Chris Steffen and Ken Buckler from EMA to discuss leveraging AI for audits of Static Application Security Testing (SAST) ...
July 09, 2024
In the latest annual PHP Landscape report from Zend by Perforce, respondents were asked about their confidence that their PHP applications are secure. On average, over half are very confident, 27% saying they are somewhat confident and just over 18% saying they are extremely confident ...
July 08, 2024
In the modern IT ecosystem, each SaaS instance, DevOps service, and hardware device has a web interface. Generative AI is also now creating many more of these interfaces, resulting in thousands of exposed web applications for large enterprises. Despite this fact, most security teams only test monthly at best ...
July 05, 2024
In Episode 67 of the Cybersecurity Awesomeness Podcast, Sam Kumarsamy, Director of Product Marketing at OpenText, joins Chris Steffen and Ken Buckler from EMA to discuss getting your data ready for AI. ...
July 01, 2024
In Episode 66 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA discuss the role of the tech evangelist ...
June 21, 2024
In Episode 65 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA discuss the Cisco and Splunk conferences with special guest Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations at EMA ...
June 20, 2024
Have you ever spent hours writing an automation script, only to dream of a more straightforward solution? We've all been there. Building automation can be a huge time investment, but its efficiency boost is undeniable. That's why the rise of low-code/no-code (LCNC) platforms is such a welcome development ...
June 14, 2024
In Episode 64 of the Cybersecurity Awesomeness Podcast, Chris Steffen and Ken Buckler from EMA discuss AI use cases ...
June 12, 2024
For developers and engineers, Kubernetes represents a significant — and welcome — shift ... Unfortunately, Kubernetes also comes with drawbacks — mainly in the form of security vulnerabilities that most businesses have yet to fully wrap their minds around ...
