Tag: devsecops

devsecops, applications, devops security policy management Virtual DevSecOps Conference Shifting Left

Embracing DevSecOps: The Future of Secure Software Delivery

Gabriel Martinez | September 17, 2024 | devsecops, OpenText

Register now for the OpenText DevSecOps Virtual Summit 2024 on Sept. 24 and step toward revolutionizing your software delivery process ...

c-suite, Gremlin EU open source Cyber Resilience Act Mend whitesource

Leading the Charge: C-Suite’s Role in Cultivating DevOps and DevSecOps Culture

Srikumar Ramanathan | September 17, 2024 | c-suite, devops, devsecops

As the digital frontier evolves, it is becoming imperative for C-suite executives to cultivate a robust DevOps and DevSecOps culture ...

Research on the Human/Machine Frontier: Unleashing Generative AI in Software Engineering

Trac Bannon | September 5, 2024 | ArchAITecture, devops, devsecops, GenAI, sdlc

GAI is poised to revolutionize software engineering. Having diverse perspectives and insights from across the many roles of the SDLC is crucial to understanding the evolving landscape ...

CodeOps, DevSecOps, GenAI, security, DevSecOps GitGuardian WhiteSource Automating Security

Changing the Face of Software Development Security: CodeOps

Charath Ranganathan | August 20, 2024 | CodeOps, devsecops, GenAI

CodeOps and GenAI are aligned: CodeOps treats code produced using GenAI as yet another source of code and focuses on solving the security and discoverability problems inherent in the reuse of existing ...

CI/CD, challenges, ransomware, RaaS, continuous, testing, CDF continuous CI/CD

Breaking Free from Ransomware: Securing Your CI/CD Against RaaS

Atefeh Mohseni Ejiyeh | August 20, 2024 | CI/CD pipeline security, devsecops, Ransomware-as-a-Service

For developers, few things are more precious than their codebase. Yet, a chilling trend is emerging: Ransomware-as-a-service (RaaS) attacks targeting CI/CD pipelines, holding valuable code hostage ...

DevSecOps, appsec, ai, open-source, Sonatype, AppSec , devsecops, Traceable supply chain

AppSec Teams, DevOps Teams Facing Security Strain

Nathan Eddy | August 19, 2024 | appsec, devops, devsecops

AppSec in the Cloud: What DevOps Teams Should Know ...

defectdojo, parser, devsecops, DevSecOps

DevSecOps: Integrating Security Into the DevOps Lifecycle

Henry Bell | August 14, 2024 | DevOps Lifecycle, devsecops, security

DevSecOps isn't just ticking boxes; it is about weaving security into the fabric of software creation from start to finish, which not only tightens protection but also speeds things up and keeps ...

Survey Finds Speed of Software Deployment Outpacing Security

Mike Vizard | August 1, 2024 | application development, continuous delivery, developers, development, devops, devsecops, open source, security

A survey of 5,315 individual contributors and leaders in development, IT operations and security finds two-thirds (66%) are releasing software faster than they were a year ago ...

checkmarx, supply chain, supply, risk, supply chain, API management Red Hat supply chain

Report: High Risks to Software Supply Chains are Commonplace

Mike Vizard | July 31, 2024 | ASPM, devsecops, risk, supply chain

A nine-month analysis of more than 100 million alerts, tens of thousands of code repositories, and 140,000 real-world applications finds 95% of organizations have at least one high, critical, or apocalyptic risk ...

agility, agility and security, SDLC, identity, security, development,

Succeeding at DevSecOps Requires a Rubric for SDLC Governance

Raj Mallempati | July 26, 2024 | CI/CD, CISO, code, compliance, developers, devsecops, Identity, SDLC Governance

Now is the time to engage your SDLC stakeholders and begin the journey of securing your development pipelines — the future of your organization’s security depends on it ...

application, tools, vulnerability Backstage Endor Labs Application Development Security vulnerability AppDynamics security vulnerability

Backslash Security Adds Simulation and Generative AI Tools to DevSecOps Platform

Mike Vizard | July 25, 2024 | AI tools, application security, devsecops, tolls

Backslash Security today added an ability to simulate upgrades to a higher version of an application to its application security platform for scanning code and creating software bills of materials (SBOMs) ...

Symbiotic, application developers, Zencoder, code, operations, code, commit, developer, mainframe, code, GenAI; code review efficiency cloud development

Secure Code Warrior Unveils Agent to Manage Commit Permissions

Mike Vizard | July 23, 2024 | application security, application vulnerabilities, code, devsecops

Secure Code Warrior (SCW) today added an agent to its portfolio of application security that assesses the security competency of developers as they commit code to a repository ...