Applications, Architecture and SDLC - Information Technology Zone

Beyond DevSecOps: Why fintech companies need to consider DevSecRegOps

CIO Business Intelligence

OCTOBER 31, 2023

As the vice president of enterprise architecture and technology strategy at Discover Financial Services, I think about this question often as we work to design our tech stack. As a practice, DevSecOps is a way to engrain practices in your SDLC that ensures security becomes a shared responsibility throughout the IT lifecycle.

Company

Company SDLC Meeting Banking

10 Stages of the software development lifecycle for startups

Dataconomy

APRIL 5, 2024

In addition, software architecture consulting services are often preferred to work with startups. In addition, UX/UI designers can create frames and prototypes that show how the application’s user interface will respond to interaction, thereby determining the feasibility of the prototype functionality before moving on to implementation.

Software Development

Software Development Software Software Development

Why Fuzz Testing Is Indispensable: Billy Rios

ForAllSecure

SEPTEMBER 2, 2021

I recently spoke to Gartner on the addition of fuzz testing to their Critical Capabilities for the Application Security Testing Magic Quadrant. When organizations choose to implement fuzzing in the SDLC, they’re coming in with a different level of commitment. They’re just too valuable. This is key.

SDLC

SDLC Programming Applications Security

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

Don’t Get Left Behind: Leveraging Modern Product Management Across the Organization

MORE WEBINARS

Securing Your APIs

ForAllSecure

OCTOBER 27, 2021

It’s safe to say that APIs are now a critical part of modern application architectures today. In the age of SaaS applications and infrastructure, many architectures are designed around being API-first for managing data ingestion and retrieval. Mayhem for API is built specifically to test APIs.

Security

Security Applications Authentication SDLC

Three Aspects of Enterprise Architecture Governance

Future of CIO

OCTOBER 26, 2013

Differentiation of the various "types" of governance * Enterprise Architecture governance deals with how the architecture is developed, managed, shared, monitored, verified, updated, version management, checked for standards compliance, etc. - The same relations are between EAG and EA Frameworks.

Architecture

Architecture Government Enterprise Enterprise

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

ForAllSecure

JUNE 7, 2021

Even when the overall system architecture and design are acceptably robust against adversaries, the software implementation may bring hidden vulnerabilities that allow bypass of the intended architecture. Learn more about our work with safety critical applications here or contact us here.

Analysis

Analysis Security Software Software

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

ForAllSecure

JUNE 7, 2021

Even when the overall system architecture and design are acceptably robust against adversaries, the software implementation may bring hidden vulnerabilities that allow bypass of the intended architecture. Learn more about our work with safety critical applications here or contact us here.

Analysis

Analysis Security Software Software

How Fuzzing Redefines Application Security

ForAllSecure

JULY 8, 2021

The application security testing market is highly fragmented. From SAST to DAST to SCA to IAST to RASP, the current state of the market is a byproduct of various assertions on what is believed to be the best way to address application security testing. Mayhem, for example, is able to: Conduct binary analysis of applications (DAST).with

Applications

Applications Security Analysis SDLC

Ten Symptoms/Root Causes of Poorly-Run IT Department

Future of CIO

JANUARY 13, 2013

Inconsistent approach to processes and procedures and/or does not distinguish between a PMP and an SDLC. The problem also exists in a scenario where the business implement small or large scale application themselves Failure to reflect business value: If the company feels IT is disconnected and brings no value, you have failed.

Budget

Budget Agile Government SDLC

When least privilege is the most important thing

CIO Business Intelligence

NOVEMBER 2, 2023

The principle of least privilege (PoLP) is an information security concept that maintains that a user or entity should only have access to the specific data, resources, and applications needed to complete a required task. But this opened the applications for attacks that could easily subvert the entire OS. Within a ZTNA 2.0

Backup

Backup Information Security Security Operating Systems

Good, Fast, Cheap: Can CIOs Have them All

Future of CIO

DECEMBER 20, 2012

Holiday season actually stimulates creativity, and spurs optimism; from one of IT performance debates: “good cheap, fast for enterprise application development, which two should CIO pick?”,--many commentators set positive tunes and think it possible to have them all. Let vendors compete hard to get the contract.

SDLC

SDLC Agile Architecture Applications

What CEOs really need from today’s CIOs

CIO Business Intelligence

AUGUST 3, 2022

But don’t attempt to create a modern software development lifecycle (SDLC) on an industrial era infrastructure. The target architecture of the data economy is platform-based , cloud-enabled, uses APIs to connect to an external ecosystem, and breaks down monolithic applications into microservices.

Architecture

Architecture Software Software Cloud

Information Technology Zone

Beyond DevSecOps: Why fintech companies need to consider DevSecRegOps

10 Stages of the software development lifecycle for startups

Webinars

Trending Sources

Why Fuzz Testing Is Indispensable: Billy Rios

Webinars

Securing Your APIs

Three Aspects of Enterprise Architecture Governance

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

How Fuzzing Redefines Application Security

Ten Symptoms/Root Causes of Poorly-Run IT Department

When least privilege is the most important thing

Good, Fast, Cheap: Can CIOs Have them All

What CEOs really need from today’s CIOs

Stay Connected