Cloud, Development and SDLC - Information Technology Zone

What Are Security Guardrails? Why Do They Matter to Your AppSec Program?

SecureWorld News

MAY 19, 2022

The wide adoption of cloud-native applications and infrastructure has propelled DevOps and a self-service culture enabling developers to go from code to cloud in hours. Security teams are entirely unprepared to govern and secure the modern SDLC in this agile world. What are security guardrails?

SDLC

SDLC Security Programming Devops

What Executives Should Know About Shift-Left Security

CIO Business Intelligence

FEBRUARY 24, 2023

By Zachary Malone, SE Academy Manager at Palo Alto Networks The term “shift left” is a reference to the Software Development Lifecycle (SDLC) that describes the phases of the process developers follow to create an application. Why is shift-left security important in cybersecurity?

Security

Security SDLC Applications Development

Cognitive on Cloud

Cloud Musings

DECEMBER 19, 2016

This shift to cognitive computing will occur within the next 12 to 14 months for many organizations and cognitive era success requires data centric management culture, a common requisite for secure cloud computing. Companies that are leveraging cloud today must also prepare for the cognitive computing era.

Cloud

Cloud IBM SDLC Analysis

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Four Phases of Maturing Enterprise Agile Development

Social, Agile and Transformation

FEBRUARY 16, 2010

I cover topics for Technologists from CIOs to Developers - agile development, agile portfolio management, leadership, business intelligence, big data, startups, social networking, SaaS, content management, media, enterprise 2.0 Four Phases of Maturing Enterprise Agile Development. and business transformation.

Agile

Agile Development Enterprise Enterprise

Securing Your APIs

ForAllSecure

OCTOBER 27, 2021

Mayhem for API consists of two components: the fuzzer application, downloaded locally and driven through a command line interface (CLI), and a cloud service, used to track and manage fuzzing jobs and providing other services, such as API spec conversion. Through our GitHub app, developers can identify repositories as applications to fuzz.

Security

Security Applications Authentication SDLC

Software is Infrastructure

ForAllSecure

OCTOBER 23, 2019

The problem is that the processes which we’ve developed to deal with the challenges of modern software development have in general not yet reached the level of maturity required for systems where life and death are at stake. This number of defects requires significant time and developer resources to address.

Software

Software Software Analysis Programming

What executives should know about CNAPP

CIO Business Intelligence

AUGUST 9, 2023

First termed in the Gartner Hype Cycle for Cloud Security, 2021, a cloud-native application protection platform (CNAPP) is, as the name implies, a platform approach for securing applications that are cloud-native across the span of the software development lifecycle (SDLC) of the applications. How did It originate?

SDLC

SDLC Agile Applications Cloud

Software is Infrastructure

ForAllSecure

OCTOBER 23, 2019

The problem is that the processes which we’ve developed to deal with the challenges of modern software development have in general not yet reached the level of maturity required for systems where life and death are at stake. This number of defects requires significant time and developer resources to address.

Software

Software Software Analysis Programming

SOFTWARE IS INFRASTRUCTURE

ForAllSecure

OCTOBER 23, 2019

The problem is that the processes which we’ve developed to deal with the challenges of modern software development have in general not yet reached the level of maturity required for systems where life and death are at stake. This number of defects requires significant time and developer resources to address.

Software

Software Software Analysis Programming

No Scrum Master? No Problem - Social, Agile, and Transformation

Social, Agile and Transformation

NOVEMBER 3, 2009

I cover topics for Technologists from CIOs to Developers - agile development, agile portfolio management, leadership, business intelligence, big data, startups, social networking, SaaS, content management, media, enterprise 2.0 Do you need QA Analysts, Engineers, or Testers and in what proportion to developers? No Scrum Master?

SCRUM

SCRUM Agile Social Project Management

Agile Process Improvement Using. Agile! - Social, Agile, and.

Social, Agile and Transformation

MARCH 8, 2011

I cover topics for Technologists from CIOs to Developers - agile development, agile portfolio management, leadership, business intelligence, big data, startups, social networking, SaaS, content management, media, enterprise 2.0 Labels: agile software development , cio , project management , site performance. cloud computing. (6).

Agile

Agile Social SCRUM Software Development

Getting ahead of cyberattacks with a DevSecOps approach to web application security

CIO Business Intelligence

JUNE 20, 2023

According to GitLab’s 2023 Global DevSecOps Report , 56% of organizations report using DevOps or DevSecOps methodologies, growing roughly 10% from 2022, for improved security, higher developer velocity, cost and time savings, and better collaboration. What is DevSecOps?

Applications

Applications Security SDLC Devops

When least privilege is the most important thing

CIO Business Intelligence

NOVEMBER 2, 2023

Another problem with mobile application security is the speed with which individuals can develop and deploy new apps. Unless security is mandated by policy or regulations, developers will place least privilege and other security principles as their lowest priority. Not to say that this is only a problem with mobile app development.

Backup

Backup Information Security Security Operating Systems

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

NSO Group says its Pegasus software can now obtain access to private messages held in major cloud services. The cloud may help development and application teams move fast, but for security teams already dealing with alert fatigue, tool sprawl and legacy workflows, cloud adoption means a lot more stress.

Security

Security Applications Development Financial

Good, Fast, Cheap: Can CIOs Have them All

Future of CIO

DECEMBER 20, 2012

Holiday season actually stimulates creativity, and spurs optimism; from one of IT performance debates: “good cheap, fast for enterprise application development, which two should CIO pick?”,--many commentators set positive tunes and think it possible to have them all. Hopefully, the "pick any two" approach is becoming obsolete.

SDLC

SDLC Agile Architecture Applications

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

NSO Group says its Pegasus software can now obtain access to private messages held in major cloud services. The cloud may help development and application teams move fast, but for security teams already dealing with alert fatigue, tool sprawl and legacy workflows, cloud adoption means a lot more stress.

Security

Security Applications Development Financial

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

ForAllSecure

AUGUST 14, 2019

NSO Group says its Pegasus software can now obtain access to private messages held in major cloud services. The cloud may help development and application teams move fast, but for security teams already dealing with alert fatigue, tool sprawl and legacy workflows, cloud adoption means a lot more stress.

Security

Security Applications Development Financial

What CEOs really need from today’s CIOs

CIO Business Intelligence

AUGUST 3, 2022

Modern delivery is product (rather than project) management , agile development, small cross-functional teams that co-create , and continuous integration and delivery all with a new financial model that funds “value” not “projects.”. The cloud. The cloud is about more than managing costs. Usable data.

Architecture

Architecture Software Software Cloud

Information Technology Zone

What Are Security Guardrails? Why Do They Matter to Your AppSec Program?

What Executives Should Know About Shift-Left Security

Webinars

Trending Sources

Cognitive on Cloud

Webinars

Four Phases of Maturing Enterprise Agile Development

Securing Your APIs

Software is Infrastructure

What executives should know about CNAPP

Software is Infrastructure

SOFTWARE IS INFRASTRUCTURE

No Scrum Master? No Problem - Social, Agile, and Transformation

Agile Process Improvement Using. Agile! - Social, Agile, and.

Getting ahead of cyberattacks with a DevSecOps approach to web application security

When least privilege is the most important thing

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

Good, Fast, Cheap: Can CIOs Have them All

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

What CEOs really need from today’s CIOs

Stay Connected