Development, Examples, SDLC and Software Development

Is it worth measuring software developer productivity? CIOs weigh in

CIO Business Intelligence

DECEMBER 20, 2023

At the same time, developers are scarce, and the demand for new software is high. This has spurred interest around understanding and measuring developer productivity, says Keith Mann, senior director, analyst, at Gartner. Organizations need to get the most out of the limited number of developers they’ve got,” he says.

Software Development

Software Development Software Software Development

What Executives Should Know About Shift-Left Security

CIO Business Intelligence

FEBRUARY 24, 2023

By Zachary Malone, SE Academy Manager at Palo Alto Networks The term “shift left” is a reference to the Software Development Lifecycle (SDLC) that describes the phases of the process developers follow to create an application. Why is shift-left security important in cybersecurity? This creates risks.

Security

Security SDLC Applications Development

A Guide To Automated Continuous Security Testing

ForAllSecure

JULY 13, 2021

The acceleration of application development has shown no sign of stopping. As a result, we’re seeing increasingly complex, interconnected software. Continuous testing enables security teams to keep pace with development and operations teams in modern development, and to deliver deep integration and automation of security tooling.

Security

Security SDLC Software Software

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Daphne Jones: Envision a new career destiny

CIO Business Intelligence

APRIL 23, 2022

When the newest Supreme Court Justice Ketanji Brown Jackson had to watch members of Congress publicly walk out on her during her confirmation celebration, Jones adds, that was a very public example of what many women and people of color experience every day. What version are you now in this personalized SDLC? I was at version 2.0

SDLC

SDLC Groups Software Development Budget

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

ForAllSecure

JUNE 7, 2021

The reports provide methods and considerations for showing compliance with the airworthiness security process defined in ED-202A / DO-326A during avionics design and development. Software can both meet requirements and still not be secure. Teams at Google, for example, report that 80% of all bugs are found via fuzzing, up to 98.6%

Analysis

Analysis Security Software Software

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

ForAllSecure

JUNE 7, 2021

The reports provide methods and considerations for showing compliance with the airworthiness security process defined in ED-202A / DO-326A during avionics design and development. Software can both meet requirements and still not be secure. Teams at Google, for example, report that 80% of all bugs are found via fuzzing, up to 98.6%

Analysis

Analysis Security Software Software

Challenging ROI Myths Of Static Application Security Testing (SAST)

ForAllSecure

JUNE 23, 2020

While there have been a lot of successes (such as adoption in the OSS community through Coverity SCAN), I’ve also seen challenges with organizations attempting to adopt SAST as part of their development process. Focus : How much developer time needs to be focused on the curation and remediation of defects?

Applications

Applications Security Analysis Software

Agile Process Improvement Using. Agile! - Social, Agile, and.

Social, Agile and Transformation

MARCH 8, 2011

I cover topics for Technologists from CIOs to Developers - agile development, agile portfolio management, leadership, business intelligence, big data, startups, social networking, SaaS, content management, media, enterprise 2.0 Labels: agile software development , cio , project management , site performance. about me. (33).

Agile

Agile Social SCRUM Software Development

No Scrum Master? No Problem - Social, Agile, and Transformation

Social, Agile and Transformation

NOVEMBER 3, 2009

I cover topics for Technologists from CIOs to Developers - agile development, agile portfolio management, leadership, business intelligence, big data, startups, social networking, SaaS, content management, media, enterprise 2.0 Do you need QA Analysts, Engineers, or Testers and in what proportion to developers? No Scrum Master?

SCRUM

SCRUM Agile Social Project Management

Challenging ROI Myths Of Static Application Security Testing (SAST)

ForAllSecure

JUNE 23, 2020

While there have been a lot of successes (such as adoption in the OSS community through Coverity SCAN), I’ve also seen challenges with organizations attempting to adopt SAST as part of their development process. Focus : How much developer time needs to be focused on the curation and remediation of defects?

Applications

Applications Security Analysis Software

Challenging ROI Myths Of Static Application Security Testing (SAST)

ForAllSecure

JUNE 23, 2020

While there have been a lot of successes (such as adoption in the OSS community through Coverity SCAN), I’ve also seen challenges with organizations attempting to adopt SAST as part of their development process. Focus : How much developer time needs to be focused on the curation and remediation of defects?

Applications

Applications Security Analysis Software

Getting ahead of cyberattacks with a DevSecOps approach to web application security

CIO Business Intelligence

JUNE 20, 2023

According to GitLab’s 2023 Global DevSecOps Report , 56% of organizations report using DevOps or DevSecOps methodologies, growing roughly 10% from 2022, for improved security, higher developer velocity, cost and time savings, and better collaboration. What is DevSecOps?

Applications

Applications Security SDLC Devops

When least privilege is the most important thing

CIO Business Intelligence

NOVEMBER 2, 2023

A seemingly minor component of the software suite was the one that was exploited – but it seems it was not a necessary component, to begin with. Mobile applications provide an excellent example of the dangers of ignoring least privilege. For example, many apps say they require access to the camera or microphone.

Backup

Backup Information Security Security Operating Systems

The Evolution of Security Testing

ForAllSecure

JULY 27, 2021

A benchmarking study by the NSA Center for Assured Software found that the average SAST tool covers only 8 out of 13 weakness classes and finds only 22 percent of flaws in each weakness class. Security needs to be part of the development experience. security testing understands the developer and attacker mindsets by identifying coding.

Security

Security Applications Development SDLC

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 29, 2020

Find out how ForAllSecure delivers advanced fuzz testing into development pipelines. The classic example would be the buffer overflow. Another example might be acceleration, you'd like to know how fast the car is going. Vamosi: So some of this-- for example, why it just works-- is not known, at least not now.

Research

Research Engineering Examples System

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 29, 2020

The classic example would be the buffer overflow. Another example might be acceleration, you'd like to know how fast the car is going. One example would be a memory semiconductor that effectively changes its capacitance based upon how it's accelerating through space. Engineers start to assume things about the other side.

Research

Research Engineering Examples System

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 28, 2020

The classic example would be the buffer overflow. Another example might be acceleration, you'd like to know how fast the car is going. One example would be a memory semiconductor that effectively changes its capacitance based upon how it's accelerating through space. Engineers start to assume things about the other side.

Research

Research Engineering Examples System

What CEOs really need from today’s CIOs

CIO Business Intelligence

AUGUST 3, 2022

Modern delivery is product (rather than project) management , agile development, small cross-functional teams that co-create , and continuous integration and delivery all with a new financial model that funds “value” not “projects.”. CIOs who deliver IT unto their hungry consumers are handing out fish. The majority said, “analytics.”

Architecture

Architecture Software Software Cloud

Information Technology Zone

Is it worth measuring software developer productivity? CIOs weigh in

What Executives Should Know About Shift-Left Security

Webinars

Trending Sources

A Guide To Automated Continuous Security Testing

Webinars

Daphne Jones: Envision a new career destiny

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

Challenging ROI Myths Of Static Application Security Testing (SAST)

Agile Process Improvement Using. Agile! - Social, Agile, and.

No Scrum Master? No Problem - Social, Agile, and Transformation

Challenging ROI Myths Of Static Application Security Testing (SAST)

Challenging ROI Myths Of Static Application Security Testing (SAST)

Getting ahead of cyberattacks with a DevSecOps approach to web application security

When least privilege is the most important thing

The Evolution of Security Testing

The Hacker Mind Podcast: Hacking With Light And Sound

The Hacker Mind Podcast: Hacking With Light And Sound

The Hacker Mind Podcast: Hacking With Light And Sound

What CEOs really need from today’s CIOs

Stay Connected