Groups and SDLC - Information Technology Zone

Safeguarding Ethical Development in ChatGPT and Other LLMs

SecureWorld News

AUGUST 7, 2023

Why should AI get a pass on S (Secure) SDLC methodologies? Despite the active contributions of SDLC methodologies over the past 20 years—such as Waterfall, Agile, V-shaped, Spiral, Big Bang, and others—there remains a lack of security-by-design for integration into AI developments such as ChatGPT, DALL-E, and Google's Bard.

Development

Development SDLC Security Tools

Daphne Jones: Envision a new career destiny

CIO Business Intelligence

APRIL 23, 2022

His voice is always in my ear,” she adds, and that partly inspired the name of her consulting firm: Destiny Transformations Group. “I We’re also doing live sessions for companies that want to drive a group understanding of board services for their leaders. What version are you now in this personalized SDLC? I was at version 2.0

SDLC

SDLC Groups Software Development Budget

The FuzzCon 2021 Real Talks Panel

ForAllSecure

SEPTEMBER 29, 2021

Direct and immediate feedback within the SDLC was the key capability of fuzzing that got Larry over his resistance of inserting DAST in the SDLC. Surprisingly the group that had taken 40 hours of training had worse security outcomes. However, recent evolutions in fuzz testing has shifted his mindset. The reason?

SDLC

SDLC Study Programming Development

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Is it worth measuring software developer productivity? CIOs weigh in

CIO Business Intelligence

DECEMBER 20, 2023

Measure business outcomes, not lines of code There are various measurement points throughout the software development lifecycle (SDLC), from idea generation to production stages, that should be monitored to ensure a smooth flow. “If In the context of developer experience, key areas to focus on take on slightly different characteristics.

Software Development

Software Development Software Software Development

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

ForAllSecure

JUNE 7, 2021

Miller in 1990 when his research group provided random inputs to typical UNIX programs to test reliability. For example, Microsoft includes fuzzing in their Security Development Lifecycle (SDLC), and Google uses fuzzing on all components of the Chrome web browser. The term “fuzz testing” was coined by Prof.

Analysis

Analysis Security Software Software

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

ForAllSecure

JUNE 7, 2021

Miller in 1990 when his research group provided random inputs to typical UNIX programs to test reliability. For example, Microsoft includes fuzzing in their Security Development Lifecycle (SDLC), and Google uses fuzzing on all components of the Chrome web browser. The term “fuzz testing” was coined by Prof.

Analysis

Analysis Security Software Software

Measuring CIO Performance

A CIO's Voice

NOVEMBER 2, 2010

GOAL – Conduct goal setting with direct report group prior to Jan 31and modify as appropriate throughout the year. Number of projects in each phase of the SDLC and average times in each stage (view of overall project pipeline, identify bottlenecks, etc.). Measurement – Develop MIS policies. People Management.

Training

Training Budget Meeting Policies

Ten Symptoms/Root Causes of Poorly-Run IT Department

Future of CIO

JANUARY 13, 2013

There was no compelling vision or set of strategies that the IT group could follow. People: The Un-satisfaction of Staff, Customers or Partners Many IT groups have a US and THEM mentality: Is your team proud of what they do? Inconsistent approach to processes and procedures and/or does not distinguish between a PMP and an SDLC.

Budget

Budget Agile Government SDLC

How Kaiser Permanente IT shifted from order taker to influencer

CIO Business Intelligence

APRIL 27, 2022

The traditional SDLC [software development life cycle] of requirements gathering and approval is polite and professional, but it’s slow. During the weeks between sessions, small groups of five or six people met to practice what they had learned. We needed to get out of the order-taking mindset,” says Comer.

Programming

Programming SDLC Development Video

Good, Fast, Cheap: Can CIOs Have them All

Future of CIO

DECEMBER 20, 2012

It is becoming increasingly possible to achieve all three with different/creative SDLC methodologies, cloud technologies (IaaS, PaaS) and appropriate leveraging of global solutions. The problem, therefore, isn't just in the SDLC, but rather in business oversight and process governance.

SDLC

SDLC Agile Architecture Applications

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

NSO Group says its Pegasus software can now obtain access to private messages held in major cloud services. Among the data the attackers obtained and shared with hacktivist group Digital Revolution were screenshots of the target company's internal interface, including some employees' names and notes on the projects they were working on.

Security

Security Applications Development Financial

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 29, 2020

There’s a group of bleeding-edge hackers who are looking at secondary channels of attack -- such as using pulsing light to imitate voice commands or specific frequencies of sound to simulate specific motion-related vibrations. Vamosi: Boundaries are the classic Go To minefield for discovering new software vulnerabilities.

Research

Research Engineering Examples System

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 29, 2020

There’s a group of bleeding-edge hackers who are looking at secondary channels of attack -- such as using pulsing light to imitate voice commands or specific frequencies of sound to simulate specific motion-related vibrations. Vamosi: Boundaries are the classic Go To minefield for discovering new software vulnerabilities.

Research

Research Engineering Examples System

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 28, 2020

There’s a group of bleeding-edge hackers who are looking at secondary channels of attack -- such as using pulsing light to imitate voice commands or specific frequencies of sound to simulate specific motion-related vibrations. Vamosi: Boundaries are the classic Go To minefield for discovering new software vulnerabilities.

Research

Research Engineering Examples System

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

NSO Group says its Pegasus software can now obtain access to private messages held in major cloud services. Among the data the attackers obtained and shared with hacktivist group Digital Revolution were screenshots of the target company's internal interface, including some employees' names and notes on the projects they were working on.

Security

Security Applications Development Financial

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

ForAllSecure

AUGUST 14, 2019

NSO Group says its Pegasus software can now obtain access to private messages held in major cloud services. Among the data the attackers obtained and shared with hacktivist group Digital Revolution were screenshots of the target company's internal interface, including some employees' names and notes on the projects they were working on.

Security

Security Applications Development Financial

Information Technology Zone

Safeguarding Ethical Development in ChatGPT and Other LLMs

Daphne Jones: Envision a new career destiny

Webinars

Trending Sources

The FuzzCon 2021 Real Talks Panel

Webinars

Is it worth measuring software developer productivity? CIOs weigh in

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

Measuring CIO Performance

Ten Symptoms/Root Causes of Poorly-Run IT Department

How Kaiser Permanente IT shifted from order taker to influencer

Good, Fast, Cheap: Can CIOs Have them All

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

The Hacker Mind Podcast: Hacking With Light And Sound

The Hacker Mind Podcast: Hacking With Light And Sound

The Hacker Mind Podcast: Hacking With Light And Sound

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

Stay Connected