Applications, Development and SDLC - Information Technology Zone

Reimagine application modernisation with the power of generative AI

CIO Business Intelligence

JANUARY 15, 2025

In a global economy where innovators increasingly win big, too many enterprises are stymied by legacy application systems. Modernising with GenAI Modernising the application stack is therefore critical and, increasingly, businesses see GenAI as the key to success. The solutionGenAIis also the beneficiary.

Applications

Applications SDLC Agile Enterprise

Broadcom launches VMware Tanzu Data Services

Network World

NOVEMBER 5, 2024

VMware Tanzu for MySQL: “The classic web application backend that optimizes transactional data handling for cloud native environments.” VMware Tanzu for Valkey: “Low-latency caching for high-demand applications, reducing strain on primary databases and ensuring fast data access.” I would have to say yes.”

Vmware

Vmware Disaster Recovery Data Backup

7 types of tech debt that could cripple your business

CIO Business Intelligence

MARCH 25, 2025

After all, a low-risk annoyance in a key application can become a sizable boulder when the app requires modernization to support a digital transformation initiative. Accenture reports that the top three sources of technical debt are enterprise applications, AI, and enterprise architecture.

Architecture

Architecture Devops Open Source Database Administration

Webinars

How to Achieve High-Accuracy Results When Using LLMs

Maximizing Profit and Productivity: The New Era of AI-Powered Accounting

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Weave Security Through Your SDLC from Idea to Maintenance

Tech Republic Security

APRIL 5, 2022

SafeStack Academy’s community-centric Secure Development training gives developers, testers, analysts, and architects the skills they need to build high-quality, secure software at speed. The post Weave Security Through Your SDLC from Idea to Maintenance appeared first on TechRepublic.

SDLC

SDLC Security Course Training

Scaling security: How to build security into the entire development pipeline

CIO Business Intelligence

OCTOBER 31, 2023

When an application is finally ready for deployment, the last thing the development team wants to hear is: “Stop! And then, after months of painstaking work, their application launch is delayed even further. This pipeline helps move products to market faster and create a standardized process for application deployment.

Security

Security Development How To SDLC

Getting ahead of cyberattacks with a DevSecOps approach to web application security

CIO Business Intelligence

JUNE 20, 2023

Web applications are foundational to a company’s business and brand identity yet are highly vulnerable to digital attacks and cybercriminals. As such, it’s vital to have a robust and forward-leaning approach to web application security. What is DevSecOps? According to IBM , a single data breach costs $9.4

Applications

Applications Security SDLC Devops

Beyond DevSecOps: Why fintech companies need to consider DevSecRegOps

CIO Business Intelligence

OCTOBER 31, 2023

DevSecOps refers to development, security, and operations. As a practice, DevSecOps is a way to engrain practices in your SDLC that ensures security becomes a shared responsibility throughout the IT lifecycle. Visit Discover Technology to learn how Discover developers approach application development.

Company

Company SDLC Meeting Banking

How to make your developer organization more efficient

CIO Business Intelligence

SEPTEMBER 1, 2023

Developers are hired for their coding skills, but often spend too much time on information-finding, setup tasks, and manual processes. To combat wasted time and effort, Discover® Financial Services championed a few initiatives to help developers get back to what they do best: developing. The result?

Development

Development How To SDLC Engineering

What executives should know about CNAPP

CIO Business Intelligence

AUGUST 9, 2023

First termed in the Gartner Hype Cycle for Cloud Security, 2021, a cloud-native application protection platform (CNAPP) is, as the name implies, a platform approach for securing applications that are cloud-native across the span of the software development lifecycle (SDLC) of the applications. How did It originate?

SDLC

SDLC Agile Cloud Applications

Aptori Now on Google Cloud Marketplace for AI-Powered Security and Automated Risk Remediation

CIO Business Intelligence

MARCH 12, 2025

Aptori , a leader in AI-driven application security, today announced the launch of its AI-driven AppSec Platform on Google Cloud Marketplace as part of graduating from Google Clouds ISV Startup Springboard program. Aptoris AI-Driven AppSec Platform Proactively Eliminates Vulnerabilities to Minimize Risk and Ensure Compliance.

Google

Google Security Cloud SDLC

Need for Speed Drives Security-as-a-Service

CIO Business Intelligence

JULY 6, 2023

DDoS attacks that target networks, applications, and APIs can seemingly come out of nowhere. In fact, 42% of SECaaS adopters in F5’s 2023 State of Application Strategy survey cited speed as the main driver. In fact, 75% of survey respondents say they are adopting or planning to adopt a secure software development lifecycle (SDLC).

Security

Security SDLC Survey Software Development

The hidden cost of insecure code: More than just data breaches

CIO Business Intelligence

AUGUST 26, 2024

In this worst-case scenario, a business immediately faces a lengthy list of clear-cut recovery expenses: Breach investigation: To understand the full scope of the compromise, you’ll need to launch a thorough forensic investigation spanning storage systems, networks, application code, etc. Lost productivity and frustration ensue.

Data

Data Engineering Security SDLC

When least privilege is the most important thing

CIO Business Intelligence

NOVEMBER 2, 2023

The principle of least privilege (PoLP) is an information security concept that maintains that a user or entity should only have access to the specific data, resources, and applications needed to complete a required task. But this opened the applications for attacks that could easily subvert the entire OS. Within a ZTNA 2.0

Backup

Backup Information Security Security Cloud

Cider Security launches application security platform

Venture Beat

MARCH 7, 2022

Cider Security aims to help users gain transparency over the software development life cycle (SDLC) from code development to deployment, while identifying risks in the environment and receiving recommendations on how to improve its overall security posture. Read More.

SDLC

SDLC Security Applications Software Development

3 ways CIOs are leading the way to an AI-enabled enterprise

CIO Business Intelligence

SEPTEMBER 6, 2024

Drive AI into IT delivery by accelerating adoption within your function to boost productivity and champion change.

Enterprise

Enterprise Enterprise SDLC Budget

What Executives Should Know About Shift-Left Security

CIO Business Intelligence

FEBRUARY 24, 2023

By Zachary Malone, SE Academy Manager at Palo Alto Networks The term “shift left” is a reference to the Software Development Lifecycle (SDLC) that describes the phases of the process developers follow to create an application. Why is shift-left security important in cybersecurity?

Security

Security SDLC Applications Development

Cider Security launches application security platform

Venture Beat

MARCH 8, 2022

Cider Security aims to help users gain transparency over the software development life cycle (SDLC) from code development to deployment, while identifying risks in the environment and receiving recommendations on how to improve its overall security posture. Read More.

SDLC

SDLC Security Applications Software Development

What Are Security Guardrails? Why Do They Matter to Your AppSec Program?

SecureWorld News

MAY 19, 2022

The wide adoption of cloud-native applications and infrastructure has propelled DevOps and a self-service culture enabling developers to go from code to cloud in hours. Security teams are entirely unprepared to govern and secure the modern SDLC in this agile world. Why security guardrails are essential for secure development.

SDLC

SDLC Security Programming Devops

Creep

A CIO's Voice

OCTOBER 27, 2010

This is often the case with application development. As the project moves through the software development life cycle (SDLC), requirement changes become increasingly more expensive and deliverable times become more protracted. This leads to project failure or cost/schedule overruns. How to prevent scope creep?

SDLC

SDLC Project Management Applications Software Development

Safeguarding Ethical Development in ChatGPT and Other LLMs

SecureWorld News

AUGUST 7, 2023

This first installment is "Safeguarding Ethical Development in ChatGPT and Other LLMs through a Comprehensive Approach: Integrating Security, Psychological Considerations, and Governance." Why should AI get a pass on S (Secure) SDLC methodologies? People/consumers drive development, not developers.

Development

Development SDLC Security Tools

5 Ways to Prevent Secret Sprawl

SecureWorld News

AUGUST 30, 2021

In the software development life cycle (SDLC), 85% of leaking secrets come from developers sharing information on public personal accounts. This goes to show just how important it is to have the proper training, procedures, and tools in place when it comes to combatting secret sprawl and leaks in your SDLC.

SDLC

SDLC Software Development Software Software

10 Stages of the software development lifecycle for startups

Dataconomy

APRIL 5, 2024

Creating apps for startups is primarily the carefully thought-out tasks that make up the software development process. Let’s take a closer look at the key stages of software development for startups. The main stages of the software development life cycle include: 1. Idea Any software development starts with an idea.

Software Development

Software Development Software Software Development

Lord of the Metrics

A CIO's Voice

OCTOBER 18, 2010

Operate and support the business applications that process information. Plan, develop/purchase, test, and implement new infrastructure or software to fix problems or. Software development life cycle (SDLC) – Number of projects in each phase of the SDLC and average times in each stage.

SDLC

SDLC WAN Budget Trends

Phishing Email Subject Lines that End-Users Find Irresistible

SecureWorld News

JULY 7, 2020

We sought out to determine how important DevSecOps is within the Software Development Life Cycle (SDLC), the importance of Audits within DevSecOps and the overall impact DevSecOps is having on enterprises. How important is DevSecOps in the SDLC? For more stats from the survey results download our Survey Whitepaper.

SDLC

SDLC Survey Software Development Security

The DevSecOps Lifecycle: How to Automate Security in Software Development

ForAllSecure

MAY 2, 2023

Historically, security has been bolted on at the end of the development cycle, often resulting in software riddled with vulnerabilities. The DevSecOps lifecycle can be broken down into the following steps, with the development, testing, and deployment stages often happening in a loop as software updates are made and new features are added: 1.

Software Development

Software Development Software Software Development

Measuring CIO Performance

A CIO's Voice

NOVEMBER 2, 2010

Personal Development. Application Management. Measurement – Develop an annual Technology Assessment and Recommendations Plan with projected costs. Measurement – Develop MIS policies. GOAL – Ensure development plans for all employee are completed by Q1. Training and Development. Application Management.

Training

Training Budget Meeting Policies

Can Application Security Testing Be Fixed?

ForAllSecure

SEPTEMBER 15, 2021

Shoenfield -- Author, Passionate Security Architect, and Curious Questioner of Assumptions -- challenged whether application security can be fixed at FuzzCon 2021. “We keep applying the same, tired, and often simplistic solutions to this thorny, complex, multi-dimensional problem that we call application security,” he said. .

Applications

Applications Security SDLC Analysis

5 Stages of the Software Development Cycle

Database Star

AUGUST 15, 2016

The Software Development Lifecycle (SDLC) defines a revolution. It is fundamentally a sequence of steps that display a model for the development and lifecycle management of certain software or even an application. The software development […]. This is a guest post by Saurab Prabhakar.

Software Development

Software Development Software Software SDLC

How SAST and Mayhem Work Together for Comprehensive Application Security Testing

ForAllSecure

DECEMBER 20, 2022

Software application vulnerabilities fall into three different risk categories : Known Known : Known Knowns are identifiable risks that are known to lead to compromise. Static Application Security Testing (SAST), or static analysis tools uncover bugs by analyzing source code. SAST is best used during the SDLC development phase.

Applications

Applications SDLC Security Software

Challenging ROI Myths Of Static Application Security Testing (SAST)

ForAllSecure

JUNE 23, 2020

While there have been a lot of successes (such as adoption in the OSS community through Coverity SCAN), I’ve also seen challenges with organizations attempting to adopt SAST as part of their development process. Focus : How much developer time needs to be focused on the curation and remediation of defects?

Applications

Applications Security Analysis Software

3 Reasons Developers Should Shift Left for API Security

ForAllSecure

DECEMBER 6, 2022

It allows developers to produce better code, catch API issues earlier in the development cycle, and get their work done faster. In order to build API security testing into the development process naturally, use a shift left approach along with an automated API tester, such as Mayhem for API. What Is Shifting Left?

Development

Development Security SDLC Software

No Scrum Master? No Problem - Social, Agile, and Transformation

Social, Agile and Transformation

NOVEMBER 3, 2009

I cover topics for Technologists from CIOs to Developers - agile development, agile portfolio management, leadership, business intelligence, big data, startups, social networking, SaaS, content management, media, enterprise 2.0 Do you need QA Analysts, Engineers, or Testers and in what proportion to developers? No Scrum Master?

SCRUM

SCRUM Agile Social Project Management

Your AST Guide for the Disenchanted: Part 6

ForAllSecure

NOVEMBER 3, 2020

Generates a bill of materials for applications and the corresponding known vulnerabilities within them. Executes uncommon and unknown attack patterns against applications and monitors for anomalous behaviors. Application State During Testing. SDLC Phase. Development. Software Composition Analysis (SCA).

SDLC

SDLC Applications Study Devops

Your AST Guide for the Disenchanted: Part 6

ForAllSecure

NOVEMBER 3, 2020

Generates a bill of materials for applications and the corresponding known vulnerabilities within them. Executes uncommon and unknown attack patterns against applications and monitors for anomalous behaviors. Application State During Testing. SDLC Phase. Development. Software Composition Analysis (SCA).

SDLC

SDLC Applications Study Devops

Your AST Guide for the Disenchanted: Part 6

ForAllSecure

NOVEMBER 3, 2020

Generates a bill of materials for applications and the corresponding known vulnerabilities within them. Executes uncommon and unknown attack patterns against applications and monitors for anomalous behaviors. Application State During Testing. SDLC Phase. Development. Continuous Testing at the Speed of Development.

SDLC

SDLC Applications Study Devops

Your AST Guide for the Disenchanted: Part 5

ForAllSecure

OCTOBER 20, 2020

Developers are creative, brilliant people. They solve intricate problems by writing applications. Many R&D teams have come to this realization and have armed their developers with static application security testing (SAST) tools that promise to teach their developers to build security into their code.

SDLC

SDLC Applications Security Development

Your AST Guide for the Disenchanted: Part 5

ForAllSecure

OCTOBER 20, 2020

Developers are creative, brilliant people. They solve intricate problems by writing applications. Many R&D teams have come to this realization and have armed their developers with static application security testing (SAST) tools that promise to teach their developers to build security into their code.

SDLC

SDLC Applications Security Study

Your AST Guide for the Disenchanted: Part 5

ForAllSecure

OCTOBER 20, 2020

Developers are creative, brilliant people. They solve intricate problems by writing applications. Many R&D teams have come to this realization and have armed their developers with static application security testing (SAST) tools that promise to teach their developers to build security into their code.

SDLC

SDLC Applications Security Study

Why Fuzz Testing Is Indispensable: Billy Rios

ForAllSecure

SEPTEMBER 2, 2021

I recently spoke to Gartner on the addition of fuzz testing to their Critical Capabilities for the Application Security Testing Magic Quadrant. Once fuzzing is strategically implemented within developer processes and it's tailored to the product under test, everything just happens. They’re just too valuable. This is key.

SDLC

SDLC Programming Applications Security

Your AST Guide for the Disenchanted: Part 4

ForAllSecure

OCTOBER 6, 2020

Developing applications works the same way. With the exponential speed at which applications are proliferating into every aspect of our lives, it comes as no surprise that developers often write code to assemble them. The challenge in securing third-party applications and code. Application State During Testing.

SDLC

SDLC Analysis Open Source Applications

Your AST Guide for the Disenchanted: Part 4

ForAllSecure

OCTOBER 6, 2020

Developing applications works the same way. With the exponential speed at which applications are proliferating into every aspect of our lives, it comes as no surprise that developers often write code to assemble them. The challenge in securing third-party applications and code. Application State During Testing.

SDLC

SDLC Analysis Open Source Applications

Your AST Guide for the Disenchanted: Part 4

ForAllSecure

SEPTEMBER 25, 2020

Developing applications works the same way. With the exponential speed at which applications are proliferating into every aspect of our lives, it comes as no surprise that developers often write code to assemble them. The challenge in securing third-party applications and code. Application State During Testing.

SDLC

SDLC Analysis Open Source Applications

Cognitive on Cloud

Cloud Musings

DECEMBER 19, 2016

This blend of cloud and cognitive has, in fact, created a brand new application development model. These services are available as part of platform-as-a-service (PaaS) offerings such as Bluemix and can be easily bound to an application while coding.

Cloud

Cloud IBM SDLC Analysis

Challenging ROI Myths Of Static Application Security Testing (SAST)

ForAllSecure

JUNE 23, 2020

While there have been a lot of successes (such as adoption in the OSS community through Coverity SCAN), I’ve also seen challenges with organizations attempting to adopt SAST as part of their development process. Focus : How much developer time needs to be focused on the curation and remediation of defects?

Applications

Applications Security Analysis Software

Reimagine application modernisation with the power of generative AI

Broadcom launches VMware Tanzu Data Services

Webinars

Trending Sources

7 types of tech debt that could cripple your business

Webinars

Weave Security Through Your SDLC from Idea to Maintenance

Scaling security: How to build security into the entire development pipeline

Getting ahead of cyberattacks with a DevSecOps approach to web application security

Beyond DevSecOps: Why fintech companies need to consider DevSecRegOps

How to make your developer organization more efficient

What executives should know about CNAPP

Aptori Now on Google Cloud Marketplace for AI-Powered Security and Automated Risk Remediation

Need for Speed Drives Security-as-a-Service

The hidden cost of insecure code: More than just data breaches

When least privilege is the most important thing

Cider Security launches application security platform

3 ways CIOs are leading the way to an AI-enabled enterprise

What Executives Should Know About Shift-Left Security

Cider Security launches application security platform

What Are Security Guardrails? Why Do They Matter to Your AppSec Program?

Creep

Safeguarding Ethical Development in ChatGPT and Other LLMs

5 Ways to Prevent Secret Sprawl

10 Stages of the software development lifecycle for startups

Lord of the Metrics

Phishing Email Subject Lines that End-Users Find Irresistible

The DevSecOps Lifecycle: How to Automate Security in Software Development

Measuring CIO Performance

Can Application Security Testing Be Fixed?

5 Stages of the Software Development Cycle

How SAST and Mayhem Work Together for Comprehensive Application Security Testing

Challenging ROI Myths Of Static Application Security Testing (SAST)

3 Reasons Developers Should Shift Left for API Security

No Scrum Master? No Problem - Social, Agile, and Transformation

Your AST Guide for the Disenchanted: Part 6

Your AST Guide for the Disenchanted: Part 6

Your AST Guide for the Disenchanted: Part 6

Your AST Guide for the Disenchanted: Part 5

Your AST Guide for the Disenchanted: Part 5

Your AST Guide for the Disenchanted: Part 5

Why Fuzz Testing Is Indispensable: Billy Rios

Your AST Guide for the Disenchanted: Part 4

Your AST Guide for the Disenchanted: Part 4

Your AST Guide for the Disenchanted: Part 4

Cognitive on Cloud

Challenging ROI Myths Of Static Application Security Testing (SAST)

Stay Connected