Information Security and SDLC - Information Technology Zone

Jeremiah Grossman: Focus on ransomware, SDLC, and endpoints

Network World

JULY 1, 2016

With so many elements in information security -- application, network infrastructure, the endpoint, perimeter defenses, and data-centric approaches -- it's easy to fall in the trap of touting one as more important than the other.

SDLC

SDLC Fractional CTO Information Security CTO

What Executives Should Know About Shift-Left Security

CIO Business Intelligence

FEBRUARY 24, 2023

By Zachary Malone, SE Academy Manager at Palo Alto Networks The term “shift left” is a reference to the Software Development Lifecycle (SDLC) that describes the phases of the process developers follow to create an application. What executives should consider when adopting shift-left security?

Security

Security SDLC Applications Development

Scaling security: How to build security into the entire development pipeline

CIO Business Intelligence

OCTOBER 31, 2023

“I’m incredibly proud of how technologists at Discover have collaborated to shift left on security. The way our team has scaled security into the SDLC enables Discover to increase product velocity and achieve its mission of becoming a top digital financial services firm,” said Shaun Khalfan, Chief Information Security Officer at Discover.

Security

Security Development How To SDLC

When least privilege is the most important thing

CIO Business Intelligence

NOVEMBER 2, 2023

In the ever-evolving realm of information security, the principle of Least Privilege stands out as the cornerstone of safeguarding sensitive data. However, this fundamental concept, emphasizing limited access to resources and information, has been progressively overlooked, placing our digital ecosystems at greater risk.

Backup

Backup Information Security Security Operating Systems

The hidden cost of insecure code: More than just data breaches

CIO Business Intelligence

AUGUST 26, 2024

Adopt security-minded development flows Make security reviews a mandatory phase in SDLC before any promotion to production. Closing the gap requires change from within Given the ballooning direct and indirect costs, insecure code poses an existential threat on multiple fronts.

Data

Data Engineering Security SDLC

El coste oculto del código inseguro: algo más que filtraciones de datos

CIO Business Intelligence

AUGUST 28, 2024

Adoptar flujos de desarrollo orientados a la seguridad Convierta las revisiones de seguridad en una fase obligatoria del SDLC antes de pasar a producción. Entonces, ¿qué medidas proactivas pueden tomar los desarrolladores para corregir el rumbo día a día?

SDLC

SDLC Information Security Security Data

Cognitive on Cloud

Cloud Musings

DECEMBER 19, 2016

Companies that are leveraging cloud today must also prepare for the cognitive computing era. This blend of cloud and cognitive has, in fact, created a brand new application development model.

Cloud

Cloud IBM SDLC Analysis

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

ObserveIT enables security teams to detect a risky user activity, investigate incidents in minutes and effectively respond. He's from the Johns Hopkins University Information Security Institute and also my co-host on the "Hacking Humans" podcast. This 20 minute podcast is available for listening below.

Security

Security Applications Development Financial

Meet The Team Behind Mayhem: Come See Us At These Upcoming April 2023 Events

ForAllSecure

MARCH 31, 2023

Be sure to stop by so we can meet you and answer any questions you have about our security testing solution. BSides BSides San Francisco is a 100% volunteer-organized Information Security conference. Register for DevSecOps Days here. There are no “attendees” at a BSides event. Get a copy of the presentation here.

Meeting

Meeting Automotive Open Source Devops

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

ObserveIT enables security teams to detect a risky user activity, investigate incidents in minutes and effectively respond. He's from the Johns Hopkins University Information Security Institute and also my co-host on the "Hacking Humans" podcast. This 20 minute podcast is available for listening below.

Security

Security Applications Development Financial

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

ForAllSecure

AUGUST 14, 2019

ObserveIT enables security teams to detect a risky user activity, investigate incidents in minutes and effectively respond. He's from the Johns Hopkins University Information Security Institute and also my co-host on the "Hacking Humans" podcast. This 20 minute podcast is available for listening below.

Security

Security Applications Development Financial

Information Technology Zone

Jeremiah Grossman: Focus on ransomware, SDLC, and endpoints

What Executives Should Know About Shift-Left Security

Trending Sources

Scaling security: How to build security into the entire development pipeline

When least privilege is the most important thing

The hidden cost of insecure code: More than just data breaches

El coste oculto del código inseguro: algo más que filtraciones de datos

Cognitive on Cloud

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

Meet The Team Behind Mayhem: Come See Us At These Upcoming April 2023 Events

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

Stay Connected