Blog

  • When it comes to a developer’s work space, you will tend to find many open tabs with different sites which fall under task management tools. Think Asana, Slack, Trello, and others. The one question you have to ask your team is which tool could they not live without. Hands down, every developer will say GitHub….



    Read More
  • Way back in the day (in software production speak that means three years ago), professionals in our ecosystem were still going back and forth about free and open source software vs. proprietary. Which is better? Which is safer? Which will cost you less in the long run? For the most part, that raging debate has…



    Read More
  • Get the skinny on how to keep your apps safe in the year ahead, utilizing the best strategies and tools available If you want to assess how an organization understands its security, then you have to follow the money trail. How are they spending their hard earned cash in order to keep their products and…



    Read More
  • In the latest round of regulations for companies doing business in the European Union, MiFID II will require some important overhauls for how data is stored The European Union’s recent set of reforms known as the Markets in Financial Instruments Directive II (MiFID II) will have a huge impact on the entire financial industry, covering…



    Read More
  • Top 5 New Open Source Vulnerabilities for January 2018 According to our database, January brought in some new and nasty open source vulnerabilities. Which ones hit us the hardest?   It seems like it was just yesterday that we emerged from our New Year’s vacations and sat back at our desks, coffee in hand, ready…


    Read More
  • When it comes to finding out the latest and greatest news and announcements online, Twitter is still the go to place when it comes to application security. You have the opportunity to learn and engage with experts that you usually wouldn’t be capable of reaching out to, following their tweets and tagging them to gain…


    Read More
  • Are you ready for NIST 800-171?

    In a move that is likely to raise the blood pressure for more than a few security professionals up a couple points, the U. S. federal government has now determined that companies need to take responsibility for the applications that they use for handling and storing people’s data. In June of 2015, the U.S. National…


    Read More
  • How to Survive Your First 100 Days as Head of DevOps

    11 January 2018

    By Patricia Johnson

    Leading and Adopting DevOps in Your Organization You’ve just been given the responsibility to lead a DevOps transformation in your organization. Where do you begin? How will you approach the situation? What will you start or stop doing? What are your goals? Luckily for you, many people and organizations, both large and small, have already…


    Read More
  • What are the top vulnerabilities hit our favorite open source projects this December?   While all you hard working folks have hopefully been taking advantage of the jolly month of December for much-needed Christmas and New Years vacations and/or celebrations, our database has continued to aggregate open source projects and vulnerabilities. Since publishing our Top…


    Read More
  • Three New Years Resolutions Every CISO Should Adopt

    27 December 2017

    By Ayala Goldstein

    CISO’s: Are you ready to ring in 2018?   As we begin to arise from our Christmas food comas, and a moment before we make sure that our liquor cabinets are stocked and the champagne is on ice, this is a great time to jot down some of our priorities for the year ahead. If…


    Read More