Software Integrity Blog

20/20 hindsight shows that foresight wasn’t 20/20

In a year marked by unprecedented challenges, we revisit the 2020 cyber security predictions to see which projections held up and which ones didn’t.

Continue Reading...

Four requirements for open source vulnerability management in a DevOps environment

Most applications contain open source code, which can expose companies to risks if left unchecked. Make the most of your open source vulnerability management with the right approach and tooling.

Continue Reading...

Automotive threat analysis and risk assessment method

The TARA method provides risk evaluation, assessment, treatment, and planning for identified risks. Learn how to apply this method to the ISO SAE 21434 standard.

Continue Reading...

Can your security keep pace in a DevOps environment?

There’s a growing need for both security and speed in application development. DevSecOps introduces security earlier in the SDLC to ensure secure code.

Continue Reading...

How to cyber security:  Gotta go fast … but why?

DevSecOps allows organizations to deliver applications at a high velocity using iteration and automation to better serve customers.

Continue Reading...

The roles and responsibilities that lead to better software security initiatives

Effective software security initiatives require buy-in from many teams, but which roles are primarily responsible for creating and improving their success?

Continue Reading...

Three DevSecOps challenges and how to mitigate them

The shift from DevOps to DevSecOps poses a number of problems for developers. Learn how to overcome the most common challenges in DevSecOps adoption.

Continue Reading...

Cyber security assurance levels in the automotive supply chain

With the ISO SAE 21434 standard for road vehicles coming soon, learn the role cyber security assurance levels play in your road vehicle safety program.

Continue Reading...

New survey shows integrating application security testing gaining traction in DevOps

DevOps can break traditional application security testing processes & tools. Learn why an integrated DevSecOps approach is critical to building better code.

Continue Reading...

How to make the future IoT more secure

IoT security begins with building secure software. Learn how to embed security into your SDLC to avoid becoming an easy target for hackers.

Continue Reading...