Security training is an investment that yields critical returns to both the organization and the organization’s most valuable asset—its people. Training can directly impact key metrics like bug density ratios and time to remediation if it is implemented effectively. Today, I’ll highlight three ways that application security training can effectively benefit your long-term security strategy and mature your software security program.
Posted in General, Security Training | Comments Off on 3 ways that AppSec training benefits your long-term security strategy
Organizations typically make three common mistakes when establishing a software security initiative (SSI). The ability to reflect on these mistakes can help firms determine whether or not their program is moving in the right direction. Let’s explore some of the most common software security initiative mistakes and alternate approaches to get firms on the right track.
Ad-hoc program vs. roadmap-based program
Until recently, most firms didn’t perceive a SSI as a separate program. The software security functions were either ignored or haphazardly accomplished by leveraging other divisions in the organization such as development, IT operations, and network teams.
Posted in General | Comments Off on 3 common mistakes companies make when starting a software security initiative
The old proverb, “you don’t know where you’re going until you know where you’ve been,” is a very apt description for the field of application security. The application security industry is still relatively new, and we are still learning from our mistakes as we create a baseline from which are able to move forward. In order to learn from our past, we must first identify areas that require improvement.
Posted in Data Breach, Maturity Model (BSIMM) | Comments Off on 2015 cyber security breaches that will live in infamy
Post written by Ashutosh Agrawal, Senior Consultant and Arvind Balaji, Associate Consultant
Posted in Uncategorized | Comments Off on Understanding Python pickling and how to use it securely