Software Integrity Blog

Author Archive

Apoorva Phadke

aphadke

Apoorva Phadke is a senior security consultant at Synopsys. She works with customers to adopt secure development processes and practices. Apoorva comes from a development background and advocates that security and development go hand in hand. A feminist, Apoorva strongly believes more women should enter STEM-related fields, and organizations should do more to retain them in those fields. In her down time, she’s most likely out hiking or engrossed in a murder mystery novel.


Posts by Apoorva Phadke:

 

Streamlining development with a DevSecOps life cycle

When I worked as a developer many years ago, we followed the waterfall software development life cycle (SDLC). My focus was always on satisfying functional or business requirements and implementing newer technical capabilities. Deployment happened once every 1 or 2 months. Huge monolithic applications were deployed over a weekend, with almost half the company on […]

Continue Reading...

Posted in Agile, CI/CD & DevOps | Comments Off on Streamlining development with a DevSecOps life cycle

 

SAST vs. DAST: What’s the best method for application security testing?

High profile security breaches are leading to heightened organizational security concerns. Firms around the world are now observing the consequences of security breaches that are becoming more widespread and more advanced. Due to this, firms are ready to identify vulnerabilities in their applications and mitigate the risks. Two ways to go about this are static application security testing (SAST) […]

Continue Reading...

Posted in Static Analysis (SAST), Web Application Security | Comments Off on SAST vs. DAST: What’s the best method for application security testing?

 

Static analysis tools: Are they the best for finding bugs?

Before we can dig deeper into the topic of static analysis, we must first understand how it works. Once a foundation has been established, we’ll then analyze a variety of scenarios to determine when static analysis tools are the best method to find security bugs. What is static analysis? Static analysis refers to the examination […]

Continue Reading...

Posted in Static Analysis (SAST) | Comments Off on Static analysis tools: Are they the best for finding bugs?