Software Integrity Blog

Author Archive

David Benas

dbenas

David Benas is an Atlanta-based security consultant at Synopsys. He specializes in web application vulnerability assessments, architecture risk analysis, code review, enterprise static analysis tools, red teaming, network pen testing, and threat modeling.


Posts by David Benas:

 

Protect your employees from phishing and social engineering | NCSAM at Synopsys

It was a busy summer for healthcare IT staff. The Minnesota Department of Human Services potentially breached 21,000 patients’ personal data. Gold Coast Health Plan emailed 37,000 patients to warn them their data had been exposed. And UnityPoint Health had to notify 1.4 million patients about a data breach—only months after the organization’s last data […]

Continue Reading...

Posted in Red Teaming | Comments Off on Protect your employees from phishing and social engineering | NCSAM at Synopsys

 

Learn how to implement security and quality into your firm’s SDLC

A major factor for companies, and even industries, failing to develop robust security programs is the perceived start-up cost to carry it out. It can be daunting to take large organizations as inspiration when considering how to implement security measures into the software development life cycle (SDLC). Many of these mature security programs have security […]

Continue Reading...

Posted in Uncategorized | Comments Off on Learn how to implement security and quality into your firm’s SDLC

 

How to assess the risk of seemingly correct software

As the prevalence of software continues to trend upwards with time, a common assumption is that it is becoming more feature-rich and reliable. However, most in the software industry wouldn’t hesitate to point out how difficult it actually is to achieve fully-working software. In fact, when calculating software risk, a key assumption is that it […]

Continue Reading...

Posted in Software Architecture and Design | Comments Off on How to assess the risk of seemingly correct software