Steve Cohen is a product marketing manager within the Synopsys Software Integrity Group. He focuses on the Cloud and CI/CD services. Steve has extensive experience in product marketing and product management. He specializes in software security, cloud, storage management, and systems products.
The benefits of automation in DevSecOps are clear: streamlined, collaborative development, security, and operation. But how do you go about doing it?
Posted in Agile, CI/CD & DevOps, Maturity Model (BSIMM) | Comments Off on Automation: One of the keys to DevSecOps
In our on-demand webinar with Brendan Sheairs (Synopsys), you’ll learn about the fundamentals and challenges of building a Security Champions program to transform DevOps into DevSecOps.
Posted in Agile, CI/CD & DevOps, General, Security Training, Webinars | Comments Off on Webinar: Using Security Champions to build a DevSecOps culture within your organization
Should you replace any of your application security testing tools with a RASP solution? RASP should complement, rather than replace, your testing strategy.
Posted in Interactive Application Security Testing (IAST), Web Application Security | Comments Off on How RASP complements application security testing to minimize risk
What is runtime application self-protection? According to Gartner, runtime application self-protection is “a security technology that is built on or linked into an application runtime environment, and is capable of controlling application execution, and detecting and preventing real-time attacks.”
Posted in Web Application Security | Comments Off on The what, why, and who of runtime application self-protection (RASP)
Here are 7 key considerations to securely transition your apps to the cloud: cloud configuration, IAM, microservices, automation, microsegmentation, APIs, and DevSecOps. Written in coordination with Ugochukwu Enyioha.
Posted in Agile, CI/CD & DevOps, Cloud Security | Comments Off on 7 things to consider when transitioning your applications to the cloud