Software Integrity Blog

Author Archive

Taylor Armerding

tarmerding

Taylor Armerding is an award-winning journalist who left the declining field of mainstream newspapers in 2011 to write in the explosively expanding field of information security. He has previously written for CSO Online and the Sophos blog Naked Security. When he’s not writing he hikes, bikes, golfs, and plays bluegrass music. Follow him on Twitter @tarmerding2.


Posts by Taylor Armerding:

 

Women in tech: Progress but still not parity

We sat down with some women in tech recently to find out what progress the industry’s made in achieving gender balance—and what it could be doing better.

Continue Reading...

Posted in Security Training & Awareness | Comments Off on Women in tech: Progress but still not parity

 

Tips for recruiting top cyber security talent (and mistakes to avoid)

The cyber security job market is hot, and common recruiting mistakes can keep new talent away. Here are some do’s and don’ts for cyber security recruiting.

Continue Reading...

Posted in Security Training & Awareness | Comments Off on Tips for recruiting top cyber security talent (and mistakes to avoid)

 

Is Ireland too soft with GDPR enforcement, or just being prudent?

Some are concerned by the lack of GDPR fines issued by Ireland, the lead regulator for many tech giants. But the country’s taking its time for good reason.

Continue Reading...

Posted in Software Compliance, Quality & Standards | Comments Off on Is Ireland too soft with GDPR enforcement, or just being prudent?

 

Don’t let insider threats rain on your cloud deployment

Insider threats in cloud computing are increasing. Reduce your exposure to both malicious and careless insider threats by securing your cloud deployments.

Continue Reading...

Posted in Cloud Security | Comments Off on Don’t let insider threats rain on your cloud deployment

 

What AppSec tools are in your DevOps toolshed?

AppSec tools are essential to creating secure applications and preventing data breach. But how do you integrate them effectively into your DevOps workflow?

Continue Reading...

Posted in Agile, CI/CD & DevOps | Comments Off on What AppSec tools are in your DevOps toolshed?

 

Despite ongoing warnings, U.S. critical infrastructure remains vulnerable

The state of ICS security (which protects the industrial control systems that power our critical infrastructure) is worrying. How can we start to improve it?

Continue Reading...

Posted in Application Security | Comments Off on Despite ongoing warnings, U.S. critical infrastructure remains vulnerable

 

Feds seek to up their cybersecurity game

Recent government cybersecurity initiatives assume that the federal government has a role to play in securing the IoT and critical infrastructure. Does it?

Continue Reading...

Posted in IoT Security | Comments Off on Feds seek to up their cybersecurity game

 

Defense alone won’t stop cyber threat to U.S. finance

The Fed’s responsibility for financial cyber security is ill-defined. But the financial sector is facing the threat of cyber war; something has to be done.

Continue Reading...

Posted in Financial Cyber Security | Comments Off on Defense alone won’t stop cyber threat to U.S. finance

 

Connected cars: Security and privacy are both trust hurdles

The world is clamoring for connected vehicles, even with their persistent cyber security and privacy issues. What does the future of V2X have in store?

Continue Reading...

Posted in Automotive Cyber Security | Comments Off on Connected cars: Security and privacy are both trust hurdles

 

Application security survey at RSA: The good, the bad, and the ugly

Our RSA 2019 survey on the state of application security collected dozens of responses and highlighted some notable trends. Take a look at what we found out.

Continue Reading...

Posted in Application Security | Comments Off on Application security survey at RSA: The good, the bad, and the ugly