Software Integrity

Archive for the 'CI/CD' Category

 

Infographic: What’s with the security / DevOps disconnect?

Download infographic  

Continue Reading...

Posted in Application Security, CI/CD, DevOps | Comments Off on Infographic: What’s with the security / DevOps disconnect?

 

Synopsys maintains leadership position in the 2018 Gartner Magic Quadrant for Application Security Testing

I’m proud to report that the 2018 Gartner Magic Quadrant for Application Security Testing has positioned Synopsys as a leader for the second consecutive year. This designation clearly illustrates our growing vision and ability to execute on our solutions. Building a track record of leadership I’d like to take a moment also to call out […]

Continue Reading...

Posted in Agile Methodology, Black Duck by Synopsys, CI/CD, DevOps, Interactive Application Security Testing (IAST) | Comments Off on Synopsys maintains leadership position in the 2018 Gartner Magic Quadrant for Application Security Testing

 

What’s the difference between Agile, CI/CD, and DevOps?

We’ve been seeing a lot of instances recently in which the terms Agile, CI/CD, and DevOps are used interchangeably. 3 different tools for building your practice You couldn’t build a house with a single tool. Nor can you enable your development practice with one. Agility, CI/CD, and DevOps are three distinct tools, each important in […]

Continue Reading...

Posted in Agile Methodology, CI/CD, DevOps | Comments Off on What’s the difference between Agile, CI/CD, and DevOps?

 

Webinar: Ensure your software is secure without clogging up the CI/CD pipeline

While software grows more complex and the pace of development accelerates, the stakes for building secure software have never been higher. If you’re like most teams embracing a DevOps culture, you’re focused on breaking down silos, streamlining workflows, and cranking out functional software at a nearly continuous clip. Amid all these fundamental changes, how do […]

Continue Reading...

Posted in CI/CD, DevOps, Software Composition Analysis, Static Analysis (SAST) | Comments Off on Webinar: Ensure your software is secure without clogging up the CI/CD pipeline

 

In support of the #MentorHer movement

Last month, while I was in Bengaluru, India, for work, our HR manager for Asia asked me to address Synopsys women on women’s empowerment. I prepared a simple 10-slide presentation that outlined the key challenges I faced as a woman, how I had overcome them, and how the mentorship program at Cigital, now Synopsys, had […]

Continue Reading...

Posted in Application Security, CI/CD, DevOps | Comments Off on In support of the #MentorHer movement

 

Webinar: Update your AppSec strategy to run effectively in a DevOps world

DevOps enables you to release features and bug remediation efforts faster than ever before through Agile methodologies, CI/CD processes, and open source tools. While traditional security activities have trouble keeping pace with DevOps, it’s also critical not to let security fall behind. Is security tripping you up? As the DevOps revolution continues to advance, security […]

Continue Reading...

Posted in Agile Methodology, CI/CD, DevOps, Security Training | Comments Off on Webinar: Update your AppSec strategy to run effectively in a DevOps world

 

How to build security into the DevOps life cycle

As a kid, I often traveled by train in India. I always wondered what would happen if I pulled the chain under the sign that read, “To Stop Train, Pull Chain.” My parents warned me that it would cost them a fortune to pay the fine and that I’d be taken away by the police. […]

Continue Reading...

Posted in Application Security, CI/CD, DevOps | Comments Off on How to build security into the DevOps life cycle

 

Building security into the SDLC without impacting velocity

Building security into the software development life cycle (SDLC) has become a common practice in many organizations. While security activities reduce security risks and implement compliance-focused requirements within software, they also require time and effort. Development teams are very feature and delivery driven. Requiring additional time and effort make security activities a low-priority, if even in consideration […]

Continue Reading...

Posted in CI/CD, Security Architecture, Software Development Life Cycle (SDLC) | Comments Off on Building security into the SDLC without impacting velocity