Software Integrity Blog

Archive for the 'Security Standards and Compliance' Category

 

[Webinars] Evidence-based security, design and code quality in tech M&A

Learn how to improve software security using evidence-based standards, and why you should inspect design and code quality during technical due diligence.

Continue Reading...

Posted in Mergers & Acquisitions, Security Standards and Compliance, Webinars | Comments Off on [Webinars] Evidence-based security, design and code quality in tech M&A

 

Coverity release ties in well to the latest MITRE CWE Top 25

MITRE’s 2019 CWE Top 25 list contains many code quality issues that can result in security vulnerabilities. Static analysis can help you mitigate them.

Continue Reading...

Posted in Quality & Compliance, Security Standards and Compliance, Static Analysis (SAST) | Comments Off on Coverity release ties in well to the latest MITRE CWE Top 25

 

The False Claims Act: 156 years old and newly relevant to software security

We recently saw the first settlement by a company charged under the False Claims Act for failing to meet cyber security standards. Is there more to come?

Continue Reading...

Posted in Quality & Compliance, Security Standards and Compliance | Comments Off on The False Claims Act: 156 years old and newly relevant to software security

 

Is Ireland too soft with GDPR enforcement, or just being prudent?

Some are concerned by the lack of GDPR fines issued by Ireland, the lead regulator for many tech giants. But the country’s taking its time for good reason.

Continue Reading...

Posted in Security Standards and Compliance | Comments Off on Is Ireland too soft with GDPR enforcement, or just being prudent?

 

[Webinar] Security by Obscurity: The Flip-Side of the Compliance Coin

In our software compliance webinar, Matan Scharf (Synopsys) explains the hidden security dangers of software standardization. Available on demand.

Continue Reading...

Posted in Security Standards and Compliance, Webinars | Comments Off on [Webinar] Security by Obscurity: The Flip-Side of the Compliance Coin

 

[Infographic] A look back at the first year of GDPR

The first year of GDPR started slow, but companies and regulators alike are picking up speed. Our new infographic shows GDPR’s first year by the numbers.

Continue Reading...

Posted in Security Standards and Compliance | Comments Off on [Infographic] A look back at the first year of GDPR

 

[Webinars] Tech due diligence, IAST, and government software

Learn about the magic of IAST, how to uncover the risks of APIs and web services in M&A, and how DoD and government agencies can mitigate software risks.

Continue Reading...

Posted in Interactive Application Security Testing (IAST), Mergers & Acquisitions, Open Source Security, Security Standards and Compliance, Webinars | Comments Off on [Webinars] Tech due diligence, IAST, and government software

 

How to protect sensitive data with PCI DSS compliance

PCI DSS compliance can help you protect sensitive data and prevent data breaches. Step 1: Identify sensitive data and track how your applications handle it.

Continue Reading...

Posted in Interactive Application Security Testing (IAST), Security Standards and Compliance | Comments Off on How to protect sensitive data with PCI DSS compliance

 

Are you making these software standards compliance mistakes?

The path to software standards compliance can be rocky. Teach your developers how to avoid common mistakes that can set you back in your compliance efforts.

Continue Reading...

Posted in Security Standards and Compliance | Comments Off on Are you making these software standards compliance mistakes?

 

GDPR: Not heavy-handed yet, but driving data breaches into the open

The GDPR fines issued so far have been small, but breach notifications are up. As GDPR continues to ramp up, it seems likely to achieve its goals of privacy.

Continue Reading...

Posted in Data Breach, Security Standards and Compliance | Comments Off on GDPR: Not heavy-handed yet, but driving data breaches into the open