Software Integrity Blog

Archive for the 'Security Training & Awareness' Category

 

Want to close the software security skills gap? Tanya Janca says start mentoring!

Tanya Janca believes that those who know should teach those who don’t. She discusses mentoring in the software security industry with us.

Continue Reading...

Posted in Security Training & Awareness

 

Lance Spitzner: How to secure the human operating system | NCSAM at Synopsys

It’s everyone’s job to ensure online safety at work. Lance Spitzner, director at SANS Security Awareness, tells us how to secure the human operating system.

Continue Reading...

Posted in Security Training & Awareness

 

Cyber security: Not just ‘a’ job but many jobs of the future | NCSAM at Synopsys

Cyber security jobs are dynamic, stimulating, and in high demand as cyber threats multiply out of control. What can we do to make sure these jobs are filled?

Continue Reading...

Posted in Security Training & Awareness

 

Protect your employees from phishing and social engineering | NCSAM at Synopsys

It was a busy summer for healthcare IT staff. The Minnesota Department of Human Services potentially breached 21,000 patients’ personal data. Gold Coast Health Plan emailed 37,000 patients to warn them their data had been exposed. And UnityPoint Health had to notify 1.4 million patients about a data breach—only months after the organization’s last data breach. The cause of all these data breaches? Employees falling for phishing attacks.

Continue Reading...

Posted in Security Training & Awareness

 

Need a job? Consider a career in cyber security | NCSAM at Synopsys

Now more than ever, deciding on a career is a daunting prospect. Yes, unemployment’s at a record low, and new jobs will inevitably replace whatever jobs are lost to “progress.” But those seeking new careers now have to consider that their next career will probably not be their last one. Between artificial intelligence, robots, and other forms of technology and automation, many of those embarking a new career today will have to start yet another one during the next two decades. Not interested in starting over—again? The burden of finding a new career is particularly heavy for adults entering the civilian job market for the first time and those re-entering the workforce after an absence. These job seekers include:

Continue Reading...

Posted in Security Training & Awareness

 

Shield your home from spies | NCSAM at Synopsys

Continue Reading...

Posted in Security Training & Awareness

 

Turn on multifactor authentication | NCSAM at Synopsys

October is National Cybersecurity Awareness Month. One of the fastest, easiest ways you can make yourself safer is to turn on multifactor authentication. Do it the next time you open an app on your phone or log into any of your accounts. Multifactor authentication is much safer than single-factor authentication. And it’s becoming more widely available on systems and accounts of all kinds. What is single-factor authentication? When a website asks you for a password, and only a password, it’s using single-factor authentication. That is, the website authenticates that you’re you based on a single test: whether you know your password.

Continue Reading...

Posted in Security Training & Awareness

 

Coverity now features integrated on-demand developer training

Coverity integrates seamlessly with Synopsys eLearning, an on-demand developer training solution focusing on secure coding best practices and guidance.

Continue Reading...

Posted in Security Training & Awareness, Static Analysis (SAST)

 

What’s being done about the growing software security talent gap?

As we continue to face a staffing shortage in security, many companies are scratching their heads as to why new graduates are simply not starting careers in cyber security. According to TechRepublic’s Alison DeNisco Rayome, only 9% of millennials are interested in pursuing careers in cyber security, perhaps because it’s a relatively new field.

Continue Reading...

Posted in Security Training & Awareness

 

Exploring a red teaming attack: The not-so-dubious air conditioning repairman

In this example, Dave, our red team engineer, will attempt to gain physical access to a company’s server room by pretending to service the air conditioning.

Continue Reading...

Posted in Application Security, Security Training & Awareness