Software Integrity Blog

Search Results for 'software security initiative'

 

How proactive is your software security initiative?

A proactive software security initiative protects your organization. Does your software security measure up? Take our 12-question quiz to find out.

Continue Reading...

Posted in Software Security Program

 

Software security initiative capabilities: Getting started

A software security initiative (SSI) often begins with one of three common security capabilities:

Continue Reading...

Posted in Software Architecture & Design, Web Application Security

 

SAST and DAST: Part of a balanced software security initiative

The original version of this post was published on SecurityWeek.

Continue Reading...

Posted in Static Analysis (SAST), Web Application Security

 

3 common mistakes companies make when starting a software security initiative

Organizations typically make three common mistakes when establishing a software security initiative (SSI). The ability to reflect on these mistakes can help firms determine whether or not their program is moving in the right direction. Let’s explore some of the most common software security initiative mistakes and alternate approaches to get firms on the right track. Ad-hoc program vs. roadmap-based program Until recently, most firms didn’t perceive a SSI as a separate program. The software security functions were either ignored or haphazardly accomplished by leveraging other divisions in the organization such as development, IT operations, and network teams.

Continue Reading...

Posted in Application Security

 

5 essential elements of a successful software security initiative

Every organization that develops or integrates software needs a software security initiative—a blend of people, processes and tools that ensure applications and the data they process are secure. As customers, regulators, executives and boards of directors start asking for evidence of a formal approach to software security, organizations are trying to determine where to start, how to construct a viable initiative, and what people, processes and technologies they will require.

Continue Reading...

Posted in Software Architecture & Design

 

3 fundamentals of a software security initiative

The best software security initiative is tuned to fit your organization and built to scale. Three SSI fundamentals are standards, policies, and metrics.

Continue Reading...

Posted in Software Security Program

 

Report: Security and development teams need to ‘embrace’ new roles in DevSecOps

For sustainable, long-term application security, both developers and information security professionals must embrace their new roles created by DevSecOps.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Application Security

 

JDA Software: Extending their SDLC to remediate open source issues

Smart organizations in the business of building software need to use a mix of application testing tools to ensure their code is high-quality and secure.

Continue Reading...

Posted in Open Source Security, Software Composition Analysis (SCA)

 

How to Cyber Security: Unicorns and donkeys

A security group should help lift the organization into a positive, proactive attitude and work security into all aspects of development and operations.

Continue Reading...

Posted in Featured, Security Training & Awareness, Software Security Program

 

[Infographic] 7 truths to improve your software security program

The Building Security In Maturity Model (BSIMM) can help you improve your software security program, regardless of industry, size, or application mix.

Continue Reading...

Posted in Software Security Program