DevSec For IoT

It seems that every day we wake up to new devices being made “smart” by attaching them to the internet and giving them computational capabilities to collect, monitor, analyze and report on data. Did you ever wonder that while these new devices are adding value to your life are they in fact creating even more security vulnerabilities in the process?

BLOG Jul 20

Digital Transformation For Developers

Believe it or not, the concept of digitization was introduced back in 1703 when Gottfried Wilhelm von Leibniz published “Explication de l'Arithmétique Binaire”, but didn’t realize it’s modern potential until the introduction of computers in 1939. Since then we have transcended the digitization of information to the digitization of industries to the digitization of societies. This leads us to today’s ever-changing requirements for more, better and faster.

BLOG Jul 13

Why 6 Security Assessments Are Better Than 1

In addition to helping the world deal with pandemics like COVID-19, the CDC recommends that you get annual health checkups. For many this is a way to prevent illness or catch potential problems before they become too bad. Taking a page from personal health and applying it to the health of your IT infrastructure means that you should consider annual checkups for security vulnerabilities as well. The corollary for a Chief Information Security Officer (CISO) is a security assessment.

BLOG Jun 22

Uncovering Security Vulnerabilities Before You Become A Headline

Some believe that “what you don’t know won’t hurt you.” Others emphatically proclaim that “what you don’t know can (and will) hurt you.” While we would all like to believe the former, the reality is that the latter has proven time and time again to be the case, especially when it comes to security vulnerabilities inadvertently coded into applications, networks, IoT, mobile and cloud infrastructure.

BLOG Jun 01

DevSec Mentoring From Home

The failure to recognize and remediate any critical security vulnerabilities, design flaws or privacy and compliance issues across any platform can be detrimental to an organization’s productivity, profitability and reputation. This means that something is needed to ensure developers and engineers are security-savvy, utilizing leading-edge assessment and training tools with proven agility and knowledge of next generation security programs. But how do you ensure your team has the latest information relative to each programming language or development environment?

BLOG May 25