What Is MITRE D3FEND, and How Do You Use It?
This post was previously published on The New Stack. MITRE is a world-renowned research organization that aims to help build a safer world. ..
When to Automate and When Not to Automate
Everyone loves automation, and it can be easy to assume that the more you automate, the better. Indeed, falling short of achieving fully ..
Keeping Your Organization Secure with Limited SOC Resources
Organizations face a growing threat from cybercriminals while struggling to find qualified security professionals who can protect their ..
A Developer’s View: What Kind of AST Event Correlation Is Needed in MAD?
Having AST capabilities built into the tooling that we use in our day-to-day tasks as developers provides a lot of value when we’re trying ..
Security Basics: Incident Response and Automation
Incident response is one of the most challenging tasks that IT teams face. It’s challenging not just because it typically involves many ..
A Developer’s View of Modern Application Development and Cloud-Native Approaches
The way that we build software has changed dramatically in recent years. Modern Application Development (MAD) and cloud-native development ..
Understanding Security Automation vs. Orchestration
“Automation” and “orchestration” are terms that frequently appear within the same sentence – which is unsurprising, because they ..
5 Questions to Ask When Developing an Automation Strategy
This post was previously published on The New Stack. Automation is like running a marathon. It sounds like a great and noble pursuit until ..
How Chatbot Automation Benefits Security Teams
This post was previously published on The New Stack. When you hear the term “chatbot,” your mind may at first turn to things like robotic ..
What Are the Challenges With Securing APIS?
When you expose API services to the public internet, you are responsible not only for their reliable operation, but also for their security. ..
Automated Threat Intelligence Enrichment: An Overview
This post was previously published on The New Stack. Discovering security threats is good and well. But, in many cases, simply knowing ..
What Is Your API Attack Surface
The proliferation of APIs today is astonishing. According to a recent report, the number of active APIs will approach 1.7 billion by 2030. ..
What Are Control Flow Statements?
Control flows are the backbone of automation. Identifying what to do with a set of data – and how – is a key component of high-value ..
APIs Are Great – But Only If You Manage API Sprawl and Security Risks
If you had to find an analogy for the explosive growth of APIs over the past decade, you might choose to compare them to cell phones. Like ..
An Introduction to Automation Basics
Automation is a powerful tool. With some foresight and a little elbow grease, you can save hours, days, or even months of work by strategically ..
Considerations and Steps for Adopting Managed AppSec Security Tests
At least, that’s one question you may be asking yourself if you’re trying to decide how to optimize your business’s approach to application ..
JSON Basics: Building Blocks for Workflow Automation
Automation workflows add a lot of value to an organization’s day-to-day operations. At a minimum, they streamline the execution of complex, ..
Key Considerations for Building a Proper AppSec Program for Modern Application Development
Many firms’ security efforts are focused solely on deploying technologies, applying “best practices,” and responding to a never-ending ..
4 Database Access-Control Methods to Automate
This post was previously published on The New Stack. Regardless of which role a person has in an organization, they will always need access ..
The Case for Outsourcing AppSec Testing to a Managed Service Provider
Businesses commonly turn to managed service providers to help handle IT processes like data backup and recovery, network management, and mobility ..