How to Fix the Broken State of Cybersecurity Culture
Which cultural values empower businesses to thrive today? That’s an open question, of course. But I suspect most employees, managers, ..
What, How, and Where Open Source Gets Pulled into a Codebase
The vast majority of software developers in the industry today are paid to solve business problems. Regardless of whether they work for small ..
What Does It Take To Be a Security Champion on a Modern AppDev Team?
Application security has always been important. But since organizations are constantly moving towards shorter development cycles, increased ..
A Developer’s View: How Attackers Can Infect Open Source Codebases
Most open source projects welcome contributions from anyone. That’s one of the key strengths of open source development as a whole ..
4 Ways to Automate Controlled Access to Sensitive Data
Controlling access to sensitive data is tough. Be too restrictive, and your employees run into too many roadblocks to do their jobs effectively. ..
A Developer’s View: The Move to Cloud-Native is Here
“Cloud-native” is a technical term that describes the general tendency to move software systems from a hosted environment to a public ..
A Developer’s View: What Exactly Is Modern Application Development?
What is modern application development? That may sound like an impossible question to answer. Not only is “modern” a relative and subjective ..
Automating Cloud Security Posture Management Response
When we discuss cybersecurity and the threat of cyber attacks, many may conjure up the image of skillful hackers launching their attacks ..
Why You Need an Accurate “Parts List” for Your Software
With the mass adoption of open source software in recent years, there has been an increasing tendency to include it as dependencies. This ..
A Developer’s List of Key Container Security Risks
There are a variety of excellent reasons to use containers. They’re more agile and consume fewer resources than virtual machines. They ..
A Developer’s List of Infrastructure as Code (IaC) Risks
Infrastructure-as-Code (IaC) tools are exemplary software solutions that Developers and DevOps teams use to describe common infrastructure ..