August 20, 2024 at 07:18AM CISOs are facing challenges in justifying cybersecurity ROI, influencing security-first mindset, and addressing complex threat landscape. The need for a new approach is evident to uplift security culture and bridge the gap between developers. DevSecOps and continuous skills development are necessary to achieve next-level secure development and effective security programs. … Read more
July 18, 2024 at 08:21AM Join an upcoming webinar, “Turn Developers into Allies: The Power of Security Champion Programs,” to bridge the gap between developers and security. Learn about tactics to foster collaboration, effective communication, creating a culture of champions, and measuring success. The webinar features security experts from Mend.io, Yahoo, and Fortra. Register now … Read more
June 24, 2024 at 03:02PM Application security programs are often challenging, with overloaded staff and communication issues. Despite these hurdles, a team successfully resolved 70,000 out of 80,000 security vulnerabilities in three months. Citizen developers are pervasive in enterprises, creating unique security challenges. A successful AppSec program for citizen developers requires automation, self-service, and adherence … Read more
June 11, 2024 at 05:39PM Checkmarx, a leading cloud-native application security provider, has launched Checkmarx Application Security Posture Management (ASPM) and Cloud Insights to offer unparalleled visibility into organizations’ application security posture from code to cloud. These new solutions empower enterprises to reduce application and business risk and prioritize remediation efforts effectively. For more information, … Read more
June 11, 2024 at 05:24PM Backslash Security unveils new platform capabilities, including on-premises integrations, CI/CD integrations, and enhanced language support. These enhancements enable the platform to serve the entire software development lifecycle and the application security needs of large enterprises. Backslash’s reachability analysis aids in prioritizing and fixing reachable vulnerabilities, and the platform now offers … Read more
December 5, 2023 at 11:42AM ArmorCode secures $40 million in Series B funding to assist companies in deploying secure applications. Clear Takeaways from the Meeting Notes: 1. ArmorCode, an application security startup, has successfully raised $40 million in a Series B funding round. 2. The funding will be used to assist organizations in developing and … Read more
November 29, 2023 at 10:50AM The increasing reliance on web-based apps for various tasks makes them prime targets for hackers due to multiple dependencies, valuable data storage, and insecure APIs. Successful breaches can cause data loss, reputational damage, and spread malware. Continuous monitoring, like Outpost24’s PTaaS, is crucial for real-time vulnerability identification and mitigation. Meeting … Read more
October 31, 2023 at 01:01PM A recent report from the Purple Book Community highlights the challenges faced by companies in achieving application security (AppSec) maturity. These challenges include a shortage of AppSec engineers, slow vulnerability remediation, and the increasing reliance on cloud infrastructure. Insufficient funding is also identified as a major obstacle. The report emphasizes … Read more
October 30, 2023 at 07:34AM CrowdStrike’s recent acquisition of Bionic is strengthening its cloud security offerings and positioning the company as a player in reactive cloud security. The acquisition brings capabilities like Cloud Native Application Protection Platform (CNAPP) and Application Security Posture Management (ASPM) to CrowdStrike’s Falcon platform. Bionic’s technology will be integrated into a … Read more
October 24, 2023 at 01:54PM Zatik, a consulting firm founded by Kymberlee Price and Jon Callas, aims to address the lack of application security expertise available to small companies. They provide fractional security consulting services, helping startups and smaller businesses incorporate secure-by-design principles into their software development process. Their goal is to establish a security-focused … Read more