%term

Application Security Debt - Warnings and Solutions

Sep 6, 2022 By Adam Murray In Mend

Jeff Martin, vice president of product for Mend, was recently interviewed by Michael Vizard from the Techstrong Group. In a fascinating conversation on application security debt, the two shed a spotlight on the insufficiencies of the current security stance of many companies and the budgetary pressures that might be influencing them.

Read Post

Mend

Read more about Application Security Debt - Warnings and Solutions

Backup-as-a-Service using Ondat Snapshots with Cloudcasa

Sep 6, 2022 By CloudCasa In CloudCasa

Kubernetes has challenges in managing storage, working out how to make persistent volumes ready for high-scale production workloads, and ensuring the data in those persistent volumes is protected. Watch this short video to see how CloudCasa and Ondat help you free your data and migrate workloads between Kubernetes providers. With a simple snapshot, backup and restore, you are ready to use Kubernetes to deliver the next generation of data intensive solutions for your business.

View Video

CloudCasa

Read more about Backup-as-a-Service using Ondat Snapshots with Cloudcasa

Secretless, Identity-based Infrastructure Access

Sep 2, 2022 By Teleport In Teleport

Passwords are everywhere. Sometimes they are obvious — hardcoded in the code or laying flat in the file, but other times they take the form of API keys, tokens, cookies, or even second factors. Devs pass them in environment variables, vaults mount them on disk, teams share them over links, and copy them to CI/CD systems and code linters. Eventually, someone leaks, intercepts, or steals them. Because they pose a security risk, there is no other way to say it: passwords in our infrastructure have to go.

View Video

Teleport

Read more about Secretless, Identity-based Infrastructure Access

This Week in VulnDB

Sep 2, 2022 By Snyk In Snyk

Welcome to This Week in VulnDB, Each episode we will look through some of the newer vulnerabilities in the Snyk vulnerability database, looking at emerging trends in attack vectors appearing in programming languages, platforms and ecosystems.

View Video

Snyk

Read more about This Week in VulnDB

Digital Transformation with AIOps | Shailesh Manjrekar | CloudFabrix

Sep 1, 2022 By CloudFabrix Software Inc In Fabrix

How DevOps and Platform Teams can focus on Innovation and Optimization?

View Video

Fabrix

Read more about Digital Transformation with AIOps | Shailesh Manjrekar | CloudFabrix

3 Key Questions for Smart AppSec Automation

Sep 1, 2022 By Guy Bar-Gil In Mend

It’s no secret that most application security teams are overextended and short-staffed. In fact, a recent ESG study showed that many cybersecurity professionals experience increased stress and job burnout.

Read Post

Mend

Read more about 3 Key Questions for Smart AppSec Automation

GitHub Scanning for Policy-as-Code Configuration Validation

Aug 31, 2022 By Chris Webber In Styra

We just enhanced Styra Declarative Authorization Service (DAS) with a feature customers have been asking for: near-instant scanning of policy-as-code config files right in GitHub. …Oh, and as a bonus, it’s free, it’s available now and it only takes a couple minutes to see live in-action in your repos!

Read Post

Styra

Read more about GitHub Scanning for Policy-as-Code Configuration Validation

#DevOpsSpeakeasy at #KubeCon EU 2022 with Denis Rosa of Couchbase

Aug 31, 2022 By JFrog In JFrog

Denis Rosa, Developer Advocate Manager at Couchbase, talks about the challenge of external dependencies with continuous integration and delivery

View Video

JFrog

Read more about #DevOpsSpeakeasy at #KubeCon EU 2022 with Denis Rosa of Couchbase

Using Containers Responsibly

Aug 31, 2022 By JFrog In JFrog

Tools to package your applications and services into container images are abound. They’re easier to use and integrate into your CI/CD pipelines now more than ever. We can appreciate these advancements in the form of time savings and decreasing complexity when deploying to a cloud native environment, but we cannot completely ignore the details involved in these technologies. It’s tempting to take simplicity for granted, but sometimes we do this at the expense of keeping our software safe and secure!

View Video

JFrog

Read more about Using Containers Responsibly

Everything You Need to Know About CI/CD and Security

Aug 30, 2022 By Anastasios Arampatzis In Tripwire

CI/CD is a recommended technique for DevOps teams and a best practice in agile methodology. CI/CD is a method for consistently delivering apps to clients by automating the app development phases. Continuous integration, continuous delivery, and continuous deployment are the key concepts. CI/CD adds continuous automation and monitoring throughout the whole application lifetime, from the integration and testing phases to delivery and deployment.

Read Post

Tripwire

Read more about Everything You Need to Know About CI/CD and Security

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Application Security Debt - Warnings and Solutions

Backup-as-a-Service using Ondat Snapshots with Cloudcasa

Secretless, Identity-based Infrastructure Access

This Week in VulnDB

Digital Transformation with AIOps | Shailesh Manjrekar | CloudFabrix

3 Key Questions for Smart AppSec Automation

GitHub Scanning for Policy-as-Code Configuration Validation

#DevOpsSpeakeasy at #KubeCon EU 2022 with Denis Rosa of Couchbase

Using Containers Responsibly

Everything You Need to Know About CI/CD and Security

Monthly Archive

Follow Us