DevSecOps

What is Data Provenance?

Jan 30, 2024 By Will Cumpston In DataTrails

Data provenance is a technology field that aims to help businesses increase trust through transparency of data, specifically by tracking the origin, change, and history of data and making it verifiable. Recently, the benefits of data provenance have become more important than ever. With the emergence of generative AI, all it takes are a few button clicks for anyone to create or manipulate data and convince others that fake data is trustworthy and real.

Read Post

DataTrails

Read more about What is Data Provenance?

The DevSecOps Hangout

Jan 30, 2024 By JFrog In JFrog

Curious to see what all the AI/ML hype is about? Watch our DevSecOps Hangout and hear how ML Model management benefits organizations by providing a single place to manage ALL software binaries, bringing DevOps best practices to ML development, and allowing organizations to ensure the integrity and security of ML models – all while leveraging an existing solution they already have in place. Watch our expert educational talks and panel discussion with our Technology Partner Qwak on MLOps, DevSecOps, AI, and Machine Learning.

View Video

JFrog

Read more about The DevSecOps Hangout

How Transparency Can Stop Invoice Fraud

Jan 24, 2024 By Will Cumpston In DataTrails

The average cost of invoice fraud to middle-market businesses is almost $280,000 per year. Invoice fraud affects businesses of all sizes, and the levels of fraud have increased in part because it’s not possible to authenticate all invoices that come in manually, with many businesses paying out invoices without authentication if they’re under a certain amount. Today’s information security rules and regulations can’t keep up.

Read Post

DataTrails

Read more about How Transparency Can Stop Invoice Fraud

Essential Cloud Security Tools for Effective DevSecOps

Jan 22, 2024 By Natalie Tischler In Veracode

Implementation of a DevSecOps approach is the most impactful key factor in the total cost of a data breach. Successful DevSecOps in a cloud-native world is aided by the right tools. Here are a handful of the most essential cloud security tools and what to look for in them to aid DevSecOps.

Read Post

Veracode

Read more about Essential Cloud Security Tools for Effective DevSecOps

How Jaguar Land Rover and Asda are Building a Modern DevSecOps Culture

Jan 19, 2024 By Snyk In Snyk

Organizations at different stages of growth or maturity will have different challenges when adopting a modern DevSecOps program. In this session we talked with Mike Welsh, Lead Enterprise Security Architect DevSecOps, at JLR, and Ruta Baltiejute, DevSecOps Lead at Asda, about their differing approach to implementing a secure development model at their organizations. We discussed the significant differences between how they’re building software today, including their approach to change in People, Process and Tooling.

View Video

Snyk

Read more about How Jaguar Land Rover and Asda are Building a Modern DevSecOps Culture

New Year's security resolutions for 2024 from Snyk DevRel, SecRel, and friends

Jan 18, 2024 By Micah Silverman In Snyk

Transforming what we learned in 2023 to new learning in 2024 will be an exciting and fulfilling journey. In 2023, we saw a huge surge in the use of AI, including cyberattacks utilizing AI and machine learning. We are also seeing an increased awareness in the need for application security posture management (ASPM). Snyk has also launched its own ASPM solution — Snyk AppRisk — designed to help AppSec teams implement, manage, and scale their security programs.

Read Post

Snyk

Read more about New Year's security resolutions for 2024 from Snyk DevRel, SecRel, and friends

Datadog's approach to DevSecOps: An executive perspective

Jan 17, 2024 By Jeremy Garcia In Datadog

Editor’s note: Jeremy Garcia, VP of Technical Community and Open Source at Datadog, explains why fostering an organization-wide culture and practice of DevSecOps is essential for deploying resilient, secure applications and services. Over the past decade, DevSecOps has become a popular buzzword in the tech industry.

Read Post

Datadog

Read more about Datadog's approach to DevSecOps: An executive perspective

DataTrails: Sharing and Verifying Immutable Audit Trails

Jan 17, 2024 By Rusty Cumpston In DataTrails

To share an immutable audit trail, you can do this with a link or a QR code that is automatically created when provenance and authenticity metadata is recorded in your DataTrails account. After you sign in to your DataTrails account on your smartphone, Anyone can use Instaproof or the DataTrails API to verify the authenticity, provenance and audit trails of public images.

Read Post

DataTrails

Read more about DataTrails: Sharing and Verifying Immutable Audit Trails

AppSec Decoded: Reaching DevSecOps maturity | Synopsys

Jan 16, 2024 By Synopsys In Synopsys

Learn how to overcome today's DevSecOps challenges to achieve strong DevSecOps maturity.

View Video

Synopsys

Read more about AppSec Decoded: Reaching DevSecOps maturity | Synopsys

DevSecOps practices to maintain developer velocity

Jan 4, 2024 By Fred Bals In Synopsys

By introducing a culture of security into DevOps environments, DevSecOps is designed to address security risks early and consistently. According to the SANS 2023 DevSecOps survey, DevSecOps is a business-critical practice and risk management concern in all organizations focused on software development.

Read Post