In late August, the Advanced Technology Academic Research Center (ATARC) sponsored a Webinar in conjunction with Checkmarx and Invicti entitled, “Shifting Security Left with DevSecOps.” This virtual panel discussion featured prominent application development leaders and experts from both the government…
PODCAST: AST, DevSecOps and Developer Training – Three Essential AppSec Tools
Massive cyberattacks and breaches that originated in applications, including the recent SolarWinds breach that impacted as many as ten government agencies, and the more recent Kaseya breach which may have impacted hundreds of companies, have rightfully raised questions about application…
Five Reasons Why Agencies are Choosing SAST Over WAF
This article was originally featured on the Checkmarx blog. Click HERE to read the original in its entirety. Today’s Application Security (AppSec) measures focus on protecting web applications. These measures include methods of preventing data or code within the application…
Colleges and Universities – the Next Big Target for Ransomware Attacks
The past few months have been witness to two massive ransomware attacks that have impacted organizations that are part of our country’s critical infrastructure – the attacks against the Colonial Pipeline Company and JBS, one of the country’s largest meat…
DevSecOps and Security Automation – Making Application Security a Part of Development
In my previous article on the GovDevSecOpsHub, I examined the need for identifying and eliminating application-level cybersecurity vulnerabilities – such as those found in IaC and APIs – and explained why application security is becoming such a difficult challenge for…
Four Ways to Combat Developer Burnout
There is no lack of high-stress industries and occupations that have to battle against burnout and employee fatigue. They’re problems that face a number of jobs – from hospital staff to airline pilots. But, when you think about occupations that…
