Container security

We’ve been scanning for vulnerabilities for a very long time (over 20 years for me), but the shift away from device vulnerabilities to application vulnerabilities creates some new challenges.  Applications in the modern, digitally transformed world are much more complex.  They include open source components and custom code, are deployed in containers, and run in […]

The integration of development, security, and operations, known as DevSecOps, has been a hot topic over the past few years.  The benefits of implementing DevSecOps, such as better code quality, increased velocity, and reduced risk, has its advantages, but how do you effectively integrate security into the existing DevOps process?  Shifting security left is easier […]

[adrotate banner=”36″]   This post was authored by Michael Santarcangelo, founder of The Security Catalyst, host of Business Security Weekly, and former contributing editor for CSO online. This post is sponsored by Layered Insight.   Are you feeling overwhelmed? Struggling to keep pace? Security must adapt to the constant shifts across our ecosystem. At the same […]