Security Resources

DevSecOps: The Principles to Apply to Improve Your Security System

Putting DevOps into practice has allowed companies to accelerate their software delivery while ensuring that critical aspects of development and operations are addressed.

January 9, 2023

by Usama Amin

· 3,052 Views · 1 Like

Secrets Management

Let’s take a deep dive into the integral aspects of secrets management in DevOps and DevSecOps pipelines.

January 8, 2023

by Niranjan Limbachiya

CORE

· 5,799 Views · 2 Likes

7 Places to Do Automated Security Tests

Let's talk about adding security tests to your CI/CD.

January 8, 2023

by Tanya Janca

· 4,343 Views · 3 Likes

9 Things to Consider When Choosing an SCA Tool

SCA is an essential part of application security. Here are important factors to consider when selecting an SCA scanner to be sure it is suited to your needs.

January 6, 2023

by Keshav Malik

· 3,263 Views · 1 Like

DevOps vs. “Traditional” CI/CD

DevOps implies changes in behaviors (cultural changes), while CI/CD is about tools and mechanisms.

January 6, 2023

by Udaybhaskar Seetamraju

· 3,177 Views · 1 Like

Security Operations Center Trends for 2023

SOCs are an essential component of an organization's security infrastructure, responsible for monitoring, detecting, and responding to cyber threats.

January 6, 2023

by Gilad David Maayan

CORE

· 6,270 Views · 1 Like

Securing Developer Tools: A New Supply Chain Attack on PHP

Sonar's R and D team discovered a new attack vector in the PHP supply chain. Read about their findings and how to prevent and patch these code vulnerabilities.

Updated January 6, 2023

by Thomas Chauchefoin

· 3,358 Views · 2 Likes

Why Platform Engineering Is Not at Odds With DevOps

Platform engineering and DevOps are not at odds with each other, as some marketing strategies may argue.

January 5, 2023

by Aakash Shah

· 4,358 Views · 1 Like

Compliance Automated Standard Solution (COMPASS), Part 5: A Lack of Network Boundaries Invites a Lack of Compliance

In this article, we share our experience in authoring compliance policies that go deeper than configuration management.

January 5, 2023

by Daniel Pittner

· 5,354 Views · 3 Likes

Database Backup Security: A Beginner’s Guide

Running a backup is only the first step to protecting data. We've got a few tips and tricks that will help you secure your database backups no matter what the size.

January 4, 2023

by Alex Tray

· 2,149 Views · 1 Like

Building Comprehensive OperationalPart II: Building a new schemaTechnology Cybersecurity Programs for Critical Infrastructure Industries: Learnings From an IBM Security Architect

Learnings from an IBM Security Architect on Building Comprehensive Operational Technology Cybersecurity Programs for Critical Infrastructure Industries.

January 4, 2023

by Ved Prakash

· 2,382 Views · 1 Like

Kubernetes Control Plane: 10 Tips for Airtight K8s Security

The Kubernetes control plane is an attractive target for cybercriminals? Here are ten tips to help you secure it and sleep well at night.

January 4, 2023

by Olesia Pozdniakova

· 2,944 Views · 2 Likes

How I Discovered My Security Practices Are Pretty Bad

In 2023, I'm committed to improving the lax security practices that put me at risk.

January 4, 2023

by John Tonello

· 3,762 Views · 2 Likes

Compliance Automated Standard Solution (COMPASS), Part 4: Topologies of Compliance Policy Administration Centers

In this post, we analyze the Compliance Policy Administration Center (CPAC), which provides several governance and operational functions.

Updated January 3, 2023

by Anca Sailer

· 4,850 Views · 1 Like

The Enterprise Guide to Continuous Application Modernization

This article explains how app modernization takes place using AWS and Azure. Get mesmerized by knowing IBM and Google cloud's modernization solutions.

January 3, 2023

by Hiren Dhaduk

· 3,134 Views · 1 Like

Three Reasons Why IoT Security Needs To Be a Priority in 2023

IoT security risks are quickly becoming more prevalent which is why we must prioritze security in the new year.

January 3, 2023

by Emily Newton

· 2,707 Views · 1 Like

Using JSON Web Encryption (JWE)

JSON Web Encryption (JWE) could be used when one needs to add sensitive information to a token that one would not want to share with other systems.

January 3, 2023

by Viacheslav Shago

· 34,567 Views · 9 Likes

Microsoft Azure Backup Service

Data backup and recovery from the Microsoft Azure cloud are made easy, secure, and affordable with the help of the Azure Backup service.

January 3, 2023

by hgkgj jghghjgh

· 2,096 Views · 1 Like

How Can MACH Architecture Boost Digital Transformation?

Explore in detail what MACH architecture is, its benefits, how it can support digital transformation, and tips for designing and implementing MACH architecture.

January 2, 2023

by Nisarg Mehta

· 3,589 Views · 3 Likes

AI-Based Age Verification: What Role Can AI Play to Prevent Scams?

Discover about importance of artificial intelligence in age verification. Get to know about guidelines that could help you to prevent frauds in digital world.

January 2, 2023

by Sannan Ali Bhatti

· 2,712 Views · 2 Likes

The Latest Security Topics