Tag Archives: clm

“I want to write really insecure code today”


May 7, 2013 By
Derek Weeks

This is the last in my series of blog posts on my favorite quotes from the Security at the Speed of Development webinar with Wendy Nather, Research Director, Security for 451 Research and Ryan Berg, Sonatype CSO. When asked how organizations can hire good security talent in today’s competitive marketplace, Wendy noted: “Some of the best app security people that […]

Continue reading...

“Personally, I have always been a fan of bribery”


May 6, 2013 By
Derek Weeks

Here is another post on my favorite quotes from the Security at the Speed of Development webinar with Wendy Nather, Research Director, Security for 451 Research and Ryan Berg, Sonatype CSO. When asked about how the security team can effectively collaborate with the development organization, Wendy (with tongue in cheek) responded: “Personally I have always been a fan of bribery. […]

Continue reading...

“They wait until the software flaw trends on Twitter”


May 3, 2013 By
Derek Weeks

Here is another post on my favorite quotes from the Security at the Speed of Development webinar with Wendy Nather, Research Director, Security for 451 Research and Ryan Berg, Sonatype CSO. Wendy was talking about how inertia makes it difficult to justify fixing security flaws later in the development lifecycle: “Management will want to wait until there is […]

Continue reading...

“Good luck getting Mike to fix big security flaws.”


May 1, 2013 By
Derek Weeks

I’m writing several posts using my favorite quotes from the recent Security at the Speed of Development webinar with Wendy Nather, Research Director, Security for 451 Research and Ryan Berg, Sonatype CSO. In this first post, Wendy was talking about the need to integrate security in from the beginning… “The best place to set security standards […]

Continue reading...

Only 1 Day Left! Webinar: Security At The Speed Of Development featuring Wendy Nather, 451 Research & Ryan Berg, Sonatype


April 29, 2013 By
Emily Blades

We have a problem. Application development has become agile, component-based, and open source dependent. But security approaches haven’t kept up. Every day we’re forced to make the dangerous choice between speed and security, putting Development and Security at odds. There has to be a better way. Join Wendy Nather, Research Director, Security, at 451 Research […]

Continue reading...

When Nexus Alone Is Not Enough – Webinar Recording Now Available!


April 19, 2013 By
Emily Blades

A big thanks goes out to everyone who was able to make it to our webinar yesterday. We appreciated all of your time, attention and great questions. If you weren’t able to make it, no worries — the recording is now available here. Please feel free to share this with your colleagues who are interested […]

Continue reading...

New Webinar: Security at the Speed of Development with Wendy Nather, 451 Research


April 15, 2013 By
Emily Blades

Tuesday, April 30, 2013 – 11:00AM-11:45AM EDT (GMT-0400) We have a problem. Application development has become agile, component-based, and open-source-dependent. We’re delivering more software faster than ever before, but security approaches haven’t kept up. Every day we’re forced to make the dangerous choice between speed and security, putting Development and Security at odds. There has […]

Continue reading...