HID Global's Three Pillars of Operational Security

By Karin Althaus on June 15, 2022 Application Security

5 minute read time

The foundations of security at HID Global are a balanced set of tools, policies, and expertise. A look back at a DevSecOps Leadership Forums talks in Paris.
Read More...

What Constitutes a Software Supply Chain Attack?

By Ax Sharma on August 03, 2021 vulnerabilities

6 minute read time

ENISA feels the term software supply chain attack is overused, so what does constitute a supply chain attack?
Read More...

Effective Tools for Software Composition Analysis

By IT Central Station on July 14, 2021 Nexus Lifecycle

4 minute read time

Better developer tools for the software supply chain mean a faster, more effective team. Sonatype customers share the tools that help them move faster and with less risk.
Read More...

Breaking Organizational Silos for Better Application Security

By Phil Vuollet on July 08, 2021 AppSec

3 minute read time

Security depends on collaboration and communication. Our recent Elevate talk breaks down pillars, structure, and suggestions for organizational silos.
Read More...

SBOM – From the Idea of Transparency to the Reality of Code

4 minute read time

Allan Friedman from the NTIA has been working on SBOM standards in government and industry, for years. He spoke at ELEVATE 2021 about their status and future.
Read More...

What I Learned from DevSecOps Leaders in a High Tech World

By Sara Budsock on October 16, 2020 devsecops

4 minute read time

DevSecOps leaders from FISERV, Sirius XM, NBC Universal, OneTrust, Estée Lauder, PointClickCare, and Micro Focus, share how DevSecOps adoptions is adding value to their organizations.
Read More...

Kubernetes Containers a Boon for Developers

By Phil Vuollet on July 15, 2020 devsecops

3 minute read time

Kubernetes helps to automate deploying, scaling, and managing multiple containers. It is the most popular container orchestration system in use right now.
Read More...

The Latest DevSecOps Podcast Playlist

By Katie McCaskey on July 01, 2020 devsecops

5 minute read time

The latest playlist of DevSecOps podcast episodes discuss open source vulnerabilities, security, culture, and more.
Read More...

How to Upskill Your Team with Kubernetes

By Brad McCoy on June 30, 2020 devsecops

4 minute read time

How we got everyone through the Certified Kubernetes Administrator (CKA) training and you can, too.
Read More...