Aqua Security

JULY 14, 2022

The Center for Internet Security (CIS) has recently released the Software Supply Chain Security Guide, a set of practical, community-developed best practices for securing software delivery pipelines.

Compliance 52

Compliance Software Open Source DevOps 52

Ivanti

AUGUST 28, 2023

You should be ready for it, as there are high fines and sanctions for non-compliance. Lack of regular testing or auditing of your security controls or measures to ensure their effectiveness and compliance with the directive's requirements. This directive will translate into active law in October 2024. Think twice.

Security 42

Security Technical Review Weak Development Team Software Review 42

d2iq

JANUARY 5, 2023

DevSecOps–short for development, security, and operations–is a trending practice that introduces security testing, triage, and risk mitigation as early as possible in the software development lifecycle, rather than bolting on security in the final stages. This was manageable when software updates were released every few months or even years.

Engineering 81

Engineering Software Review DevOps Compliance 81

Tenable

APRIL 19, 2023

Security teams responsible for enforcing regulatory and compliance mandates in a scalable and consistent way are often challenged to translate general legislative guidelines and controls into specific policies, tools and processes. Executive Order 14028 focuses on improving the security of the software supply chain.

Security 98

Security Compliance Cloud Guidelines 98

Prisma Clud

MAY 24, 2023

With attacks on software supply chains on the rise and the complexity of software dependencies making cloud security more challenging than ever, now is the time to adopt a container-optimized host operating system to simplify and accelerate your workload security.

Linux 96

Linux Azure Cloud Software Review 96

Palo Alto Networks

FEBRUARY 14, 2020

When I hear the term “supply chain” in reference to software development, I immediately think about the interlocking steps linking raw materials, refinement processes and consumption. The software development supply chain is, conceptually, much like the wheat supply chain where bread fit for consumption is the goal.

Software Development 59

Software Development Weak Development Team Software Development 59

Palo Alto Networks

JULY 28, 2021

Many are the same challenges federal agencies grapple with: Poor visibility into cloud environments, including compliance visibility. DevOps efforts to fix code vulnerabilities and software misconfigurations by 60%. Simplify Compliance Reporting and Improve Audit Efficiency. Inefficient auditing and reporting.

Security 52

Security Cloud Weak Development Team Study 52