by Aditya Patni | Nov 29, 2023
DevSecOps is development, security, and operations, and it involves integrating “security” at all stages of the software development life cycle rather than at only the end of SDLC. The term DevSecOps was initially coined by John Willis and Damon Edwards in...
by Aditya Patni | Jan 23, 2023
DevSecOps automation can help organizations by scaling development, adding security, and reducing repetitive tasks. Companies want to make sure their DevSecOps strategy includes automation so that they can benefit from the advantages it offers. With automated...
by Aditya Patni | Dec 13, 2022
Your organization has probably overcome the simplest problem in its digital transformation – the decision to adopt security to its DevOps approach to doing traditional business. The “shift left” approach of incorporating security at every stage of the software...
by Misbah Thevarmannil | Dec 7, 2022
Loren Kohnfelder and Praerit Garg, two engineers from Microsoft, came up with STRIDE in the 1990s. Till now, STRIDE remains to be the concept most security professionals use, being proactive in discovering and fixing vulnerabilities. The model, therefore, allows for...
by Aditya Patni | Nov 16, 2022
Threat modeling is a systematic approach to analyzing the security risks in an application or a system. The goal of threat modeling is to decrease the chance that a new vulnerability will be introduced. It can also help identify which parts of an application need more...