Software Integrity

Archive for January 2016

 

The Importance of External Network Delta Testing (in Managing Security Risk)

For the purposes of this post, external network delta testing refers to the act of running network mapping and automated vulnerability scanning over a set of hosts at a consistent interval of time.  An example of this may be performing automated assessments and network mapping every business quarter over an organization’s external IP space. Performing […]

Continue Reading...

Posted in Network Security, Software Security Testing, Vulnerability Assessment | Comments Off on The Importance of External Network Delta Testing (in Managing Security Risk)

 

SSDLC 101: What Is the Secure Software Development Life Cycle?

Most organizations have a well-oiled machine with the sole purpose to create, release, and maintain functional software. However, the increasing concerns and business risks associated with insecure software have brought increased attention to the need to integrate security into the development process. Implementing a proper Secure Software Development Life Cycle (SDLC) is important now more […]

Continue Reading...

Posted in Maturity Model (BSIMM), Software Development Life Cycle (SDLC), Vulnerability Assessment | Comments Off on SSDLC 101: What Is the Secure Software Development Life Cycle?

 

5 Essentials of Cloud-Based Application Security Testing

This is a question often asked by proponents of the cloud movement. In this article, I will highlight what, how, why, and when to choose a cloud-based approach for application security testing through the five essential factors. Cloud-based (aka on-demand) application security testing is a relatively new type of testing in which the applications are […]

Continue Reading...

Posted in Application Security, Cloud Security, Software Security Testing | Comments Off on 5 Essentials of Cloud-Based Application Security Testing