Interview: securing the University using NIST’s Cyber Framework

College and university campuses are notoriously difficult to tame. In this one-on-one interview, I speak with Plamen Martinov, the Chief Information Security Officer for the Biological Sciences Division at the University of Chicago about how his organization has used NIST’s Cybersecurity Framework to create a security lingua franca at UChicago and improve the organization’s security posture. Universities are bastions of creativity, learning and invention. But, from the perspective of information…

April 8, 2019
Read More >>

A Deeper Look at Gartner’s Hype Cycle for Application Security

The application security market is ever-changing, with new technologies emerging on a continuous basis. One helpful way to stay on top of the AppSec market is Gartner’s most recent Hype Cycle for Application Security, 2018. When it comes to DevSecOps, Gartner notes that “adoption is slow, but interest is high,” and showcases development’s shift towards DevOps environments in the name of speed and agility. DevOps is great for an organization,…

April 5, 2019
Read More >>

How Many Web Applications Does Your Organization Have? It’s More Than You Think

“Automation has saved a tremendous amount of time. We went from a day per app to review and now we are essentially reviewing through automation 18,000 scans a day with only 20 AppSec engineers. You do the math — 18,000 deploys a day with 20 engineers — you can’t scale that manually.” – Senior manager application and cloud security, insurance, The Total Economic ImpactTM of the Veracode Application Security Platform…

April 2, 2019
Read More >>

New eLearning Learner Levels Streamline Verified Progress

Before customers buy from you, they ask “Can you prove that your application is secure, and that you will protect our data if we give it to you?” Companies around the world struggle to answer this question, especially with the advancement of DevOps and rapid changes/deployment of applications into production. As such, we launched Verified to help you prove to your customers that you adopt security best practices for your…

April 1, 2019
Read More >>

Code makes the world go ‘round. Well, code and love. So love your code.

Your code is powerful, clever and elegant—but is it secure? More than ever, code makes the world go ‘round. From smart home thermostats to critical infrastructure to integrated clinical environments in hospitals, code runs so much of what touches our lives every day. Sometimes we are explicitly aware that we are interacting with software but increasingly we are not—code runs quietly amid the people, objects and experiences that shape our…

March 20, 2019
Read More >>

Live From RSA: Diversity and Inclusion

At one of the keynote addresses at RSA, the opening speaker asked that everyone who identifies as a woman in the audience stand up. It was amazing to see how many women there were at the conference, but we have a long way to go. Veracode has an incredibly diverse employee base, which makes working here a great experience. We don’t have men and women, we have “Veracoders,” and we…

March 8, 2019
Read More >>

Live From RSA: In a World Changed by Software, Make Security Your Competitive Advantage

At RSA, our own CEO Sam King and CTO Chris Wysopal presented to a roomful of intrigued attendees on how software has completely changed the way businesses tackle problems, how companies work everyday to change our world, and how doing so in a secure manner provides these companies with a competitive edge in the marketplace. They key takeaway, if you read nothing else is this: Companies leverage software to rapidly…

March 7, 2019
Read More >>

Live from RSA: Sophia the Social Humanoid Robot

A big theme throughout RSA this year, from the keynote to vendor booths, is the power that artificial intelligence can bring to the security world. While we do leverage machine learning at Veracode to better our vulnerability database, we thought it would be a lot more fun to bring a different form of AI to the booth this year. We invited Sophia, the world’s first social humanoid robot, to be…

March 7, 2019
Read More >>

Live From RSA: Coolest Things to See on the Expo Floor

The RSA expo hall is massive. Even the word “massive” doesn’t seem to do justice to just how big the floor is and how many vendors are present. Putting it in better context, it took me an entire hour to walk by every booth at a moderate pace, and that is without stopping for conversations or getting my badge scanned. For the first night, I wanted to see everything, and…

March 6, 2019
Read More >>

In a software-driven world, who is responsible for the risks?

The power of software to improve our lives and our world is almost limitless. Consequently, those creating software are wielding a power that demands a new level of responsibility. When I think about how fast the world is changing, I wonder how our ancestors must have felt at the dawn of past industrial revolutions. Everything changed – the way we made, shipped, and sold goods evolved, and daily schedules and…

March 6, 2019
Read More >>