The ZeroNorth Blog
How to Fix the DevOps Security Ownership Problem
Software must be developed quickly. The market won’t wait. Software must also be secure because a vulnerability could kill, or at least seriously wound, the business. Companies struggle to reconcile these two seemingly opposing priorities. So when it comes to software...
This is Why Our Latest Funding Round Will Make DevOps More Secure
Since joining ZeroNorth as CEO seven months ago, I have been inspired and energized by our team’s commitment to helping organizations tackle the pervasive software application security challenge. According to the House Science, Space, and Technology Committee, one in...
Why You Need to Rethink Your Security Governance
Despite the constant pressure to get innovations to market as fast as possible, you still have a responsibility to protect your software from exploitable vulnerabilities. This is a song we have been singing for a long time now. Development and AppSec teams—and,...
These Are The Big Takeaways From This Year’s RSA Conference 2020
Henry Ford once said, “Coming together is a beginning, staying together is progress and working together is success.” While each one of us is different—visionary or pragmatist, builder or fixer, disruptor or peacemaker, mentor or non-conformist, comic relief or...
This is Why DevSecOps Was the Backbone of RSA 2020
Last week, several ZeroNorth thought leaders outlined what they expected to see and do at this year’s RSA Conference. The journey to DevSecOps, or continuing to bridge the relationship between security and development, is top of mind for many, as well as conference...
Why Risk and Ownership Must Be Aligned—and How to Get There
They say you can’t manage what you can’t measure. In AppSec, this translates into you can’t protect what you don’t fully understand. This includes all the protective measures you have in place, where you are experiencing gaps and how all these things fit together to...
You Need to Know Why Humans Are Now the Biggest Challenge in Security
This year’s theme at RSA 2020 in San Francisco’s Moscone Center is possibly one of the most non-technological sounding concepts imaginable—the Human Element. And yet, many cybersecurity experts speaking during the week-long event will vehemently disagree. In fact, the...
How to Get Better Application Security and Preserve Time-To-Market
Having the right vulnerability scanning tools in place across the SDLC is one thing—a very critical thing, to be sure—but finding the capability to manage the outputs from those tools can be a different thing altogether. As you continue to grow your application...
What Will You See and Do at RSA Next Week?
The excitement and bustle of the RSA Conference is less than a week away! This year’s security theme relates to the “Human Element,” or how the ideas, creativity and knowledge of security professionals all play a part “in protecting the digital world.” Here at...