John Steven

2 articles found



BSIMM10 Study: The Impact of DevOps on Software Security

By John Steven Oct 18, 2019

How do engineering-led security cultures work in practice? Has DevOps culture changed what security does, how it’s done—or both? As an industry, are we getting any ...

Read More

AppSec Program Governance

Is Vulnerability Management Hopeless?

By John Steven Jun 6, 2019

No, but you have to decide how much you’re willing to change to make it more effective… Can billions in TAM be wrong? In his blog ...

Read More