Read up on AppSec, DevSecOps & the path to software excellence.


Latest Blogs


DevSecOps is Not a Role or Technology: It’s a Culture to Wholly Embrace

By Andrei Bezdedeanu Jun 27, 2019

Too often during the software development lifecycle, security is being left behind in the name of continuous development and deployment. It’s a huge problem that leaves ...

Read More


Risk Visibility Across the App Stack & Cloud: ZeroNorth Unveils Integration with AWS Security Hub

By ZeroNorth Jun 23, 2019

Digital transformation initiatives drive organizations to become software-centric, as developers quickly deliver capabilities designed to stay ahead of the competition. To enable such a CI/CD pipeline, ...

Read More

AppSec Program Governance

Is Vulnerability Management Hopeless?

By John Steven Jun 6, 2019

No, but you have to decide how much you’re willing to change to make it more effective… Can billions in TAM be wrong? In his blog ...

Read More


The Need for Speed: Key Takeaways from the FS-ISAC Annual Summit

By Ernesto DiGiambattista May 23, 2019

Our team recently attended the FS-ISAC Annual Summit. If you’re unfamiliar, that’s the Financial Services Information Sharing and Analysis Center, and it’s one of the best ...

Read More


RSAC 2019 Predictions: Container Security, Application Security, AI and More

By ZeroNorth Feb 26, 2019

Security has been shifting left into software development for a decade. DevOps has unified Development and Ops teams

Read More


A Good Defense Wins Every Game

By Andrei Bezdedeanu Feb 6, 2019

The New England Patriots just won their sixth Super Bowl. It was the lowest scoring Super Bowl in history—the fewest combined points

Read More

AWS re:invent

AWS re:Invent 2018 Recap: Kubernetes, Serverless, ML, Security

By Sergey Bobrov Dec 5, 2018

AWS re:Invent continues to explode—there were 50,000+ attendees this year and many really good sessions.

Read More

Application Security

The SOC is Set. Next Up: Orchestration and Automation for Application Security

By ZeroNorth Nov 13, 2018

As we know all too well, cybersecurity is a field suffering from a staggering talent shortage. Security approaches that focus on disparate tools and human capital ...

Read More


How to Get Started with DevSecOps

By Andrei Bezdedeanu Oct 29, 2018

IT/Dev Connections 2018 took place recently in Dallas, TX. The conference was packed with strong technical sessions focused on a range of topics—from AWS and Azure ...

Read More


Multiple Cloud Providers, One Security Posture

By Ernesto DiGiambattista Oct 8, 2018

As organizations continue to implement cloud-first strategies, the provider of choice has been Amazon Web Services (AWS). According to a CRN article summarizing Gartner’s Magic Quadrant ...

Read More

Massachusetts Cybersecurity Forum

Helping Guide Massachusetts’ Cyber Security Initiatives

By Ernesto DiGiambattista Sep 27, 2018

At today’s second annual Massachusetts Cybersecurity Forum, Governor Charlie Baker and the Baker-Polito Administration made several exciting announcements, including naming U.S. Navy Captain Stephanie A. Helm ...

Read More

ZeroNorth Platform

Black Hat, DEF CON…Get Ready for Summer Camp!

By ZeroNorth Jul 25, 2018

It’s that time of year again, when hackers and security professionals begin their annual pilgrimage to tech mecca: DEF CON 26, BSides and Black Hat, affectionately ...

Read More

The ZeroNorth DevSecOps platform offers options for your DevSecOps journey—getting started with AppSec, finding enterprise visibility or fully integrating security into DevOps.