Neil DuPaul

Neil is a Marketing Technologist working on the Content and Corporate teams at Veracode. He manages much of the Veracode web presence while also working on strategic interactive media projects. In his spare time you'll find him drinking the CrossFit kool-aid, getting overly competitive in a video game, or doting over his lovely wife and daughter.
Posts by Neil DuPaul

Video Survey: What's the Best Way to Work with Vendors and Suppliers on Application Security

June 3, 2014

With data breaches through third-party applications lighting up news headlines left and right, the scrutiny on cohesion between software vendors and their customers is at an all time high. And it should be high because as we noted in our State of Software Security Supplement Report 90% of third-party code does not comply with enterprise security standards such as the OWASP Top 10. As a result of... READ MORE

Video Survey: How Would You Involve Software Development Teams in AppSec?

May 15, 2014

We're back with another question for security pros around the world. This video is part of our Future of Application Security series where we asked a group of appsec professionals in attendance at RSA Conference 2014 their thoughts around some of the biggest industry topics. Check out the video and if you have an opinion, we want to hear it! Secure software development remains one of the most... READ MORE

Video Survey: How can security professionals promote growth and innovation at their organizations?

May 8, 2014

Hey folks, we're back with our second installment of the Veracode video survey conducted earlier this year at the RSA Conference in San Francisco. We asked a variety of information security professionals their thoughts around the future of application security. If you missed the first video in our series where we asked 'When will the number of data breach incidents per year finally begin to fall... READ MORE

Customer Announcement: Securing Your Applications From Heartbleed

April 12, 2014

heartbleed-247x300_5.png If you are a current Veracode customer, we're delighted to announce that we can help you rapidly address the Heartbleed bug. We are offering our comprehensive capabilities for application vulnerability detection to all our customers, at no-charge, to help you respond to this threat. What is Veracode doing to help our customers? We have two capabilities in... READ MORE

See Veracode at RSA 2014!

February 21, 2014

RSA-Banner4_0.jpg Veracode will be at RSA 2014 February 24-28. Come learn about best practices for securing your enterprise from application-layer attacks – including web, mobile, legacy and third-party applications. You will find us in Booth #3521 in Moscone North Hall. You can learn why our cloud-based platform is a simpler and more scalable way to reduce application-layer risk... READ MORE

Changing A Memory: Veracode Shares the Holidays with Children in Need

January 6, 2014

Veracode employees allowed their true nature to shine by sharing their holidays with children in need. Bob Brennan,CEO, with Rose Mini of the Department of Children and Families. This holiday season at Veracode wasn't just spent at a computer like any other day. It’s the time of year that the generosity of its employees shines by making Christmas magical for children in need. Although this is... READ MORE

Static Testing vs. Dynamic Testing

December 3, 2013  | Intro to AppSec

Static vs Dynamic Analysis

​Updated: 7/18/2017 With reports of website vulnerabilities and data breaches regularly featuring in the news, securing the software development life cycle (SDLC) has never been so important. The enterprise must, therefore, choose carefully the correct security techniques to implement. Static and dynamic analyses are two of the most popular types of code security tests. Before implementation... READ MORE

Government and Software Security - Talking Code Part 7

October 15, 2013

How does the federal government differ from common enterprises when it comes to software security? Our trio breaks down the differences. The most thought provoking discussion comes around the question "Can we get a PCI for application security?," referencing the success that PCI compliance has had in helping security measures in its narrow scope. Every week we will be releasing another webisode... READ MORE

Third Party Components and the OWASP Top 10 - Talking Code Part 6

October 8, 2013  | Managing AppSec

The latest episode of Talking Code sees our trio tackling the subject of third party components in software. They cover the upsides and downsides of using open source software and the addition of known vulnerable components to the OWASP Top 10. Every week we will be releasing another webisode of Talking Code but if you want to watch the whole series, simply fill out the form at this link and get... READ MORE

Common Mobile Malware Types: Cybersecurity 101

October 2, 2013

The amount and variety of mobile malware programs targeting smartphone and tablet users is significant and growing at an alarming rate. This blog post will explain the common types of malicious programs targeting mobile platforms, and provide a brief description of each. What is Mobile Malware? Mobile malware first emerged as early as 2004 targeting the Symbian OS, but exploded in 2011 when... READ MORE

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.

 

 

 

contact menu