Neil DuPaul

Neil is a Marketing Technologist working on the Content and Corporate teams at CA Veracode. He currently focuses on Developer Awareness through strategic content creation. In his spare time you'll find him doting over his lovely wife and daughter. He is a Co-Owner of CrossFit Amoskeag in Bedford NH, his favorite topic is artificial intelligence, and his favorite food is pepperoni pizza.
Posts by Neil DuPaul

Changing A Memory: CA Veracode Shares the Holidays with Children in Need

January 6, 2014

CA Veracode employees allowed their true nature to shine by sharing their holidays with children in need. Bob Brennan,CEO, with Rose Mini of the Department of Children and Families. This holiday season at CA Veracode wasn't just spent at a computer like any other day. It’s the time of year that the generosity of its employees shines by making Christmas magical for children in need. Although this... READ MORE

Static Testing vs. Dynamic Testing

December 3, 2013  | Intro to AppSec

Static vs Dynamic Analysis

​Updated: 7/18/2017 With reports of website vulnerabilities and data breaches regularly featuring in the news, securing the software development life cycle (SDLC) has never been so important. The enterprise must, therefore, choose carefully the correct security techniques to implement. Static and dynamic analyses are two of the most popular types of code security tests. Before implementation... READ MORE

Government and Software Security - Talking Code Part 7

October 15, 2013

How does the federal government differ from common enterprises when it comes to software security? Our trio breaks down the differences. The most thought provoking discussion comes around the question "Can we get a PCI for application security?," referencing the success that PCI compliance has had in helping security measures in its narrow scope. Every week we will be releasing another webisode... READ MORE

Third Party Components and the OWASP Top 10 - Talking Code Part 6

October 8, 2013  | Managing AppSec

The latest episode of Talking Code sees our trio tackling the subject of third party components in software. They cover the upsides and downsides of using open source software and the addition of known vulnerable components to the OWASP Top 10. Every week we will be releasing another webisode of Talking Code but if you want to watch the whole series, simply fill out the form at this link and get... READ MORE

Common Mobile Malware Types: Cybersecurity 101

October 2, 2013

The amount and variety of mobile malware programs targeting smartphone and tablet users is significant and growing at an alarming rate. This blog post will explain the common types of malicious programs targeting mobile platforms, and provide a brief description of each. What is Mobile Malware? Mobile malware first emerged as early as 2004 targeting the Symbian OS, but exploded in 2011 when... READ MORE

Similarities Between Building Software and LEGO: Talking Code Part 5

October 1, 2013

Chris Wysopal, Paul Roberts, and Joshua Corman break down the intricacies of externally developed software. Third party code has been a growing issue for many organizations that have been pushing out software regularly. The trio talks about the concept of Legoland and how building applications today shares many similarities with our favorite childhood hobby. Watch Talking Code episode 5 now and... READ MORE

The Virtual Scan Appliance, Scan Internal Applications

September 30, 2013

The Virtual Scan Appliance (VSA) is a virtual appliance that enables dynamic application security testing behind a customer's firewall through the installation of a virtual machine (VM) in a datacenter behind the firewall. The VSA is integrated into the CA Veracode Platform for workflow, policy management, and reporting, giving customers a single location for managing the security of public... READ MORE

Is it Wrong to Assume Software Should be Secure? Part 4 of Talking Code

September 24, 2013

Where does the responsibility of securing software lie, with vendors or their customers? Ultimately once customers start consistently asking for security, it's a feature that should be delivered like any other. So what does this mean for all of us? Demand security, trust but verify and hold companies accountable for the quality of the products they sell. Every week we will be releasing another... READ MORE

OWASP Top Ten 2013

September 18, 2013  | Intro to AppSec

The Open Web Application Security Project (OWASP) was started in 2001 with the avowed mission of ‘making software security visible, so that individuals and organizations worldwide can make informed discussions about true software risks.’ Since then OWASP’s influence has grown to the point that their Top 10 project is referenced by many standards, books, tools, and organizations... READ MORE

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.

 

 

 

contact menu