Suzanne Ciccone

Suzanne is a marketing writer at Veracode. In this role, she’s part of a team working to shed light on AppSec through compelling and clear content. Suzanne has been a professional editor and writer for many years, for companies including Forrester Research, Cengage Learning and EBSCO Information Services.
Posts by Suzanne Ciccone

What Does an Advanced Application Security Program Look Like?

March 23, 2017  | Managing AppSec

This is the fourth and final entry in a blog series that looks at each stage of an application security program’s maturity and outlines your next steps as you move toward an advanced program. We typically see organizations fall within one of these four stages of application security: Reactive Baseline Expanded Advanced So, what does it look like when you reach the advanced stage? Based on... READ MORE

Podcast: How to Approach the NY DFS Cybersecurity Regulations - AppSec in Review

March 21, 2017  | Security News

How should you approach the new NY DFS cybersecurity regulations? In Episode 3 of Veracode's AppSec in Review podcast, Evan Schuman and Veracode's Brian Fitzgerald discuss how these regulations differ from past requirements and best practices for addressing them. They explore, among other things: The opportunity to use these regulations as a framework for a solid security program The... READ MORE

Your Next Steps if Your AppSec Program Is in the Expanded Stage

March 16, 2017  | Managing AppSec

This is the third entry in a blog series that looks at each stage of an application security program’s maturity and outlines your next steps as you move toward an advanced program. We typically see organizations fall within one of these four stages of application security: Reactive Baseline Expanded (you're here!) Advanced If you are in the expanded application security stage, you... READ MORE

Your Next Steps if Your AppSec Program Is in the Baseline Stage

March 9, 2017  | Managing AppSec

This is the second entry in a blog series that looks at each stage of an application security program’s maturity and outlines what the next steps are to move toward an advanced program. We typically see organizations fall within one of these four stages of application security: Reactive Baseline (you're here!) Expanded Advanced If you are in the baseline application security stage,... READ MORE

Your Next Steps if Your AppSec Program Is in the Reactive Stage

February 23, 2017  | Managing AppSec

This is the first blog in a series that will look at each stage of an application security program’s maturity and outline what the next steps are to move toward an advanced program. We typically see organizations fall within one of these four stages of application security: Reactive (you're here!) Baseline Expanded Advanced If you are in the first stage and taking a reactive approach... READ MORE

How important is it to stay on top of the quickly evolving landscape of application security and application layer risk?

February 9, 2017  | Managing AppSec

In a word, very. You simply cannot secure your application layer without being one step ahead of application security threats and solutions. The problem is that it’s almost impossible to keep up in the face of the current security skills shortage. In a report titled, “Hackers Wanted: An Examination of the Cybersecurity Labor Market,” the RAND Corporation states that: “It... READ MORE

AppSec in Review Podcast, Episode 2: What We Expect to See at RSA 2017

February 7, 2017  | Security News

The annual RSA Conference is one of the biggest security industry events of the year and, as such, is often a “canary in the coalmine” – signaling the trends, themes and future direction of the security industry. In Episode 2 of Veracode’s AppSec in Review podcast, Brian Fitzgerald, Veracode Chief Marketing Officer, talks to Evan Schuman about what those emerging 2017... READ MORE

Podcast: AppSec in Review - Making Sense of the New York DFS Cybersecurity Regulations

January 28, 2017  | Security News

View our new guide for continued learning: Navigating the New York Department of Financial Services' Cybersecurity Regulations The New York Department of Financial Services recently issued proposed regulations for cybersecurity that seek to standardize the way that financial services institutions protect information systems and the business and personal information they manage.... READ MORE

Podcast: Challenges of the Digital Economy

January 26, 2017  | Security News

The digital innovations used by companies are making it easier for companies to improve their productivity. They also remove barriers for startups to enter new markets and make our everyday lives easier. However, the digital economy comes with challenges and risks. During this installment of Veracode’s AppSec in Review Podcast, Brian Fitzgerald, CMO at Veracode discusses the challenges... READ MORE

What’s the Worst That Can Happen? The Cost of a “Wait and See” AppSec Plan

January 10, 2017  | Managing AppSec

In a previous blog post, we talked about the cost of a “do nothing” AppSec plan. In that blog post, we pointed out that ignoring application security can be a costly move. Why? Because your chance of a breach is very high, and so is the cost incurred from most breaches. In addition, you could now face regulatory fines by ignoring application security. But a “wait and see”... READ MORE

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.

 

 

 

contact menu