Skip to main content

Hope Goslin

Hope is part of the content team at Veracode, based in Burlington, MA. In this role, she focuses on creating engaging AppSec content for the security community.

Posts by Hope Goslin

Stay up to date on Application Security

  • The Evolution of AppSec: Past, Present, and Future

    In a recent podcast with IDG, Chris Wysopal, Veracode Chief Technology Officer, speaks to the evolution of application security (AppSec) over the past ten years. In his evaluation, Wysopal leverages findings from Veracode’s annual State of Software Security (SOSS) reports. The first volume of the SOSS report, published in March of 2010, focuses on explaining and advocating for an application… READ MORE

  • 4 First Steps to Help Your Organization Shift AppSec Left

    In order to stay competitive in today’s fast-past world, organizations need to rapidly deploy new software. One way to ensure fast deployment is to take Beyoncé’s advice and move security, “to the left, to the left.” By shifting security left – to the beginning of the software deployment lifecycle (SDLC) – there are significant business benefits. Running security tests early enables organizations… READ MORE

  • Weighing Pros and Cons to Select AppSec Testing Types

    When determining the right testing types for your application security (AppSec) program, there are several questions that likely come to mind: What is the difference between the various AppSec tests? What vulnerabilities do the tests uncover? How many testing types do I need to include in my program? You can answer these questions and form the appropriate mix of security tests for your… READ MORE

  • Best Practices and Practical Steps to Guide Your AppSec Journey

    Imagine that you are tasked with planning a vacation for you and your family. For your ideal trip, you would jet off to a five-star resort on a private island for a month of pampering and fine dining. But, since you have two children, a limited budget, and only one week of paid time off, you settle for a three-star, theme park resort with a spa and outdoor pool. Your family has a great time on… READ MORE

  • What Software Composition Analysis and Your Dentist Have in Common

    SAST, DAST, IAST, SCA … confused about the differences? We thought it might be helpful to clear things up by using the analogy of human health. When you visit the doctor with an ailment, or even for a routine checkup, you are likely to undergo a series of tests to find potential health conditions or diseases. Since the tests are targeting different parts of the mind or body, the results may vary… READ MORE

  • Forrester Study on the Benefits of Cloud vs. On-Premises AppSec

    Veracode recently commissioned Forrester Consulting to conduct research on the Total Economic Impact™ of using a cloud-based application security (AppSec) solution versus an on-premises solution. To collect information on the benefits and risks associated with the solutions, Forrester interviewed four customers who have used Veracode as well as a variety of on-premises application security… READ MORE

  • Forrester Analysis on the State of Government Application Security: Government Must Make Significant Advances

    In a recent report, The State of Government Application Security, 2020, Forrester analysts establish that governments are far behind other industries in critical areas of application protection. This finding – backed by the Forrester Analytics Global Business Technographics® Security Survey, 2019 – is especially alarming given the amount of sensitive citizen data housed by government agencies.… READ MORE

  • 2020 Trend Alert: Consumer Privacy

    We are only a few weeks into 2020, and it is safe to say that consumer privacy is all the rage. California kicked off the movement with the California Consumer Privacy Act (CCPA), AB 375, which went into effect on January 1, 2020. The act aims to give consumers more rights to their personal data. Since then, Washington, New Hampshire, and New York have all proposed similar consumer privacy bills… READ MORE

  • Making Moves: How to Successfully Transition to DevSecOps

    As we look toward the future, it is becoming critical that development organizations are not only agile and flexible but – just as important – secure. In turn, security and development need to work together more closely than ever before. When security and development are in unison, organizations can produce higher quality code quicker and more securely while reducing costs and conforming to… READ MORE

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.