Jessica Lavery

Jessica is part of the content team at Veracode. In this role she strives to create and promote content that will engage, educate and inspire security professionals around the topic of application security. Jessica’s involvement with the security industry goes back more than a decade at companies like Astaro, and Sophos where she held roles in corporate communication and marketing.
Posts by Jessica Lavery

Cracking the Code on Application Security Buy-in

January 7, 2016  | Managing AppSec

Application security is unlike other forms of IT security in several ways. One of the reasons it is so unique, and at times difficult, is because it is a project that never ends. With other forms of security, you implement a great solution, create your rules, and then monitor and tweak when necessary. These types of security don’t typically require creating a new set of protocols or a... READ MORE

How AppSec Fits into the Security Ecosystem

December 18, 2015  | Intro to AppSec

how-application-security-fits-security-ecosystem.JPG When securing your organization, there are a variety of strategies and technologies you can employ. You know that reducing risk means implementing a variety of security technologies that are interdependent and intertwined. This interdependency creates a security ecosystem, and like all ecosystems it must remain in balance in order... READ MORE

Checklist for Creating an Application Security Program

December 17, 2015  | Managing AppSec

As we know, creating an application security program can be a daunting task. Yet many companies have been successful by creating a plan for implementing a program that is broken up into manageable chunks. But once you’ve decided that you must implement an advanced program at your company, how do you know where to start? This checklist provides a practical guide for creating your application... READ MORE

Why Application Security Programs Fail

December 17, 2015  | Managing AppSec

top-3-reasons-appsec-programs-fail-veracode.jpg The main hurdle that prohibits organizations from embarking on an advanced application security program is knowing where to start. But once you’ve figured out your starting point and your key metrics, and worked with groups in your enterprise to create a strategy, your program still isn’t guaranteed to be a success. There... READ MORE

How We Took Our Application Security Program From 0 to 60 in 12 Months

December 14, 2015  | Managing AppSec 3

In the grand scheme of an enterprise’s life, one year isn’t a long time. Especially when you are talking about designing, implementing, iterating and improving an application security program. But that is the amount of time one financial services company took to create and improve their application security program. Upon speaking with the project manager I was most struck by his... READ MORE

Presenting the Ultimate Guide to Getting Started with Application Security

December 10, 2015  | Intro to AppSec

Creating an Application Security Program Doesn’t Have to Be Like Climbing Everest Creating an application security program can be a daunting task – especially when you are starting from scratch! When you are beginning with nothing, the idea of creating a comprehensive and advanced application security program must feel like standing at the bottom of Mount Everest with your North Face... READ MORE

The case for anonymous case studies

December 10, 2015  | Managing AppSec

When beginning your application security journey, one of the most valuable actions you can take is to learn from the experiences of those who have gone before you. Yet the sensitive nature of security and the fear of becoming a target of hackers have led most enterprises to resist sharing their stories publicly. Some have shared their tales in closed-door meetings and exclusive events like the... READ MORE

Open Letter to Joe Biden - Consider security as your next career move

October 22, 2015  | Security News

Dear Vice President Biden, Joe, may I call you Joe? For months, political pundits, voters and the Democratic Party have been asking “will he or won’t he” with regard to your potential presidential intentions. On Wednesday, when you stood in the White House Rose Garden and announced that you will not run for president in 2016, you marked the end of what CNN described as your... READ MORE

Dark Reading News Desk: Security All Comes Back to Code

September 14, 2015

dr-bh-interview.JPG One of the great aspects of conferences like Black Hat in Las Vegas is the unscripted and candid conversations that take place. Journalists meet with industry experts to talk security trends, vendors talk to potential customers about their challenges and learn more about meeting market demands and, of course, attendees have impromptu discussions about the... READ MORE

UK Economy Under Siege: Business and Economic Consequences of Inadequate Cybersecurity

September 8, 2015

"WHSmith data breach spams confidential customer details," "Bank of England probes insurers' cyber defences," "Thomson data breach exposes hundreds of customer details" and "780 HIV patients' personal information disclosed in massive data breach." All headlines in the last 12 months from British publications talking about breaches in the UK. I'... READ MORE

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.




contact menu