Senior Product Manager for Veracode Static analysis. Jon is responsible for the strategy of all Veracode Static Analysis features. Jon has been with Veracode since 2013, and has been working in information security since 2008 in a variety of consulting and product-oriented roles. Jon lives in Chicago, IL.
- Security at DevOps Speed: How Veracode Reduces False Positives
Originally Published on November 27, 2017 -- Updated on January 7, 2020 Application security solutions that slow or stall the development process simply aren’t feasible in a DevOps world. AppSec will increasingly need to fit as seamlessly as possible into developer processes, or it will be under-used or overlooked. But overlooking AppSec puts your organization at high risk of a damaging breach.… READ MORE
Stay up to date on Application Security
- How Static Analysis Has Changed in a DevOps World
The industry-wide shift to DevOps practices has changed more than just developer processes. It has also had a major impact on security, including application security testing techniques. Static analysis, for instance, has had to evolve along with development processes. Unlike early versions of static analysis solutions that only assessed completed code at the end of the development cycle, today’s… READ MORE
- Announcing Mobile Security Testing at DevOps SpeedNovember 16, 2017 | Customer News
Veracode is pleased to announce a completely redesigned, significantly faster mobile application security scanner for iOS, and mobile behavioral analysis for iOS and Android applications. Our new iOS scanner and mobile behavioral analysis technology combine to give you faster, more thorough mobile scanning results. Faster scan times, plus a unified view of results in the Veracode platform, means… READ MORE
Making Our Static Analysis Even Better As development speed has skyrocketed, security testing has shifted “left,” where it increasingly falls within the realm of the developer, rather than the security team. Today, modern application security programs feature centralized governance by security, but testing and fixing are owned by development in an automated fashion throughout the build process.… READ MORE
Developers face increased pressure to ship code rapidly, and are responding by adopting rapid development methodologies like CI/CD. In turn, application security needs to align with development processes and support this move toward more rapid development cycles. But this support is not solely about speed, it’s also about (1) understanding how developers use scanning results and (2) streamlining… READ MORE
- Get Security Results Earlier in the Development Process: Introducing Veracode Accelerated ResultsApril 5, 2017 | Customer News
Software is increasingly becoming key to every enterprise’s innovation, competitive advantage, and bottom line. At the same time, it’s also increasingly becoming cyberattackers’ favorite target. Consequently, in the world of software security testing, slow and late are out. “The earlier the better” doesn’t apply in all circumstances, but it is certainly the case when it comes to security testing… READ MORE
Veracode’s mission is to secure the software that powers the world. And one of the most interesting parts of working here, is that in order to achieve that goal, we get to learn about the entire spectrum of computing technologies. I think of enterprise software landscapes as similar to evolutionary biology. There are generations and generations of different technologies all coexisting… READ MORE
- Security Testing: What's Your Remediation Plan?
Application security testing is finally mainstream, after years of effort. Whether it’s compliance-driven or a result of the increasing realization that information security is about a lot more than just firewalls, application security testing is happening in most organizations. Here at Veracode, we test thousands of apps a year – and that… READ MORE
Application Security Tool Kit
Love to learn about Application Security?
Get all the latest news, tips and articles delivered right to your inbox.
No thanks, back to the article please.