Shawn Drew

Blog

Community

Veracode Community Partner Community

Schedule a Demo

Products

Manage your entire AppSec program in a single platform.

Simplify vendor management and reporting with one holistic AppSec solution.

Empower developers to write secure code and fix security issues fast.

Get expertise and bandwidth from Veracode to help define, scale, and report on an AppSec program.

Products & Services

Veracode delivers the AppSec solutions and services today's software-driven world requires. Meet the needs of developers, satisfy reporting and assurance requirements for the business, and create secure software.

View Product

Application Analysis

Veracode simplifies AppSec programs by combining five application security analysis types in one solution, all integrated into the development pipeline.

Static Analysis (SAST) Software Composition Analysis (SCA) Dynamic Analysis (DAST) Interactive Analysis (IAST) Discovery Penetration Testing

Developer Enablement

With automated, peer, and expert guidance, developers can fix – not just find – issues and reduce remediation time from 2.5 hours to 15 minutes.

Security Labs Security Labs Community Edition eLearning Customer Success Packages

AppSec Governance

AppSec programs can only be successful if all stakeholders value and support them. That’s why Veracode enables security teams to demonstrate the value of AppSec using proven metrics.

Analysis Center Discovery Customer Success Packages

Solutions

Our Approach

Veracode gives you solid guidance, reliable and responsive solutions, and a proven roadmap for maturing your AppSec program. By increasing your security and development teams’ productivity, we help you confidently achieve your business objectives.

Achieve DevSecOps Security as an Advantage Reduce Risk Meet Compliance Executive Order on Cybersecurity

Financial Services Software & Technology Retail & Ecommerce Healthcare Government

Prove at a glance that you’ve made security a priority and that your program is backed by one of the most trusted names in the industry.

Program Overview Verified Directory Get Verified

Developers

Developer Center

Documentation Center Quick Start Guide Scan Code Integrations API Reference

AppSec Knowledgebase Vulnerability Database Developer Community Contact Support

Status Page Product News

Veracode provides workflow integrations, inline guidance, and hands-on labs to help you confidently secure your 0s and 1s without sacrificing speed.

Secure Code Training

Partners

Partner Ecosystem

Veracode’s comprehensive network of world-class partners helps customers confidently, and securely, develop software and accelerate their business.

Find a Partner

Solution Providers Global System Integrators Technology Alliances & Integrations

Expand your offerings and drive growth with Veracode’s market-leading AppSec solutions. Access powerful tools, training, and support to sharpen your competitive edge.

Partner Program Overview Become a Partner Visit Partner Community

Resources

About Us

Shawn Drew has spent the last five years helping businesses understand the difference that technology can make for their internal processes, external connections, and bottom line. He specializes in all things cloud computing and security, and hopes to impart some knowledge on how the two can be combined to enhance the inherent benefits of each. His work has been published on the websites and blogs of a number of technology industry leaders, such as IBM, Veracode and Boundary.

Stay up to date on Application Security

Posts by Shawn Drew

Managing AppSec

October 26, 2015 | By Shawn Drew

5 Key Qualities of a CISO

The evolution of the CISO (chief information security officer) position over the past few years is nothing short of remarkable. Not too long ago, ensuring that a business's technology was secure fell to the CTO or CIO. But as the value of security has increased, the majority of enterprises now have…
Read Article

Managing AppSec

July 1, 2015 | By Shawn Drew

Secure Coding Is Required When Attacks…

With everything on a CISO's plate, preventing and reacting to external attacks has usually been done on a contingency basis, with a reliance on existing security to keep hackers away and the hope that a directed attack doesn't occur. But today, a majority of security professionals expect their…
Read Article
Intro to AppSec

March 23, 2015 | By Shawn Drew

How a Third-Party Compliance Policy Can…

It's nearly impossible for modern enterprises to avoid third-party software and outsourced code. But as hackers and thieves continue to focus on the software layer, it's becoming increasingly important for every enterprise to develop a process for addressing their outsourced or third-party software…
Read Article
Intro to AppSec

December 9, 2014 | By Shawn Drew

Safety Check: Methods for Analyzing…

With almost every software development team now utilizing open source code, outsourced development, commercial-off-the-shelf (COTS) software or some other form of outsourced software, the need to understand proper third-party security has never been greater. The gamut of methods for analyzing third…
Read Article
Intro to AppSec

September 23, 2014 | By Shawn Drew

A Guide to Static Testing of Web Apps:…

In the modern, fast-paced world of Agile software development, where an organization may have new or updated web apps released every few days or weeks, application security scans are sometimes delayed until the last part of the quality assurance (QA) phase. However, even if developers are versed in…
Read Article

Connect With Us

REQUEST A QUOTE SEE A DEMO

Sales: 888.937.0329
Support: 877.837.2203

Browse By Topic

Select a Topic

Application Security Tool Kit

Shawn Drew

Stay up to date on Application Security

Connect With Us

Browse By Topic

Love to learn about Application Security?