Intro to AppSec

For those new to application security, we cover the application security basics and answer questions such as what is application security, why it's important, how it fits in the security ecosystem and how to get started.

In a software-driven world, who is responsible for the risks?

jlavery's picture
By Jessica Lavery March 6, 2019
The role of developers changes as software's role changes

The power of software to improve our lives and our world is almost limitless. Consequently, those creating software are wielding a power that demands a new level of responsibility. When I think about how fast the world is changing, I wonder how our ancestors must have felt at the dawn of past industrial revolutions. Everything changed – the way we made, shipped, and sold goods evolved, and daily... READ MORE

The 80’s called….they want their on-premises solution back!

ndgoudreau's picture
By Nancy Goudreau February 27, 2019
On-premises AppSec is technology of the past.

Are you still breakdancing? Storing data on your floppy disk? Performing your searches through the card catalog? Assuming the answer is no, then why are you still using an on-premises application security solution? In all seriousness, take a look at the benefits, and cost savings, you would see with a cloud-based AppSec solution: Start scanning immediately: No need to install servers and tools,... READ MORE

Why I'm Going to RSA 2018: Veracode's New SVP of Engineering

Neil's picture
By Neil DuPaul March 29, 2018  | Intro to AppSec

Paiman Nodoushan has been working at Veracode for about two months. In that time, he's met a lot of his peers and claims he already remembers over 50% of their names, no small feat. Jokes aside, he's been getting to know his team, our projects, and the ins and outs of our entire SaaS operation. In our quick interview, he describes the team at Veracode as hard working and passionate, and goes on... READ MORE

AppSec Buyers’ Insights: Binary vs. Source Code Scanning

boshea's picture
By Brittany O'Shea March 6, 2018
Examining the differences between binary and source code scanning

The discussion surrounding which is superior – binary or source code scanning – has plagued the static analysis market since its inception. A source code scanner analyzes un-compiled code, whereas a binary scanner analyzes compiled code, but in the end, the result is the same. They are simply two engineering solutions for the same problem. However, as a fundamental part of vendors’ approaches to... READ MORE

How Are We Securing the Booming Digital Economy? Our Latest Survey Results

sciccone's picture
By Suzanne Ciccone December 8, 2017  | Intro to AppSec
Are business leaders concerned about securing their digital initiatives?

The holiday season is upon us; are you buying all your gifts at the mall? Probably not. Many, if not most, of you are going to research, purchase and pay for all your holiday gifts online this year. Digitization is everywhere – changing every interaction and transaction. But it seems like breaches are everywhere as well – affecting all industries in all geographies. Are business leaders simply... READ MORE

How to Get Into Application Security

jtotzek's picture
By Julian Totzek-Hallhuber November 6, 2017

It’s been more than 20 years since I began my career. I started out working on updating Windows 95 client software, managing the BNC network cabling and getting Windows NT VPN working with partners in other countries. The Internet was just emerging, and I also built my first webpage for this company: grey background; nice little moving gifs; horizontal bars; and all the crazy stuff you did to... READ MORE

Application Security Virtual Summit: Attend a Top AppSec Conference from Your Desk

jzorabedian's picture
By John Zorabedian August 14, 2017  | Intro to AppSec
AppSec Virtual Summit

Veracode is hosting our first application security virtual summit on Tuesday, August 22, and there’s something for everybody — whether you’re a security, developer, or IT ops pro, a practitioner or manager. The summit, which we’re calling “Application Security: What, Why and How,” features a star-studded lineup of the industry’s top experts, and a schedule chock-full of interesting and... READ MORE

When Technology Fails Us. And When We Fail Technology.

bfitzgerald's picture
By Brian Fitzgerald April 28, 2017  | Intro to AppSec
technology changes the world

Today was one of those epiphanies for me about how intimate and co-dependent our relationship with our tech has become. And as is true in all co-dependent relationships, neither side is completely blameless. Sometimes when we’re blaming our tech for letting us down when we need it most, we should really be apologizing to it instead. As spring hits New England, I finally climbed out of the... READ MORE

The Veracode Platform: Where Development and Security Come Together

sciccone's picture
By Suzanne Ciccone April 11, 2017  | Intro to AppSec
Bringing security and development together

The development of software has become a continuous, integrated process that reaches beyond your internal development team. This allows your organization to grow and innovate like never before, but also requires you to think about security differently. Different teams with different priorities Security and development teams each have very different AppSec priorities, needs and requirements.... READ MORE

The Importance of Application Security: A Few of the Benefits and Risks

mfrancis's picture
By Melissa Francis January 19, 2017  | Intro to AppSec
Benefits versus risks of application security programs.

Application security is no longer optional; it has become an absolute necessity. With an increasing number of companies welcoming the idea of developing their own apps, in addition to purchasing record numbers of apps and incorporating open source code into their apps, the risks and vulnerabilities associated have also risen manifold. I’ve worked as a Security Program Manager at Veracode... READ MORE

 

 

contact menu