Managing AppSec

When your application security program is up and running, you need best-practice advice on managing and growing the program. Our security experts will guide you through important steps like measuring the success of your program or expanding it to cover more of the application landscape.

Keys to Scaling Your Application Security Program

sciccone's picture
By Suzanne Ciccone May 16, 2019  | Customer News
Learn to keys to effectively scaling your AppSec program

It’s best practice to kick off your AppSec inititive by starting small, scanning your most business-critical apps, and addressing the most severe flaws. But it’s also best practice to scale your program to eventually cover your entire app landscape, and all flaws. Why? First, because you can be breached through non-critical apps; JP Morgan was breached through third-party software supporting its... READ MORE

Announcing New Veracode Language Coverage: Apex, Go, and PLSQL

boshea's picture
By Brittany O'Shea May 1, 2019  | Customer News
Get details on Veracode's language coverage

When considering new language support, we think about our customers’ existing technology stacks and the new and emerging languages that will enable them to securely bring innovations to market faster. With this in mind, we recently added support for Apex, Go, and PLSQL: Apex, a proprietary language, enables businesses to enhance their deployments to improve how they... READ MORE

How Veracode Security Program Managers Benefit Your AppSec Program

kschaetzke's picture
By Kelly Schaetzke April 29, 2019  | Managing AppSec
Find out how Veracode security program managers can help build out your AppSec program.

The application security space is a complicated environment with a vast landscape of roles, development methodologies, and tech stacks. Developers, security leads, risk analysts, Scrum masters, vendor managers, operations teams, and system architects are all on the scene, just to name a few.  If we compare the land of AppSec to the agriculture industry, your Veracode Security Program... READ MORE

What Is Fix Rate, and Why Does It Matter?

sciccone's picture
By Suzanne Ciccone April 25, 2019
Exploring fix rate in AppSec

Once your application security program is up and running, there are several metrics you can use to gauge your progress and optimize your program. For instance, companies typically measure their scan activity, flaw density, and policy compliance. However, very few include metrics for fix rate, despite the fact that it is an important indicator of a program’s success. Fix rate indicates how long it... READ MORE

Veracode Is Named a Leader for Sixth Time in Gartner Magic Quadrant for Application Security Testing

pdaly's picture
By Pete Daly April 23, 2019  | Managing AppSec

Veracode has been named a Leader in the Gartner Inc. 2019 Magic Quadrant for Application Security Testing, marking our sixth year as a Leader. We’re excited to again be recognized as a Leader in the industry. We believe Gartner continues to place Veracode in this position because of our vision in application security testing and our ability to cover the entire software development lifecycle (SDLC... READ MORE

A Deeper Look at Gartner’s Hype Cycle for Application Security

vlattell's picture
By Valerie Lattell April 5, 2019
Details on Gartner's hype cycle for application security

The application security market is ever-changing, with new technologies emerging on a continuous basis. One helpful way to stay on top of the AppSec market is Gartner’s most recent Hype Cycle for Application Security, 2018. When it comes to DevSecOps, Gartner notes that “adoption is slow, but interest is high,” and showcases development’s shift towards DevOps environments in the name of speed and... READ MORE

Veracode Dynamic Analysis: Reduce the Risk of a Breach

bsarathy's picture
By Bhavna Sarathy April 2, 2019
Details on our new Dynamic Analysis offering

This blog post has been updated as of April 2, 2019 Veracode Dynamic Analysis is a dynamic scanning solution that features automation, depth of coverage, and unmatched scalability. Built on microservices and cloud technologies, the Veracode Dynamic Analysis solution is available on the Veracode SaaS platform. Veracode Dynamic Analysis helps both vulnerability managers tasked with safeguarding the... READ MORE

New eLearning Learner Levels Streamline Verified Progress

rgazarek's picture
By RJ Gazarek April 1, 2019
Find out more about new levels in Veracode eLearning

Before customers buy from you, they ask “Can you prove that your application is secure, and that you will protect our data if we give it to you?” Companies around the world struggle to answer this question, especially with the advancement of DevOps and rapid changes/deployment of applications into production. As such, we launched Verified to help you prove to your customers that you adopt... READ MORE

What Goals Are Right for Your AppSec Program?

sciccone's picture
By Suzanne Ciccone January 30, 2019
How to establish the right AppSec goals

Clear objectives and goals are key to success for any initiative, and AppSec is no exception. But many organizations struggle to establish application security goals, or focus on the wrong goals to the detriment of their program. Below we outline factors to consider when creating goals for your application security program. Metrics At a high level, the goals for your AppSec program should focus... READ MORE

Four Ways to Optimize Your Application Security Program

bsmith's picture
By Brad Smith January 17, 2019
4 ways to optimize your AppSec program

The basic blocking and tackling of defining and executing an application security program includes having an executive mandate, a policy, and an inventory of your applications. These comprise the minimum requirements to successfully define and execute a program. But once a program is defined, what are the factors that make it successful? Optimizing your application security program means setting... READ MORE

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.




contact menu