Related Content

For The Web logo Is It Time to Stand Up for the Web?

Does the Web need fixing? Widely acknowledged as the creator of the World Wide Web back in 1994 and the current Director of the World Wide Web Consortium on web standards, Tim Berners-Lee launched #ForTheWeb to help resolve what the organization views as current risks and future challenges.
Pamela Rentz's picture
Pamela Rentz
November 22, 2018
medical device FDA Updates Cybersecurity Recommendations for Medical Devices

Because of the rapidly evolving nature of cybersecurity threats and risks, the U.S. Food and Drug Administration recently released a draft of updated premarket cybersecurity recommendations on how device manufacturers can better protect their products and proactively address security.
Pamela Rentz's picture
Pamela Rentz
October 25, 2018
A cockpit's dashboards as a pilot flies a plane, photo by Kristopher Allison Testing at 43,000 Feet: Reporting Risk That Matters

Many teams' daily testing gets broken down into numbers. If you're used to dashboards, it can be easy to forget the prime objective: to raise up quality issues—or, in the case of safety-critical devices, potential hazards. Graphs are comfortable, but do they really provide the information we should be looking for?
Alexandre Bauduin's picture
Alexandre Bauduin
September 5, 2018
challenge accepted Notable Challenges: NASA, LEGOs, and YouTubers

Did you ever say to yourself, "What a brilliant idea! How did they come up with that?" One school of thought holds that the best "aha" moments take place when someone’s alone. However, another theory—shared by organizations such as NASA and LEGO—is that a problem shared is a problem solved.
Pamela Rentz's picture
Pamela Rentz
August 30, 2018
A person tapping their phone to a digital payment system, photo by Jonas Leupe Security Testing Payment Services in the Era of Connected Ecosystems

There are many new trends in online payment technology, so the amount of data passing through and stored across varying systems is growing, requiring new standards for how data is captured, stored, used, and destroyed. Testers especially need to consider vulnerabilities related to data privacy and cyber security.
Elizabeth Koumpan's picture
Elizabeth Koumpan
August 22, 2018
Sunset over the sea seen from the inside of a large pipe, photo by Erlend Ekseth 5 Features of a Successful DevSecOps Pipeline

When practicing DevOps, how should you include security? What's the best way to build security into an existing continuous integration, continuous delivery, and continuous deployment pipeline? Let’s take a look at five essential features of successful DevSecOps pipelines and analyze where security can benefit most.
Alan Crouch's picture
Alan Crouch
August 10, 2018
Icon of a security padlock over apps on a phone Measuring the Effectiveness of Your Vulnerability Discovery Strategies

Trying to prove an app has no vulnerabilities is fraught with challenges, so teams need to choose appropriate strategies for securing apps and ways of measuring whether the time and money spent searching for vulnerabilities is effective. This means understanding how metrics apply to your specific environment.
Mike Shema's picture
Mike Shema
August 8, 2018
Security padlock on a fence DevOps and Security: 5 Principles for DevSecOps

With the trend toward a more continuous delivery and deployment process, late-lifecycle activities like security assurance present a significant hurdle to continuously delivering value to customers. DevSecOps addresses this by shifting security assurance activities, personnel, and automation closer to development.
Jeffery Payne's picture
Jeffery Payne
August 3, 2018