Related Content

Combination padlock for security Continuous Security in Agile Development

"Continuous" gets mentioned a lot in agile and DevOps, but one area that often doesn’t get enough attention is how to continuously build, test, and deliver secure applications. Just like for quality, you can’t test security in, so you need to have a plan for how to build it in. Here are some tips on how to do that.
Jeffery Payne's picture
Jeffery Payne
March 29, 2019
Illustration from Aesop's fable "The North Wind and the Sun" Aesop and Agile: A Moral for Effective Teamwork

When a manager sees a problem on their team, they often want to act quickly to correct it. But if you take a “fix it” mentality too far, while you might get past the initial impediment, you have done little to help the team work better in the future. Let's look at another approach, based on one of Aesop's Fables.
Steve Berczuk's picture
Steve Berczuk
March 26, 2019
Espresso being poured into a cup of water and mixing Integrating Threat Modeling into Agile Development

Threat modeling helps you determine where to focus your security testing efforts when building your app. But people often wonder how it can fit into their existing agile software development process. Here are three things you can do to integrate threat modeling into your agile workflow, either early on or mid-project.
Alan Crouch's picture
Alan Crouch
March 13, 2019
A speaker giving a presentation to a room full of people Simple Ways to Improve Your Presentation Skills

If you want to improve your presentation skills, then whenever you attend a presentation, pay attention not just to the content, but also to the delivery of that content. In doing so, note what strikes you as positive or negative about the presentation. Then strive to emulate the positives and avoid the negatives.
Naomi Karten's picture
Naomi Karten
March 4, 2019
Software professionals in a meeting How to Appear Smart in a Meeting

If you want to convey the impression that you’re smart in a meeting, you’d better make sure to convey that impression outside the meeting as well, because that’s the image of you that people will carry. Don't try any gimmicks or go in with a plan to ask certain questions or show off. Just follow these simple tips.
Naomi Karten's picture
Naomi Karten
February 4, 2019
STEM Girl Scout Cookie Sales Help Fund STEM Badges, Including Cybersecurity and Programming

It's officially Girl Scout cookie season, and that means you’re doing a good thing when you buy those boxes of cookies. The Girl Scouts offer science- and technology-related badges and journeys to introduce girls to computer science, robotics, mechanical engineering, space exploration, and cybersecurity.
Pamela Rentz's picture
Pamela Rentz
January 31, 2019
Locked padlock on a computer screen Using Open Source Tools for Security Testing

Performing a series of security tests before deployment of your application has become paramount. But that doesn't have to mean a suite of costly tools. Plenty of open source security testing tools have become viable options. Here's why you should consider open source tools for your different types of security testing.
Saurabh Hooda's picture
Saurabh Hooda
January 22, 2019
owasp logo OWASP Releases Latest Top 10 IoT Vulnerabilities

The growing list of internet-connected devices bring amazing benefits, but the sharing of valuable information that brings this convenience also brings security concerns. The Open Web Application Security Project has released its Top 10 Internet of Things 2018 list of the highest-priority issues.
Pamela Rentz's picture
Pamela Rentz
January 17, 2019