Oct 19, 2021 | Cloud security, DevOps, Recent News
When developing software, whether employing the older waterfall methodology or one of the new agile methodologies, everything starts with requirements. No requirements, no software. When developers think about turning requirements into software, what they primarily...
Oct 11, 2021 | Cloud security, DevOps, Recent News
NOTE: This is part three of a three-part series on making the business case for using commercial threat modeling tools. In part one, we put a dollar figure on the cost of a missed threat. In part two, we put a dollar figure on the extra hours required to produce a...
Oct 4, 2021 | Cloud security, DevOps, Recent News
NOTE: This is part two of a three-part series on making the business case for using commercial threat modeling tools. In part one, we put a dollar figure on the cost of a missed threat. In part two, we’ll put a dollar figure on the extra hours required to produce a...
Sep 28, 2021 | Cloud security, DevOps, Recent News
NOTE: This is part one of a three part series on making the business case for using commercial threat modeling tools. Anyone that’s been around the block software wise can tell you that as things start to really scale up, using free, open source software quickly...
Sep 20, 2021 | Cloud security, DevOps, Recent News
Developers are starting to embrace the idea that threat modeling is a best practice as part of the secure development lifecycle (SDLC). And if it is, it can no longer be seen as a project. It must evolve into a process. A Project vs a Process Projects and processes...
Sep 13, 2021 | Cloud security, DevOps, Recent News
When considering the evolution of the software development lifecycle, the first thing that comes to mind is the shift from waterfall to agile. The shift to agile was driven by the need for software development to be, well, more agile. From Catalyst Investors, “The...
