Jul 22, 2020 | Attack Surface Analysis, DevSecOps, Threat Modeling Process
For software and application development teams, data assets represent the culmination of years, even decades, of iterative hard work towards building business value. If put into the wrong hands, compromised data assets may ruin client relationships, lead to even...
Jun 23, 2020 | AWS, Cloud security, Cloud Threat Modeling, DevSecOps
While much of the tech world is adopting the private cloud for the added security and scalability, today’s developers typically rely on its public, less secure cousin. The reason is simple: it’s way cheaper. “Private” cloud infrastructure requires providers to assign...
Jun 2, 2020 | Attack Surface Analysis, AWS, AWS Security Epics Automated, CISO, DevOps, DevSecOps
By Michael Vizard The best cybersecurity defense is always applied in layers. If one line of defense fails, the next should be able to thwart an attack and so on. That same, tried and true, security in depth concept applies to DevOps as responsibility for...
May 21, 2020 | Attack Surface Analysis, AWS, CISO, Cloud security, DevSecOps
There is a consensus emerging demanding developers to assume more responsibility for security as more organizations embrace best DevSecOps practices and move to the cloud. The trouble is, most organizations aren’t providing the guidance and tools developers need to...
Apr 28, 2020 | Attack Surface Analysis, CISO, DevSecOps, Enterprise DevSecOps, Enterprise Threat Modeling, Security, Threat Modeling, ThreatModeler News
As organizations struggle to maintain support of security initiatives during uncertain times, ThreatModeler is contributing its industry leading technology to embolden the DevSecOps community to continuously prioritize the protection of their applications – in minutes...
Mar 19, 2020 | CISO, Cyber Risk, DevSecOps, Regulatory Compliance, Risk Management, Security
With concerns over data security mounting, the State of California enacted its California Consumer Privacy Act (CCPA) on January 1, 2020. This article will help businesses to understand the CCPA with information for anyone that collects, shares and sells the personal...