Sorry, not available in this language yet

English
日本語

DevSecOps

DevSecOps is based on the notion that security is a shared responsibility across development, operations, and security teams. Explore insights and research on DevSecOps challenges in the software development life cycle and learn how to mitigate them with best practices, security tools, and services.

67

Stories

21

Writers

Top Writers

Black Duck Editorial Staff

Charlotte Freeman

Steven Zimmerman

Last Published

Top 4 software development methodologies

Mar 24, 2024/5 min read

Top 4 software development methodologies

By Mike McGuire

Tags: Agile, CI/CD, Build Security into DevOps, DevSecOps

The integrated DevSecOps playbook: Steps for successful DevSecOps

Mar 03, 2024/4 min read

The integrated DevSecOps playbook: Steps for successful DevSecOps

By Steven Zimmerman

Tags: Build Security into DevOps, DevSecOps

The cybersecurity landscape - A discussion of future state and AI with Dr. Lisa Bradley

Feb 21, 2024/1 min read

The cybersecurity landscape - A discussion of future state and AI with Dr. Lisa Bradley

By Sammy Migues

Tags: Artificial Intelligence, Build Security into DevOps, DevSecOps

Feb 13, 2024/2 min read

DevSecOps best practices

By Steven Zimmerman

Tags: Build Security into DevOps, DevSecOps

Feb 07, 2024/2 min read

AppSec Decoded: How to implement security in DevOps

By Steven Zimmerman

Tags: Build Security into DevOps, DevSecOps

Jan 29, 2024/2 min read

AppSec Decoded:Tips for reaching DevSecOps maturity

By Taylor Armerding

Tags: DevSecOps

DevSecOps practices to maintain developer velocity

Jan 04, 2024/2 min read

DevSecOps practices to maintain developer velocity

By Fred Bals

Tags: DevSecOps, Manage Security Risks

Dec 14, 2023/3 min read

Consolidating effort for enhanced application security

By Shandra Gemmiti

Tags: DevSecOps, Manage Security Risks

Consolidate insight to enhance risk management

Dec 05, 2023/5 min read

Consolidate insight to enhance risk management

By Charlotte Freeman

Tags: DevSecOps, Manage Security Risks

Shifting everywhere: The importance of continuous testing in the software development life cycle

Dec 04, 2023/3 min read

Shifting everywhere: The importance of continuous testing in the software development life cycle

By Fred Bals

Tags: DevSecOps

Nov 20, 2023/1 min read

Building Security in Podcast: Cloud, AI, and quantum computing

By Sammy Migues

Tags: Artificial Intelligence, DevSecOps, Cloud Security

DevSecOps Report: ASPM and its impact on software security

Oct 18, 2023/2 min read

DevSecOps Report: ASPM and its impact on software security

By Fred Bals

Tags: Security News & Trends, DevSecOps

Building Security In Podcast: Future State Challenges

Oct 12, 2023/1 min read

Building Security In Podcast: Future State Challenges

By Sammy Migues

Tags: DevSecOps

Deep Dive: 2023 Global State of DevSecOps Report

Oct 10, 2023/2 min read

Deep Dive: 2023 Global State of DevSecOps Report

By Fred Bals

Tags: Security News & Trends, DevSecOps

Integrations to elevate your DevSecOps program

Sep 26, 2023/4 min read

Integrations to elevate your DevSecOps program

By Charlotte Freeman

Tags: DevSecOps, Manage Security Risks

Automate security: DevOps integrations for risk detection and remediation

Sep 19, 2023/4 min read

Automate security: DevOps integrations for risk detection and remediation

By Charlotte Freeman

Tags: Build Security into DevOps, DevSecOps

National Coding Week: Closing the skills gap with secure code training

Sep 18, 2023/5 min read

National Coding Week: Closing the skills gap with secure code training

By Taylor Armerding

Tags: Build Security into DevOps, Training, DevSecOps

How to safeguard your AI ecosystem: The imperative of AI/ML security assessments

Sep 07, 2023/5 min read

How to safeguard your AI ecosystem: The imperative of AI/ML security assessments

By John Waller

Tags: Artificial Intelligence, Build Security into DevOps, DevSecOps

Aug 31, 2023/

SANS 2023 DevSecOps Survey

By Black Duck Editorial Staff

Tags: Security News & Trends, DevSecOps

The SANS report: The dynamics of DevSecOps

Aug 30, 2023/3 min read

The SANS report: The dynamics of DevSecOps

By Charlotte Freeman

Tags: Security News & Trends, DevSecOps

Aug 22, 2023/4 min read

Building Security In Podcast: New strategies for managing risk

By Black Duck Editorial Staff

Tags: DevSecOps

Aug 16, 2023/6 min read

Solving cross-platform DevSecOps challenges with Black Duck

By Black Duck Editorial Staff

Tags: DevSecOps

Simplify AppSec program management with Software Risk Manager

Aug 01, 2023/3 min read

Simplify AppSec program management with Software Risk Manager

By Natasha Gupta

Tags: DevSecOps, Orchestration & Correlation

Avoiding pitfalls when integrating AppSec for DevOps

Jul 24, 2023/3 min read

Avoiding pitfalls when integrating AppSec for DevOps

By Charlotte Freeman

Tags: DevSecOps

The Polaris platform is redefining secure development

Jul 17, 2023/2 min read

The Polaris platform is redefining secure development

By Charlotte Freeman

Tags: DevSecOps, Cloud Security, Manage Security Risks

Jul 16, 2023/1 min read

Building Security In Podcast: Machine Learning + AI

By Black Duck Editorial Staff

Tags: Artificial Intelligence, DevSecOps

AppSec integrations enable a more secure SDLC

Jul 11, 2023/3 min read

AppSec integrations enable a more secure SDLC

By Charlotte Freeman

Tags: DevSecOps

Consolidation: The wave of the (AST) future

Jul 10, 2023/5 min read

Consolidation: The wave of the (AST) future

By Jim Ivers

Tags: Program Strategy & Planning, DevSecOps, Manage Security Risks

Podcast: The current state of DevOps

Jun 25, 2023/1 min read

Podcast: The current state of DevOps

By Black Duck Editorial Staff

Tags: Security News & Trends, Program Strategy & Planning, AppSec Best Practices, DevSecOps

Jun 15, 2023/3 min read

Continuous scanning in your production environment is more important than ever

By Vishrut Iyengar

Tags: DAST, DevSecOps

Jun 08, 2023/1 min read

AppSec Decoded: Ease of use with Polaris

By Black Duck Editorial Staff

Tags: Agile, CI/CD, DevSecOps

May 24, 2023/1 min read

AppSec Decoded: Easy to scale with Polaris

By Black Duck Editorial Staff

Tags: Build Security into DevOps, DevSecOps

May 14, 2023/1 min read

AppSec Decoded: Easy deployment with Polaris

By Black Duck Editorial Staff

Tags: 5G Wireless, DevSecOps, Manage Security Risks

Fast application security testing with the Polaris platform

Apr 25, 2023/3 min read

Fast application security testing with the Polaris platform

By Charlotte Freeman

Tags: Agile, CI/CD, DevSecOps, Manage Security Risks

We’re one step closer to knowing how to comply with EO 14028

Apr 25, 2023/3 min read

We’re one step closer to knowing how to comply with EO 14028

By Tim Mackey

Tags: Security News & Trends, Secure the Software Supply Chain, AppSec Best Practices, DevSecOps

Polaris integrations: Secure development at the speed of business

Apr 18, 2023/3 min read

Polaris integrations: Secure development at the speed of business

By Black Duck Editorial Staff

Tags: Agile, CI/CD, DevSecOps, Manage Security Risks

Apr 03, 2023/4 min read

Polaris: Your no-compromise SaaS AST solution

By Black Duck Editorial Staff

Tags: Agile, CI/CD, DevSecOps, Manage Security Risks

Automate your DevSecOps to take the pressure off triage

Mar 19, 2023/6 min read

Automate your DevSecOps to take the pressure off triage

By Steven Zimmerman

Tags: Build Security into DevOps, DevSecOps

Mar 15, 2023/7 min read

AppSec Decoded: Continuous AppSec testing in DevSecOps with Seeker IAST

By Black Duck Editorial Staff

Tags: Build Security into DevOps, IAST, DevSecOps

DevSecOps uses policy to take the pressure off testing

Mar 11, 2023/5 min read

DevSecOps uses policy to take the pressure off testing

By Charlotte Freeman

Tags: Security News & Trends, DevSecOps, Orchestration & Correlation

Take the pressure off coding for your developers

Feb 26, 2023/4 min read

Take the pressure off coding for your developers

By Steven Zimmerman

Tags: Security News & Trends, DevSecOps

Dec 14, 2022/4 min read

Automating web security testing within your DevOps pipelines

By Charlotte Freeman

Tags: Build Security into DevOps, IAST, DevSecOps

Nov 08, 2022/5 min read

Scalable SAST and SCA in a single solution with Polaris fAST services

By Patrick Carey

Tags: SCA, Build Security into DevOps, SAST, DevSecOps, Manage Security Risks

Oct 31, 2022/4 min read

Synopsys introduces GitHub Actions integration for developers

By Steven Zimmerman

Tags: Build Security into DevOps, DevSecOps

Oct 03, 2022/4 min read

IDE-based application security for developers in IntelliJ

By Steven Zimmerman

Tags: SCA, Build Security into DevOps, SAST, DevSecOps

Bridging the security gap in continuous testing and the CI/CD pipeline

Jul 24, 2022/7 min read

Bridging the security gap in continuous testing and the CI/CD pipeline

By Kimm Yeo

Tags: IAST, DevSecOps, Manage Security Risks, Orchestration & Correlation

Jul 18, 2022/1 min read

AppSec Decoded: Application security orchestration and correlation

By Black Duck Editorial Staff

Tags: Build Security into DevOps, DevSecOps, Manage Security Risks, Orchestration & Correlation

Building security into existing source code management workflows

May 17, 2022/2 min read

Building security into existing source code management workflows

By James Rabon

Tags: Build Security into DevOps, DevSecOps, Orchestration & Correlation

Code Sight Standard Edition: Application security optimized for the needs of developers

Feb 09, 2022/4 min read

Code Sight Standard Edition: Application security optimized for the needs of developers

By Raj Kesarapalli

Tags: SCA, Security News & Trends, Build Security into DevOps, SAST, DevSecOps

Feb 09, 2022/4 min read

How to cybersecurity: Gravity is a harsh mistress

By Jonathan Knudsen

Tags: Build Security into DevOps, DevSecOps, Manage Security Risks

Jan 31, 2022/1 min read

AppSec Decoded: Building security into DevSecOps

By Black Duck Editorial Staff

Tags: Build Security into DevOps, DevSecOps

Sep 08, 2021/5 min read

ASOC series part 2: How to scale AppSec with application security automation

By Black Duck Editorial Staff

Tags: DevSecOps, Manage Security Risks, Orchestration & Correlation

ASOC series part 1: How application security orchestration and correlation can improve DevSecOps efficiency

Sep 02, 2021/7 min read

ASOC series part 1: How application security orchestration and correlation can improve DevSecOps efficiency

By Black Duck Editorial Staff

Tags: DevSecOps, Manage Security Risks, Orchestration & Correlation

May 06, 2021/8 min read

Top 10 DevSecOps best practices for building secure software

By Sneha Kokil

Tags: Agile, CI/CD, Build Security into DevOps, AppSec Best Practices, DevSecOps

Integrating fuzzing into DevSecOps

Apr 08, 2021/12 min read

Integrating fuzzing into DevSecOps

By Black Duck Editorial Staff

Tags: Fuzzing, Build Security into DevOps, DevSecOps

Don’t get overwhelmed with trivial defects. Manage them!

Jan 03, 2021/6 min read

Don’t get overwhelmed with trivial defects. Manage them!

By Taylor Armerding

Tags: Build Security into DevOps, AppSec Best Practices, DevSecOps

6 Findings from DevSecOps Practices' Survey

Dec 07, 2020/4 min read

6 Findings from DevSecOps Practices' Survey

By Fred Bals

Tags: AppSec Best Practices, DevSecOps, Manage Security Risks

Configure security tools for effective DevSecOps

Dec 02, 2020/6 min read

Configure security tools for effective DevSecOps

By Taylor Armerding

Tags: Agile, CI/CD, Build Security into DevOps, DevSecOps

How to cyber security: Gotta go fast … but why?

Nov 12, 2020/5 min read

How to cyber security: Gotta go fast … but why?

By Jonathan Knudsen

Tags: Agile, CI/CD, Build Security into DevOps, DevSecOps

Three DevSecOps challenges and how to mitigate them

Nov 09, 2020/3 min read

Three DevSecOps challenges and how to mitigate them

By Patrick Carey

Tags: Agile, CI/CD, Build Security into DevOps, Training, DevSecOps

Get effective DevSecOps with version control

Oct 18, 2020/5 min read

Get effective DevSecOps with version control

By Taylor Armerding

Tags: Agile, CI/CD, Build Security into DevOps, DevSecOps

How does IAST fit into DevSecOps?

Mar 10, 2020/3 min read

How does IAST fit into DevSecOps?

By Black Duck Editorial Staff

Tags: Agile, CI/CD, Build Security into DevOps, IAST, DevSecOps

Find and fix open source and proprietary code security defects in the IDE with Polaris and Code Sight

Feb 12, 2020/3 min read

Find and fix open source and proprietary code security defects in the IDE with Polaris and Code Sight

By Patrick Carey

Tags: SCA, Security News & Trends, Build Security into DevOps, SAST, DevSecOps

Automation: One of the keys to DevSecOps

Oct 11, 2018/2 min read

Automation: One of the keys to DevSecOps

By Black Duck Editorial Staff

Tags: Agile, CI/CD, Program Strategy & Planning, DevSecOps, Manage Security Risks

5 DevSecOps essentials and how to achieve them

Jun 06, 2018/2 min read

5 DevSecOps essentials and how to achieve them

By Black Duck Editorial Staff

Tags: Agile, CI/CD, Security News & Trends, DevSecOps

May 07, 2018/9 min read

How to integrate SAST into the DevSecOps pipeline in 5 simple steps

By Meera Rao

Tags: Agile, CI/CD, Build Security into DevOps, SAST, DevSecOps

Streamlining development with a DevSecOps life cycle

Nov 13, 2017/2 min read

Streamlining development with a DevSecOps life cycle

By Apoorva Phadke

Tags: Agile, CI/CD, Build Security into DevOps, DevSecOps, Manage Security Risks

67

Stories

21

Writers

Top Writers

Black Duck Editorial Staff

Charlotte Freeman

Steven Zimmerman

Last Published