Home
securing.dev
Cancel

DevSecOps Essentials: Talent

TL;DR / Summary at the end of the post. The information shared in this series is the distilled knowledge gained from my experience building the DevSecOps program at Thermo Fisher Scientific (a gl...

DevSecOps Essentials: Manual Testing

TL;DR / Summary at the end of the post. The information shared in this series is the distilled knowledge gained from my experience building the DevSecOps program at Thermo Fisher Scientific (a gl...

DevSecOps Essentials: Dynamic Testing

TL;DR / Summary at the end of the post. The information shared in this series is the distilled knowledge gained from my experience building the DevSecOps program at Thermo Fisher Scientific (a gl...

DevSecOps Essentials: Mitigations

TL;DR / Summary at the end of the post. The information shared in this series is the distilled knowledge gained from my experience building the DevSecOps program at Thermo Fisher Scientific (a gl...

DevSecOps Essentials: Code Security

TL;DR / Summary at the end of the post. The information shared in this series is the distilled knowledge gained from my experience building the DevSecOps program at Thermo Fisher Scientific (a gl...

DevSecOps Essentials: Software Asset Management

TL;DR / Summary at the end of the post. The information shared in this series is the distilled knowledge gained from my experience building the DevSecOps program at Thermo Fisher Scientific - a F...

DevSecOps Essentials: An Overview

TL;DR / Summary at the end of the post. The information shared in this series is the distilled knowledge gained from my experience building the DevSecOps program at Thermo Fisher Scientific (a gl...

A Return to Darkness

Allow me to preface everything you’re about to read with this: I hope that I’m wrong. Lately I’ve been thinking about what it must have been like to be a Roman citizen during the fall of thei...

Security is a Feature

TL;DR / Summary at the end of the post. The greatest challenge in any Application Security or DevSecOps program is driving remediation of vulnerabilities found in the software our companies wr...

Static Analysis: Local vs. Remote Sources

TL;DR / Summary at the end of the post. Full Disclosure up-front: I am employed as a Code Scanning Architect at GitHub at the time I published this article. In Part 1 of this series I made re...