10 min read - Here's what constitutes a mature application security program, plus how to get there—and stay there. 
6 min read - NIST and the NTIA are probably going to require software bills of materials. Here's why making these public is problematic.
TechBeacon’s in-depth analysis of the latest vulnerability data shows the threat landscape is changing rapidly. Here's what your team needs to know.
5 min read - Citizen developers, sure. But how do you get no-code/low-code tools into the hands of the professionals? Here are some tips.
6 min read - The moral: One to watch. And if you’re already watching Rust, this could be its chasm-crossing moment.
Red rock crab (Grapsus grapsus)
7 min read - There are several frameworks for scaling agile. Here's what to use for different tasks—and how to tell when you may not need a framework at all.
5 min read - Here are essential lessons for companies looking to secure their sprawling data, whether on-premises or in the cloud.
10 min read - It's important to have the right resources for test automation, including following the right experts on Twitter. Here are the ones you need to know.
5 min read - The moral: 2019-era ransomware is quite different from today’s attacks, which steal the data before encrypting it.
Astronaut in a sunflower field
6 min read - New product privacy framework translates GDPR and CCPA into what product owners and developers can do to ensure data privacy.

Pages