1 03, 2017

Automate Web App Security Scanning Using Arachni

By | March 1st, 2017|Uncategorized|

In this post I'm going to share with you how our teams implement automated vulnerability scanning for our web apps using Arachni and integrating that in to our Continuous Delivery pipeline. In this example we're going to show how we can do this using a Jenkins server, but theoretically anything [...]

28 02, 2017

RSA 2017: My DevOps Panel Takeaways

By | February 28th, 2017|Events|

Last week, nearly 43,000 of my closest security friends and I gathered at the RSA Conference at San Francisco’s Moscone Center. Per usual, the event didn’t disappoint. As a member of the DevSecOps speaking panel, here are a few of my key RSA takeaways from that discussion for organizations implementing [...]

22 11, 2016

Why Every Business Should Embrace Automated Threat Response

By | November 22nd, 2016|Articles|

Image via Pixabay When it comes to information sharing in the workplace, it’s truly astounding to see how far the industrial world has come in recent years. Today, virtually every department in a company can access, analyze, and share information like never before — which is unlocking huge [...]

18 10, 2016

How To Talk About Security With Every C-Suite Member

By | October 18th, 2016|Articles, Tips & Tricks|

Image via Pixabay.com Communicating with C-Suite leaders about the ongoing security threats your company faces can easily turn into an exercise in futility. Their eyes glaze over as you present metrics and charts that illustrate the current state of the business’s IT infrastructure, and your attempts to justify [...]

Load More Posts