The analysis, conducted by Secure Code Warrior, is supported by former White House cybersecurity officials Kemba Walden and Chris Inglis. Under 4% of software developers across the globe are ...

As I discussed in my previous article, CISA’s secure-by-design principles—which apply to software vendors supplying the U.S. government but should be considered by all software designers—call for ...

Software risk continues to outpace public understanding as insecure defaults persist. Lauren Zabierek of CAS Strategies and ...

DevSecOps best practices, secure software pipelines, CI/CD security, DevSecOps tools and strategies, application security ...

In April, the Cybersecurity and Infrastructure Security Agency's Secure by Design initiative celebrated its first birthday. CISA marked the moment with a blog post outlining its achievements over the ...

Software that prioritizes security at its most foundational level means designing it with customer security as a key goal rather than a tacked-on feature. And that concept — secure by design — is ...

From continuous diagnostics and mitigation to Zero Trust to Secure by Design, the federal government’s approach to cybersecurity is constantly evolving as we learn more about the threats.

As cyber threats grow increasingly sophisticated, secure software is now an existential business priority. Shockingly, over 70% of organizations struggle with mounting security debt, with almost half ...

Get the latest federal technology news delivered to your inbox. Incorporating a Secure by Design framework is just the start to engineering a threat-resilient digital environment, per officials ...

CISA’s high-profile proselytizing of its Secure by Design program will likely end, but some experts think the idea still has momentum in the private sector, while others have become disillusioned ...

SailPoint Technologies, Inc. today announced that the company has signed onto the Secure by Design pledge developed by the Cybersecurity & Infrastructure Security Agency (CISA). The new pledge commits ...

(ISC)2, caretaker of the well-known CISSP security designation, has developed a new certification that tackles a big issue: development of secure software. (ISC)2, caretaker of the well-known ...