Articles

What is container orchestration?

Orchestration refers to automating container deployment, operations, and lifecycle management. This approach automates how we provision, deploy, scale, monitor, replace, and manage storage for our running containers.

Kubernetes Monitoring Guide

Learn everything you need to know about Kubernetes monitoring: tools, best practices, critical metrics you should track, and more.

Black box testing basics

Black box testing is a software testing method that does not require knowledge about how an application is built, in order to simulate an attacker.

Code security auditing 101

A code security audit is a process of analyzing source code with the goal of finding security vulnerabilities, licensing, and other programming issues. §

Mobile application security explained

As the use of mobile apps continues to grow, so does the need for secure mobile application development. Read on for top risks, tools, and tips for mobile app security.

Application Security Controls Explained

In the security hierarchy, application security controls lie below standards and policies. Policies set the boundaries expected for application security and protection, while standards create rules for enforcing those boundaries.

Container registry security: security concerns for using a container registry

Learn about container registry security, and the factors you should consider during setup and usage for public and private container registries.

Software Bill Of Materials (SBOM) Explained: Why SBOMs are essential for cybersecurity

Learn why Software bill of materials (SBOM) are becoming more important to cybersecurity experts for securing supply chains and maintaining compliance.

Blue-green deployment strategy explained

Learn how Blue Green Deployment strategies can be built into the IAC stages of your CI/CD Pipelines for seamless deployments with no downtime.

Continuous security within DevSecOps

Find out how implementing continuous security processes can benefit your DevSecOps culture and processes to help you secure your code at every phase of the SDLC

Fintech cybersecurity: How to build securely with open source

Fintech companies are attractive targets for hackers, that’s why fintech cybersecurity is so important. Learn more about how to secure your platform.

CaaS: Container as a Service Explained

CaaS (container as a service) explained and compared to alternative solutions for outsourcing your container deployments.

Building a Strong Container Security Foundation

As containerized deployments grow in popularity, it’s crucial to understand how to secure them. Learn everything you need to know about container scanning.

The Three Pillars for Implementing Secure Coding Standards

Learn more about implementing secure coding standards to deliver secure software faster than ever.

SAST vs. SCA testing: What’s the difference? Can they be combined?

Learn about SAST vs. SCA testing and how to leverage them to release secure software and produce truly secure applications.

Application Vulnerability: Avoiding Code Flaws and Security Risks

An application vulnerability is a system flaw or weakness in an application’s code that can be exploited by a malicious actor, potentially leading to a security breach.

The Basics of Getting Started with Shift Left Testing

Learn about shift left testing, an integrated approach to addressing security and testing as early as possible in the SDLC to find and fix vulnerabilities.

Navigating Software Licenses

What is a software license? Learn more about software licenses, to ensure a full understanding of responsibilities, compliance and limitations.

How to perform static code analysis

Top tips and workflows to help you get started with static analysis to find and fix vulnerabilities in your applications.

How Does Threat Modeling Fit Into the Fast World of DevSecOps?

Learn more about threat modeling and how to get security benefits without putting gates in front of the software development process. Take threat modeling a step further “left.”