Articles

Three Steps to Container Image Security

Follow our practical guide to container security, developed in partnership with Docker. 3 Essential steps to run your containers securely.

Web Application Security Explained: Risks & Nine Best Practices

It’s vital for Developers to have knowledge of web application security so they can secure web apps as they’re developed, reducing the burden on security teams.

What is container orchestration?

Orchestration refers to automating container deployment, operations, and lifecycle management. This approach automates how we provision, deploy, scale, monitor, replace, and manage storage for our running containers.

Kubernetes Monitoring Guide

Learn everything you need to know about Kubernetes monitoring: tools, best practices, critical metrics you should track, and more.

Black box testing basics

Black box testing is a software testing method that does not require knowledge about how an application is built, in order to simulate an attacker.

Code security auditing 101

A code security audit is a process of analyzing source code with the goal of finding security vulnerabilities, licensing, and other programming issues. §

Mobile application security explained

As the use of mobile apps continues to grow, so does the need for secure mobile application development. Read on for top risks, tools, and tips for mobile app security.

Application Security Controls Explained

In the security hierarchy, application security controls lie below standards and policies. Policies set the boundaries expected for application security and protection, while standards create rules for enforcing those boundaries.

Container registry security: security concerns for using a container registry

Learn about container registry security, and the factors you should consider during setup and usage for public and private container registries.

Software Bill Of Materials (SBOM) Explained: Why SBOMs are essential for cybersecurity

Learn why Software bill of materials (SBOM) are becoming more important to cybersecurity experts for securing supply chains and maintaining compliance.

Blue-green deployment strategy explained

Learn how Blue Green Deployment strategies can be built into the IAC stages of your CI/CD Pipelines for seamless deployments with no downtime.

Continuous security within DevSecOps

Find out how implementing continuous security processes can benefit your DevSecOps culture and processes to help you secure your code at every phase of the SDLC

Fintech cybersecurity: How to build securely with open source

Fintech companies are attractive targets for hackers, that’s why fintech cybersecurity is so important. Learn more about how to secure your platform.

CaaS: Container as a Service Explained

CaaS (container as a service) explained and compared to alternative solutions for outsourcing your container deployments.

Building a Strong Container Security Foundation

As containerized deployments grow in popularity, it’s crucial to understand how to secure them. Learn everything you need to know about container scanning.

The Three Pillars for Implementing Secure Coding Standards

Learn more about implementing secure coding standards to deliver secure software faster than ever.

SAST vs. SCA testing: What’s the difference? Can they be combined?

Learn about SAST vs. SCA testing and how to leverage them to release secure software and produce truly secure applications.

Application Vulnerability: Avoiding Code Flaws and Security Risks

An application vulnerability is a system flaw or weakness in an application’s code that can be exploited by a malicious actor, potentially leading to a security breach.

The Basics of Getting Started with Shift Left Testing

Learn about shift left testing, an integrated approach to addressing security and testing as early as possible in the SDLC to find and fix vulnerabilities.

Navigating Software Licenses

What is a software license? Learn more about software licenses, to ensure a full understanding of responsibilities, compliance and limitations.