リソース

サイバーセキュリティに不可欠なクラウドセキュリティ

公開クラウドプロバイダーは、そのビジネスモデルからして社会的信用を維持する必要があるため、セキュリティが優先されますが、従来のオンサイト型の IT インフラを縛っていた境界線は、クラウドには存在しません。

Guide to Software Composition Analysis: 5 key challenges of SCA

The code driving many—in fact, most—applications today includes open source components.

Defining a secure open source policy

What is an open source policy? Today’s organizations face intense pressure to be more efficient and agile at scale so they can remain viable in an increasingly competitive marketplace.

Why open source governance is key for security

What is open source governance? Open source governance is the recognized rules and customs that guide an open source project.

7 Reasons to use an open source vulnerability scanner

Cybercrime is on the mind of every business — from the largest enterprise to small and mid-sized companies that may have limited technical expertise.

Software dependencies: How to manage dependencies at scale

The benefit of software dependencies is that they allow developers to more quickly deliver software by building on previous work.

オープンソースセキュリティについて

過去数年間にわたり、共同作業が可能で、公開的な性質を持つオープンソースソフトウェアは広く普及してきましたが、これは開発者にも悪意あるアクターにも都合のいいものでした。

The evolving role of the modern CISO

Explore the evolving role and responsibilities of the modern CISO. Learn about growth and responsibilities.

DevSecOps Program Success

Improving secure development is a journey that takes time, and starts with getting visibility into the existing security processes and practices that are done by each team today. If this isn’t done in an empathetic way, this process can be perceived as a reaction to development shortcomings. When others think there’s blame or judgment, it’s easy to get defensive responses.

Security Champions and Their Role

Every organization has a different culture that you should try to create a security champions program around. Avoid copy-pasting the exact same program someone else is successfully running, but rather, try to find gems of advice and best practices that you can apply that you feel would work with your teams and culture as well.

Cultivating a DevSecOps Culture: Real-world implementations

Throughout the continued journey of implementing and maturing a DevSecOps model, sharing successes and lessons learned can help everyone improve. The following are examples from organizations who have adopted DevSecOps and have worked to achieve higher levels of maturity.

AI Glossary

Snyk’s glossary for learning about AI, including its science, common AI use cases, and how it relates to cybersecurity.