For some time now, public companies in the United States have been on notice that the Securities and Exchange Commission (SEC) is tightening down on the reporting of security incidents. Now that the compliance deadlines are here, it seems a bit more real. As a complement to my recent webinar "SEC Cybersecurity Ruling: Application security + incident response" this piece serves as a recap and a checklist on what businesses – both public and private – need to be focusing on now that the SEC disclosure rules are here.
Back in 2021, Google launched, alongside other organisations, a new security baseline for products known as the Minimum Viable Secure Product. Now, 2 years later, they've released an update to that standard.
The Security Headers grading criteria is something that doesn't change often, but when it does, there's a good reason behind the change. In this blog, I will outline the new grading criteria and the reasons why we've made the change.
In the world of cyber security, knowledge is power, and Security Headers has been a trusted ally for web developers around the world for years. For the first time ever, thanks to the support of our partnership with Probely, we’re going to delve into the treasure trove of historic scan data and explore the insights it can provide.
Let’s take a look at my big takeaways from this year’s event and what I’ve learned. Beyond great briefings and learning from those around me, events like Black Hat are also a great opportunity to make and develop connections. We had countless members of the security community stop by our booth for a selfie and some swag, we attended countless social events and even hosted our own!
Black Hat USA 2023 is less than a week away and we have some tips and tricks to help you get ready and to make the most out of your visit! Over the years, many things change at Black Hat, but there are some things that will always stay the same.
250,000 scans was a big deal for me back then, and it's pretty wild to think that we've added another three zeros since, but I had no idea this was only the beginning! As the months and years ticked by, we continued to cross through some incredible milestones. As each one came and rolled by, I still couldn't believe just how popular the site was becoming, and the site seemed to be growing in popularity at a relentless pace.
By implementing the following 5 measures, developers can enhance code quality and mitigate security risks. Join me as we delve in software development security and discover key practices for building secure applications in the face of constant change.
How can you significantly enhance the efficiency and effectiveness of your security program in a complex IT Environment without a major investment in new products or processes? You may want to consider shifting your security-focused activities to an earlier stage in the development and deployment cycle. Removing your historical security silos and refocusing them on a synergistic approach can provide a relatively quick and cost-effective way to make the kind of risk mitigation impact you, as a security professional, are seeking.
This website uses cookies to provide you the best experience. For more information, read our Privacy Policy.
