by Mike Zusman | Apr 22, 2020 | Digital Transformation, Featured, News
As we discussed in our previous post: your best appsec engineer is already on your team, you just need to find them. In larger development organizations, however, this one person might not be enough to create the culture of security necessary for long term risk...
by Aidan Noll | Apr 16, 2020 | Exploits, Labs, News, Techniques, Tools
Intro – GraphQL GraphQL (GQL) is a popular data query language that makes it easier to get data from a server to a client via an API call. GQL is commonly deployed as a critical piece of the technology stack for modern web and mobile applications, and as a...
by Mike Zusman | Apr 13, 2020 | Digital Transformation, Featured, News
There are things you can do to improve application security even if you’re unable to recruit and retain an application security engineer. In a previous post, I highlighted some of the challenges associated with hiring appsec people. We see companies struggle to hire a...
by Mike Zusman | Apr 3, 2020 | Cloud, Digital Transformation, Featured, News, Strategy
Hiring your first appsec engineer is a high-risk endeavor. Many organizations reach the conclusion they need to hire an appsec engineer after accumulating years – if not decades – of application security debt. Hiring an appsec engineer can be a long...