Continuous Security Archives

Cobalt Shakes Up Continuous Testing with Bug Bounties

App Development, Collaboration, Continuous Security, Continuous Testing, DevOps / By Tony Bradley

Just about everything in DevOps is “continuous”–including the application testing and security aspects. Cobalt wants to take continuous testing to another level, though, by incorporating crowdsourced security research with a bug bounty incentive. In theory, Cobalt raises the bar on […]

Cobalt Shakes Up Continuous Testing with Bug Bounties Read More »

Avoid These 4 Main Causes of DevOps Failure

Continuous Delivery, Continuous Security, DevOps, Strategy / By Tony Bradley

There are a lot of good reasons to embrace DevOps, but that doesn’t mean that every company is ready to jump into the DevOps deep end. It’s important to understand what you expect to get out of DevOps–what goals you

Avoid These 4 Main Causes of DevOps Failure Read More »

Nessus Vulnerability Scanner Now Monitors Docker Containers

Containers, Continuous Monitoring, Continuous Security, DevOps, Docker, Vulnerability Management / By Tony Bradley

The de facto leader when it comes to vulnerability management is Nessus from Tenable Network Security. The de facto leader when it comes to container ecosystems is Docker. Now you can combine the two because Nessus 6.6 allows you to

Nessus Vulnerability Scanner Now Monitors Docker Containers Read More »

Vera Streamlines Data Protection with IRM-as-a-Service

Continuous Security, DevOps, Information Rights Management, IRM-as-a-Service / By Tony Bradley

IRM-as-a-Service can improve data protection by making it easier to integrate IRM into new and existing applications and platforms. Once upon a time I was CMO for Zecurion–a company that focuses on data loss prevention–so I know a thing or

Vera Streamlines Data Protection with IRM-as-a-Service Read More »

All of Your Security Is Broken, Please Buy Our Security

APT (Advanced Persistent Threats), Continuous Security, Cyber Espionage, Data Breach, Incident Response, Insider Threat, RSA Conference, Security Awareness, Threat Intelligence / By Tony Bradley

Every year at the RSA Conference hundreds—maybe thousands—of security vendors crowd into the Moscone Center in San Francisco with claims that their products or services are better. “Better” is a relative measure, but generally speaking the assertion is either that

All of Your Security Is Broken, Please Buy Our Security Read More »

Continuous Delivery Demands Continuous Security

App Development, Continuous Delivery, Continuous Security, DevOps / By Tony Bradley

DevOps has gone mainstream and organizations are racing to take advantage of tools and practices designed to help develop better products faster. Automation is a key component of DevOps, but as with all things security is somehow the last element

Continuous Delivery Demands Continuous Security Read More »

Continuous threats require Continuous Security

Continuous Monitoring, Continuous Security, DevOps / By Tony Bradley

The bad guys are pretty relentless. It doesn’t really make sense to rely on security measures that are only periodic or validate security at a given point in time. You need to use continuous monitoring and continuous security to be

Continuous threats require Continuous Security Read More »