24
FebEveryone can now write code with Claude and get to production in a weekend. So […]
31
JanSecurity programs rarely fail because teams do not care. They fail because the work gets[…]
31
DecFor the past couple of decades, organizations have increasingly invested in security. Unfortunately, they often[…]
13
DecIf you build or look after web applications, you have probably bumped into the OWASP[…]
01
DecThe upcoming Cyber Resilience Act (CRA) is a EU regulation that was published on November[…]
25
NovAs software systems grow more complex, proving that they are secure has become as important[…]
31
OctMost organizations conduct security assessments, yet few turn them into meaningful improvement. Traditional cybersecurity gap[…]
16
OctMany organizations treat Common Vulnerabilities and Exposures (CVEs) as first-class citizens. Some even enforce strict[…]
20
SepApplication security (AppSec) remains one of the toughest challenges modern organizations are facing. Despite heavy[…]
06
AugBy embracing the Japanese Kaizen philosophy of continuous incremental improvement, your AppSec program can evolve[…]
30
JulYour DevSecOps pipeline is fast, automated, and built to scale. But is security truly integrated,[…]
29
JulAbout 4 years ago I have joined the OWASP Software Assurance Maturity Model (SAMM) project[…]