Hi [[ session.user.profile.firstName ]]

Veracode

  • Date
  • Rating
  • Views
  • Der Zustand der Softwaresicherheit: ein Blick auf Europa
    Der Zustand der Softwaresicherheit: ein Blick auf Europa
    Julian Totzek-Hallhuber, Solutions Architect at Veracode Recorded: Feb 21 2019 31 mins
    Software hat die Art und Weise verändert, wie wir kommunizieren, Gesundheitsfürsorge anbieten, Geschäfte abwickeln, Regierungen regieren, Führungspersönlichkeiten wählen, Revolutionen aufbauen und sogar soziale Veränderungen anstoßen. In der digitalen Welt wird die Erstellung von Software das Wirtschaftswachstum ankurbeln und unsere Lebensqualität verbessern. Unser größter Katalysator für Veränderungen ist jedoch auch die Ursache für Verwundbarkeit.

    Wenn es um die Sicherung der von ihnen entwickelten Software geht, liegen europäische Unternehmen weit hinter ihren amerikanischen Kollegen. In diesem Live-Webinar Julian Totzek-Hallhuber, Solutions Architect für Veracode werden Daten aus dem jährlichen Bericht zum Zustand der Software-Sicherheit präsentiert, in dem der Vergleich europäischer Unternehmen mit US-amerikanischen Unternehmen im Mittelpunkt steht. Software wird unter Berücksichtigung der Benutzerfreundlichkeit und der Leistung erstellt, aber langjährige Daten sowie ein Angriff nach dem anderen zeigen jedoch, dass Software mit nicht ausreichenden Sicherheitskonzpeten im Hintergrund erstellt wird.
  • L'état de la Sécurité des Logiciels en Europe
    L'état de la Sécurité des Logiciels en Europe
    Nabil Bousselham, Solutions Architect at Veracode Recorded: Feb 19 2019 40 mins
    Les logiciels ont changé notre façon de communiquer, de fournir des soins de santé, de mener des affaires, de gérer nos gouvernements, d’élire nos dirigeants et même de suivre les changements sociaux. Dans le monde numérique, la création de logiciels veut aider à augmenter la croissance économique et à améliorer notre qualité de vie. Mais notre plus grand catalyseur de changement est aussi une grande source de vulnérabilité.

    Sur le niveau de la sécurité applicative, les entreprises européennes sont loin derrière leurs contreparties américaines. Dans ce webinaire, Nabil Bousselham, Principal Solutions Architecte chez Veracode, souhaite vous présenter quelques résultats de notre rapport annuel sur l'état de la sécurité logicielle, en faisant référence aux sociétés basées aux États-Unis. Les logiciels sont créés plutôt avec un focus sur la fonctionnalité et la performance, mais plusieurs années de données, ainsi que les Data Breach successives démontrent clairement qu’il y’a encore un grand travail á faire au niveau de la sécurité logicielle.
  • El estado de la Seguridad del Software: mirando a Europa
    El estado de la Seguridad del Software: mirando a Europa
    Antonio Reche, Solutions Architect at Veracode Recorded: Feb 14 2019 48 mins
    El software ha cambiado la forma en que nos comunicamos, brindamos atención médica, hacemos negocios, dirigimos nuestros gobiernos, elegimos a nuestros líderes, montamos revoluciones e incluso fomentamos el cambio social. En el mundo digital, la creación de software ayudará a estimular el crecimiento económico y mejorar nuestra calidad de vida. Pero nuestro mayor acelerador para el cambio es también una fuente de vulnerabilidad.

    Cuando se trata de asegurar el software desarrollado, las empresas europeas están muy por detrás de sus homólogas estadounidenses. En este seminario web en vivo, Antonio Reche, EMEA Solution Architect de Veracode, presentará los datos del Informe anual sobre el estado del software, con un enfoque en cómo las empresas europeas se comparan con las empresas de U.S. El software se crea teniendo en cuenta la facilidad de uso y el rendimiento, pero años de datos junto con múltiples y continuas brechas de seguridad, demuestran que el software no se crea teniendo en cuenta la seguridad.
  • How to Secure your Odoo Implementation
    How to Secure your Odoo Implementation
    Nabil Bousselham, Principal Application Security Consultant Recorded: Feb 12 2019 46 mins
    Glasswall BV provides a standardised security testing process of outward facing Odoo implementations. Using Open Source tooling (as used by Black Hat hackers) we generate in depth reports on known vulnerabilities and their remediation.

    In addition to that Veracode brings an extra layer of security to the table. Using Veracode’s code review scanning capabilities, you can gain visibility on the most fundamental part of any software implementation, the code itself.

    In this webinar Nabil Bousselham, Principal Application Security Consultant at Veracode will present the results of an analysis he performed on an example Python library using Veracode Static Analysis.

    Those viewing will leave the talk with a more rounded understanding of possible routes towards safer Odoo implementations.
  • The State of DevSecOps - Featuring Amy DeMartine of Forrester Research
    The State of DevSecOps - Featuring Amy DeMartine of Forrester Research
    Chris Eng, Veracode Vice President of Research and Amy DeMartine, Forrester Research Principal Analyst Recorded: Feb 7 2019 56 mins
    In our recent State of Software Security Volume 9 report, Veracode examined fix rates across 2 trillion lines of code shows that the number of vulnerable applications remains staggeringly high. More than 85 percent of all applications contain at least one vulnerability following the first scan, and more than 13 percent of applications contain at least one very high severity flaw.

    One thing is certain: the sheer volume of vulnerabilities present in most organizations’ application portfolios makes it necessary for them to make daily tradeoffs between security, practicality, and speed.

    There are just too many vulnerabilities for organizations to tackle all at once, which means it requires smart prioritization to close the riskiest vulnerabilities first. For the first time, our report shows a very strong correlation between high rates of security scanning and lower long-term application risks, which we believe presents a significant piece of evidence for the efficacy of DevSecOps. In fact, the most active DevSecOps programs fix flaws more than 11.5 times faster than the typical organization, due to ongoing security checks during continuous delivery of software builds, largely the result of increased code scanning.

    Join guest presenter Amy DeMartine, Principal Analyst, Forrester Research Inc., and Veracode’s Chris Eng as they deliver valuable takeaways for business leaders, security practitioners and development teams seeking to secure their applications. Listeners will learn potential prioritizations and software development methods that could help their organizations reduce risk more quickly.
  • The Veracode Community: Powering Your AppSec Program
    The Veracode Community: Powering Your AppSec Program
    Asha May, Customer Engagement at Veracode Recorded: Jan 23 2019 22 mins
    Veracode continues to build and expand a strong community to support the people and teams that make your organization’s software secure. The Veracode Community provides a resource and forum for customers as well as developers or security professionals seeking best practices about securing applications throughout the development lifecycle.

    Join this webinar to see how the Veracode Community can help you tackle tough application security issues while paving the way for an optimized program. We will provide:
    •An overview of the community – a space for developers and security practitioners to find answers and collaborate on application security best practices
    •Tips for community members to access resources, customer support, and forums for collaboration
    •Updates on latest community enhancements including newly-available access to all Veracode Integrations-related content and support
  • Optimizing Your AppSec Program with Veracode
    Optimizing Your AppSec Program with Veracode
    Brad Smith, Principal Security Program Manager, Veracode Recorded: Dec 19 2018 47 mins
    Hear from one of our customer-facing Services experts to learn how you can leverage the Veracode platform to optimize your application security program. You will start with assessing and managing security risk across your entire application portfolio and gain additional insights into how Veracode can help you adopt application security best practices in a simple and cost-effective way. Based on first-hand customer interactions, you will come away practical guidance to integrating testing into the software development lifecycle- all the way to scaling an application security program using the Veracode cloud-based platform.
  • Wie rechtfertigen Sie die Kosten eines AppSec-Programms?
    Wie rechtfertigen Sie die Kosten eines AppSec-Programms?
    Julian Totzek-Hallhuber, Principal Solutions Architect at Veracode Recorded: Dec 18 2018 42 mins
    Traditionell haben die meisten Führungskräfte die IT Sicherheit als notwendiges Übel betrachtet - eine Investition, die nur erforderlich war, um ein schlechtes Ergebnis zu vermeiden, aber nicht als etwas, das neue Kunden einbringen oder den Umsatz steigern würde. Aber das scheint sich zu ändern. Wir stellen zunehmend fest, dass die Erstellung sicherer Software zu einem Wettbewerbsvorteil führt und das Endergebnis steigert.

    Dieses Webinar, das von Julian Totzek-Hallhuber - Principal Solutions Architect bei Veracode gehalten wird, hilft Ihnen dabei, AppSec zu unterstützen. Durch die Darstellung des möglichen ROI einer Cloud-basierten Anwendungssicherheitslösung, die in den Softwareentwicklungslebenszyklus integriert ist, stellen wir Ihnen die Tools zur Verfügung, die Sie zur Erstellung Ihres C-Level-Pitch benötigen.
  • The State of DevSecOps - Featuring Amy DeMartine of Forrester Research
    The State of DevSecOps - Featuring Amy DeMartine of Forrester Research
    Chris Eng, Veracode Vice President of Research and guest, Forrester Research Principal Analyst Amy DeMartine Recorded: Dec 13 2018 57 mins
    In our recent State of Software Security Volume 9 report, Veracode examined fix rates across 2 trillion lines of code shows that the number of vulnerable applications remains staggeringly high. More than 85 percent of all applications contain at least one vulnerability following the first scan, and more than 13 percent of applications contain at least one very high severity flaw.

    One thing is certain: the sheer volume of vulnerabilities present in most organizations’ application portfolios makes it necessary for them to make daily tradeoffs between security, practicality, and speed.

    There are just too many vulnerabilities for organizations to tackle all at once, which means it requires smart prioritization to close the riskiest vulnerabilities first. For the first time, our report shows a very strong correlation between high rates of security scanning and lower long-term application risks, which we believe presents a significant piece of evidence for the efficacy of DevSecOps. In fact, the most active DevSecOps programs fix flaws more than 11.5 times faster than the typical organization, due to ongoing security checks during continuous delivery of software builds, largely the result of increased code scanning.

    Join guest presenter Amy DeMartine, Principal Analyst, Forrester Research Inc., and Veracode’s Chris Eng as they deliver valuable takeaways for business leaders, security practitioners and development teams seeking to secure their applications. Listeners will learn potential prioritizations and software development methods that could help their organizations reduce risk more quickly.
  • The Front Lines: How One Company Systematically Mitigates Their Open Source Risk
    The Front Lines: How One Company Systematically Mitigates Their Open Source Risk
    Mark Curphey, VP of Strategy, Veracode Recorded: Dec 12 2018 47 mins
    It’s one thing to simply talk about the pervasiveness of open source risk. What do you do when your leadership team wants you to actually take action? Where do you start? How do you even begin to inventory the seemingly insurmountable amount of open source libraries deployed across your entire application infrastructure? It takes a systematic approach to identifying vulnerable open source libraries – a system that requires multiple stakeholders across various functional groups including security, development, and sometimes your legal and vendor management teams.

    Join Mark Curphy, VP of Strategy at Veracode, as he interviews a customer to discuss how they were successful in implementing a scalable security program to effectively tackle the problem of open source risk. You’ll get real insights from an industry practitioner about how to recognise harmful third party libraries, establish an open source software security policy, and communicate security requirements to the team at large.

Embed in website or blog