Why Static Analysis Isn’t Dead: It's Our 1st Line of Defense

Presented by

Jeff Payne, CEO & Founder- Coveros, Arthur Hicken, Chief Evangelist & Kevin E. Greene, Director Security Solutions - Parasoft

About this talk

Static analysis often gets neglected as a preventive way to address vulnerabilities in software. But it's a first line of defense in preventing cyberattacks. With the rise in software-related attacks, organizations must realize the value of integrating static analysis in development workflows early to enforce good coding practices, as recognized in recent guidance published by NIST, emphasizing minimum standards for vendor or developer verification as directed by Executive Order 14028. Given the recent change in federal guidance, formalizing static analysis is non-negotiable and must be an essential component in modern software development.   Join us as we discuss: * The importance of Executive Order 14028 in formalizing static analysis testing. * The benefits of testing early and often in developers’ workflows. * Preventive measures organizations can take to reduce vulnerabilities in software. * Secure coding compliance validation with static analysis.

Related topics:

More from this channel

Upcoming talks (3)
On-demand talks (94)
Subscribers (7419)
The innovation you need. The experience you trust. From development to QA, Parasoft’s comprehensive suite of software testing solutions reduces the time, effort, and cost of delivering secure, reliable, and compliant software. Leverage our AI-infused suite of automated testing tools to drive continuous quality practices throughout your development pipeline.