Vic · @victorp
33 followers · 70 posts · Server techhub.social

is a security-focused approach to software development that reconciles the trade-off between speed and security.

DevOps prioritizes speed and agility, whereas security emphasizes control and risk management. DevSecOps tries to resolve this conflict by embedding security into the DevOps processes without impeding the development of applications or code. What helps?

🔐 Automation: DevSecOps automates security testing and monitoring, minimizing vulnerabilities in the development process.

🔐 Shift-Left Security: DevSecOps prioritizes early security consideration, eradicating vulnerabilities from the start.

🔐 Collaboration: DevSecOps fosters collaboration among stakeholders to address security issues promptly.

🔐 Continuous Feedback ...

🔐 Scalability...

securityintelligence.com/posts

#DevSecOps #softwaredevelopment #riskmanagement #speed #agility #codevulnerabilities #securedevelopment #tradeoff #riskmitigation #securesdlc #applicationsecurity #securecoding #cloudsecurity

Last updated 1 year ago

florenciocano · @florenciocano
97 followers · 92 posts · Server ioc.exchange

Good article explaining the benefits and some drawbacks of using long-live refresh tokens and short-lived access tokens instead of only long-lived access tokens t.co/detU1J4j4P by @CubicleApril

#securedevelopment

Last updated 2 years ago

PartHaircut · @PartHaircut
59 followers · 117 posts · Server infosec.exchange

Pen testing is the “easy part”. Every week I get offers from companies specialising in Penetration Tests.

No one is ever banging on my door telling me about how they are going to support the dev teams to comprehensively understand how each detail in their job impacts the end product security.

Not saying pen tests are useless. They form an important part of the process. It’s just not the hard bit.

#cybersecurity #infosec #devsecops #pentest #humancentredsecurity #securedevelopment #cyber #expandleft #shiftleft

Last updated 2 years ago

Kalypso · @Kalypso
1 followers · 22 posts · Server fosstodon.org