New & Notable
Building security into the SDLC (Software development life cycle) News
April 18, 2018
A survey of over 2,000 IT pros shows that fear of data breaches is increasing investments in DevSecOps tools, particularly automated security tools and oversight of open source software.
September 13, 2017
Low-code software development platforms are proliferating rapidly, even as headline-grabbing security breaches continue. Here's how they can help make software safer.
May 11, 2016
It's a scary world out there, but developers are in a rush to release. SourceClear Open gives developers the tools to make open source code projects more secure for free.
April 27, 2015
Data privacy lawyer Jeff Kosseff discussed the current state of data privacy law as it applies to big data at the Big Data Tech Con in Boston.
Building security into the SDLC (Software development life cycle) Get Started
Bring yourself up to speed with our introductory content
The software development life cycle (SDLC) is a conceptual model, used in project management, to describe the stages and tasks involved in each step of a project to write and deploy software. Continue Reading
Discovering project requirements can be challenging. An expert offers elicitation techniques you can use to discover business and software requirements. Continue Reading
For those of us new to software security testing, it can be an intimidating field of study. Where do the veterans suggest we begin? Continue Reading
Evaluate Building security into the SDLC (Software development life cycle) Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
Is it safe to move from on-premises application lifecycle management tools to cloud-based tools? Read this expert answer to find out. Continue Reading
A recent survey shows software professionals have a basic understanding of application security concepts, but they lack the knowledge to fix the resulting security issues. Continue Reading
The importance of building secure applications is well established. And yet software developers graduating with degrees in computer science often lack application security training. Why is that so, and what can be done to remedy this situation? Continue Reading
Manage Building security into the SDLC (Software development life cycle)
Learn to apply best practices and optimize your operations.
Different mobile platforms have different security characteristics. What's the best way for mobile developers to deal with this? Continue Reading
What is the single most important application security best practice for mobile developers? Security expert Kevin Beaver provides an answer. Continue Reading
How do testers manage and prioritize the security software vulnerabilities they find when security-testing software? Continue Reading
Problem Solve Building security into the SDLC (Software development life cycle) Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
Common software security mistakes include testing at the last minute and not testing open source code and VMs. Expert Matt Heusser suggests ways to avoid these and other missteps. Continue Reading
Expert Michael Cobb details how to argue for a multistep secure code review process, like Microsoft SDL, and the pros of secure coding practices. Continue Reading
Our business is relying more and more on smart process applications to manage business-critical processes. This means application security is even more important than ever. What's your advice on ensuring not only that the code is secure, but that ... Continue Reading