DevSecOps and automated security

Need to deliver code quickly without compromising security? Get independent, expert information on DevSecOps approaches, including shift left and other ways to build security into the SDLC. Read about automated security testing tools and security testing best practices in software development.

New & Notable

Download this free guide

24-Page Test Automation Guide for IT Teams

Software developers increasingly turn to automated testing tools and workflows to speed up testing regimens while ensuring better consistency and completeness in the QA process, but success demands a high level of understanding. Here is your one-stop shop for test automation. This guide walks through the benefits and challenges, how to craft an automated testing strategy, and how to compare tools.

Corporate E-mail Address:
You forgot to provide an Email Address.
This email address doesn’t appear to be valid.
This email address is already registered. Please login.
You have exceeded the maximum character limit.
Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

DevSecOps and automated security News

June 12, 2020 12 Jun'20
GitLab makes two acquisitions to shift fuzz testing left

GitLab has scooped up fuzz testing startups Fuzzit and Peach Tech, a move that will shift fuzz testing left in the DevSecOps toolchain.
February 28, 2020 28 Feb'20
Rapid7 adds Snyk security to its portfolio

The Snyk security vulnerability database brings an extra layer of protection to Rapid7 by helping developers find and fix vulnerabilities early in the software development process.
February 21, 2020 21 Feb'20
Massive DoD DevSecOps standards push may aid enterprise IT

The CNCF, defense contractors and IT vendors have joined forces with the Department of Defense to establish NIST security standards and best practices for DevSecOps.
February 14, 2020 14 Feb'20
Synopsys Code Sight combines SAST, SCA testing in the IDE

Synopsys' Code Sight IDE plug-in provides capabilities for simultaneous static application security testing (SAST) and software composition analysis (SCA).

DevSecOps and automated security Get Started

Bring yourself up to speed with our introductory content

Automate security testing and scans for DevSecOps success

Attackers are knocking at your door. Don't waste time with repetitive, automatable security tasks. Here's how DevSecOps enables code analysis, security testing and more. Continue Reading
How to set up a chaos engineering game day

Is it fun to spend the day breaking stuff in a war room with your coworkers? Of course, but more than that, it's vital to the security and stability of certain applications. Continue Reading
5 vital QA skills for software testers

As testing extends throughout the SDLC, QA engineers do much more than execute a quick functionality check. Pick up these skills to ensure an effective, team-wide approach to quality. Continue Reading

Evaluate DevSecOps and automated security Vendors & Products

Weigh the pros and cons of technologies, products and projects you are considering.

Sonatype Nexus vs. JFrog: Pick an open source security scanner

Chances are your organization relies on open source code. But how do you manage code vulnerabilities? Find a product best suited for your needs in this Sonatype Nexus vs. JFrog comparison. Continue Reading
What's in store for software development trends in 2020?

New year, new IT priorities. While not all initiatives stick, these development and testing trends will shape how teams create, evaluate and deploy software. Get ahead of the curve. Continue Reading
DevSecOps puts software development and security on equal footing

With DevSecOps, organizations spread out security responsibilities to ops and devs. Here's how programmers can expect their roles to change and why it's not such a bad thing. Continue Reading

Manage DevSecOps and automated security

Learn to apply best practices and optimize your operations.

Shifting security left: How to pivot from DevOps to DevSecOps

A successful DevSecOps rollout requires software developers to be equipped with the proper security skills and tools. Learn how to transition smoothly from DevOps to DevSecOps. Continue Reading
How to use TODO comments for secure software development

Don't let security be a software development burden. Learn app developer tricks, such as using TODO comments, to ensure security controls make it from development to production. Continue Reading
DevOps in the enterprise requires focus on security, visibility

App dev, quality and delivery challenges constantly pop up in DevOps implementations. Hear how overworked IT professionals deal with these challenges, and how tools can help -- or not. Continue Reading

Problem Solve DevSecOps and automated security Issues

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

How to patch your open source software vulnerabilities

No matter how big your software vulnerabilities backlog has grown, here's how you can tackle it, and get on the path to continuous security monitoring. Continue Reading
5 application security threats and how to prevent them

The most widely known application security threats are sometimes the most common exploits. Here is a list of the top app threats and their appropriate security responses. Continue Reading
Implement a DevSecOps pipeline to boost releases' security posture

Break security out of its silo, and get the whole team on board to create a culture of quality with the right tools at the right time -- and stop blindly rushing to release. Continue Reading