“ThreadFix is a platform that allows organizations to manage and run their application security programs,” Dan Cornell, CTO of Denim Group, told eWEEK. Cornell explained that with ThreadFix an organization can list all the development teams that build software and all the applications that each team is responsible for.
“ThreadFix is a platform that allows organizations to manage and run their application security programs,” Dan Cornell, CTO of Denim Group, told eWEEK.
“Handing a developer a security tool is not a recipe for success, but if you can craft the developer’s experience using that tool, and better integrate with the developer tool chain, then you have a real increase in the consumption of security testing.” —Dan Cornell, Denim Group
“I would argue that fake news has had less of an impact on the security industry than society as a whole,” says John Dickson, principal of Denim Group. “Most security folks are skeptical bunch. They are always on watch for inbound phishing and social engineering campaigns, and thus are probably bigger doubters than the average reader.
Improvements in credit card fraud detection have pushed hackers to focus on stealing legitimate login credentials, so adding an extra layer of protection to these accounts is a must, says John Dickson with the cybersecurity firm Denim Group.
In his latest article for SecurityWeek, Denim Group CTO Dan Cornell details how miscommunications between security and DevOps teams can put organizations at risk and why security teams must be able to communicate where application security fits into the spectrum of risks that affect a business.