In the News

Why you need to get your team up to speed on privacy-aware development

“At the end of the day, I would hate to put that on developers—not in the same way that I would put the responsibility for security on developers,” said Denim Group’s Cornell. Yet, he added, the role of developer is changing. “Over the last 15 years that I’ve been in the application-security space, we have […]

Reboot Leadership Awards 2019: Dan Cornell – Innovator

Why Nominated: Denim Group CTO Dan Cornell, who created the company’s ThreadFix vulnerability management platform, and his team were awarded three separate technology patents in late 2018 for tools used to reduce the time organizations spend analyzing data and identifying vulnerabilities in their development pipelines. Profile:  In his pursuit to create a seamless approach for […]

Is ThreadFix the solution to more secure DevOps?

At DevOps World, Denim Group announced that the latest version of their Jenkins Plugin would work with their ThreadFix platform. Enterprise Times sat down with Dan Cornell, Founder and CTO of the Denim Group to ask what this mean. 15 years ago Cornell moved from being a developer to being a security professional. This change […]

Q&A: Denim Group CTO on DevSecOps and Resolving Disconnect

The tendency for disconnection persists between developers and security watchdogs, but there are ways to get them on the same page. That is one of the goals of the Denim Group, which provides application security assessments and strategies for addressing risks. It can be complicated bringing security and developers together in the midst of transformation, […]

Dan Cornell, Denim Group – Black Hat 2019

Injecting the “Sec” into “DevSecOps” has always been a balancing act of getting the best reasonable coverage in the shortest reasonable length of time. Slowing down the DevOps process is a sure-fire way to get pulled out of the pipeline. Because of the current business culture, security teams are often forced to wait until the […]

The Cloud Hack at Capital One

While attending the RSA conference in San Francisco this year, I had an opportunity to meet with John Dickson of the Denim Group.  John explained how the migration to the cloud-based infrastructure is a completely new concept verses, how apps were developed five years ago.  He also discusses the approach used to create cloud applications known as […]