Denim Group has been acquired by Coalfire. Learn More>>

Denim Group Mention from Gary McGraw


Denim Group got a mention in Gary McGraw’s latest InformIT article on software security.  The article does a great job of tracking trends in the software security space over the past couple of years.  I didn’t think it did a great job of communicating the full range of software security services we provide, but – hey – there is no such thing as bad press!

The key trend we have seen that is also picked up on in this article is that application (or software) security has moved from being attacked outside-in by security folks and instead is being addressed inside-out by developers with guidance from security teams.  At the end of the day, developers are going to have to remediate security defects and build new applications securely.  The sooner they get on board the sooner an organization will be able to adequately address software security risks.

dan _at_

About Dan Cornell

Dan Cornell Web Resolution

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

One Response to “Denim Group Mention from Gary McGraw”

  1. gem

    hi dan,

    Glad you liked the article. Sorry I didn’t have room to include your list of services. As you know, I’ve been involved in this space for a long time and I am very pleased to see it continue to grow…and even in the right directions! Glad you guys are helping.

    In my view key trends are: toward white box analysis instead of outside->in black box, out of the myopic focus on Web apps, and toward full-lifecycle programs based on the touchpoints that I espouse in “Software Security”. The numbers show this growth and these trends objectively.



Leave a Reply

Your email address will not be published. Required fields are marked *