You can't secure what you don't acknowledge.SM

Thursday, April 13, 2017

Why SOC audit reports can be misleading, mobile app security gotchas, and more...

Here are some links to recent articles I've written regarding application security...if you take anything away from this, it's that you can't afford to take this part of your security program lightly.

Dealing with vendors who want to push their SOC audit reports on you

Explaining discrepancies in different security assessment reports

Why DAST and SAST are necessary if software is solid from the get-go

Nixing credential re-use across unrelated systems

Common oversights in mobile app security

What are the most important security testing basics?

Signs that you’re about to suffer a security breach

As always, you can link to all of my information security content on my website at for reading!

No comments:

Post a Comment