<iframe src="//www.googletagmanager.com/ns.html?id=GTM-WQV6DT" height="0" width="0" style="display:none;visibility:hidden">


Security influencers provide real-world insight and “in-the-trenches” experiences on topics ranging from application security to DevOps and risk management


CAS: The Best Way to Modernize Application Security

Christine Carrig, Director of Marketing | May 16, 2017

In case you don't recognize the acronym, "CAS" stands for Continuous Application Security. It may not become a household name, but here at Contrast we believe it will be as common as "WAFs" within our industry.  CAS will help lead the way to..

Read More

Thought Leaders

A CTO's Response to Trump's Cybersecurity Executive Order

Jeff Williams, Co-Founder, Chief Technology Officer | May 12, 2017

In principle, holding each agency head accountable for his or her agency’s cybersecurity is logical. The problem with that is they were already accountable. When the OPM was breached, director Katherine Archuleta stepped down. And there were calls..

Read More

Thought Leaders

Improve Application Security by Turning it into Code

Jeff Williams, Co-Founder, Chief Technology Officer | May 11, 2017

Why is application security such a pain? One of the hard problems with application security is that there are a zillion different ways that things can go wrong.

Read More

Contrast News

Contrast Security Honored as Gold Stevie Award Winner in 2017 American Business

Mark Hodgson, Vice President of Marketing | May 9, 2017

Contrast Security was named the winner of a Gold Stevie® Award in the New Product or Service of the Year - Software Development Solution category in the 15th Annual American Business Awards. Details about The American Business Awards and the list of..

Read More

Application Security- Hacked

Google Docs May Still be Vulnerable to Phishing Attacks

Matt Austin, Director of Security Research | May 5, 2017

On Tuesday, users of Google Docs were targeted with an email phishing attack. The email content was a ruse to trick folks into granting access to their contact data. Google quickly put measures into place to stop the attack. Please visit this..

Read More


The DevOps-Ready Security Program

Mahesh Babu | May 4, 2017

6 Executive Tips to Bring Security into the DevOps Era

Extending DevOps to your software application security team shifts security from being a bottleneck to an enabler. According to McKinsey & Company, the benefits of being a DevOps-ready IT..

Read More

How AppSec Fits into the World of DevOps and Containers

Kaushik Srinivas | May 2, 2017

Business undertaking digital transformation initiatives are turning to Agile development and DevOps workflows to execute their software projects. Agile lets software teams respond quickly to customer needs, and DevOps helps organizations deploy..

Read More

Contrast News

The Importance of Adding "A7: Insufficient Attack Protection" to the OWASP Top 10

Jeff Williams, Co-Founder, Chief Technology Officer | April 27, 2017

We know there are some very strong feelings about both the recent Top Ten Release Candidate and my involvement in the project. Steve Ragan does a nice job summarizing the issue in CSO: "Contrast Security Responds to OWASP Top 10 Controversy."  While..

Read More

Application Security

Portable Builds with Docker

Johnathan Gilday | April 25, 2017

At Contrast, we like to enable developers to solve their own problems without submitting tickets to the Operations team. We also like to define our infrastructure with code.

Read More


How to Improve AppSec in DevOps

Christine Carrig, Director of Marketing | April 21, 2017

DevOps seems to be on the mind of a lot of folks these days. Many articles have been written on how to strategically move to well-functioning and secure DevOps methodologies. Leading experts, who've been in the DevOps trenches, are now sharing..

Read More


"When we instrumented applications at the UK's largest Government Department with Contrast Assess, it was like handing our project teams an incredibly powerful debugging agent containing the sum total of application security knowledge.” 

Declan O'Riordan
Security Testing Manager
Testing IT, Ltd.

schedule a demo now

Discover how easy it is to spot & stop attacks in real-time.
Get Demo