Skip to content

AppSec Observer: DevOps (2)

The latest trends and tips in DevSecOps through instrumentation and security observability. Learn about real-world insight and “in-the-trenches” experiences on topics ranging from application and information security to DevOps and risk management.

Subscribe Now
Contrast Labs: Jenkins Maven HPI Plugin Exposes Developer Laptops

Contrast Labs: Jenkins Maven HPI Plugin Exposes Developer Laptops

If you are like the development team at Contrast Security and build Jenkins plugins, then you probably find value in..

Misconfigurations and Alert Fatigue Require a Modern AppSec Approach

Businesses are adopting development and operations (DevOps) to tap into new business opportunities. These DevOps..

RASP vs WAF: Why You Need Both a WAF and RASP to Protect Your Web Applications

RASP vs WAF: Why You Need Both a WAF and RASP to Protect Your Web Applications

One thing that you learn in the technology space is that change is constant. Companies, solutions, and people who sit..

Elite Performers CHoose Simpler Tools

Elite Performers Choose Simpler Tools

I was fascinated to read this year’s   Accelerate State of DevOps Report 2019  which now represents six years of..

Stoked! The Creative Process of Street Skating and What Open Source Folks Can Learn From It

 “…all skateboarders speak a language of our own devising. We take simple movements and chunk them together in such a..

How do teams stay afloat in an ocean of vulnerabilities? They remediate faster (3.0x FASTER!)

As a developer, working through your team's bug backlog can sometimes feel like bailing out a rowboat with only a leaky..

D0285ZTUwAIZdJQ

"BETTER" Security in 2019 - Lessons from RSA

We’ve recently wrapped up a dynamic week at RSA 2019 in San Francisco where we had over 500 visitors to our booth,..

erikHeadshot-126710-edited

Contrast Security is Fully Compatible with Amazon Corretto

Amazon recently released Corretto, a Java 8 runtime that is fully-compatible and license-compliant. Both Contrast..

How Visibility and Data Unite Engineering, Security & Operations: Dev + Sec + Ops = DevSecOps

More than ever before, the security of a running application is a shared responsibility: The security team needs to..