Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Trend Micro & Snyk - Better together

May 19, 2021 By Snyk In Snyk
This Trend Micro and Snyk talk gives an overview of what is open source is, including the growth, power and potential risk involved in using it to build and deploy cloud native applications. With visibility into open source vulnerabilities and license issues the first time sec ops professionals have visibility into potential vulnerabilities in open source components through . Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.
View Video

Keep OSS supply chain attacks off the menu: Tidelift catalogs + JFrog serve known-good components

May 18, 2021 By JFrog In JFrog
How does your organization keep track of all of the open source components being used to develop applications and ensure they are secure and properly maintained? Our recent survey data shows that the larger an organization gets, the less confident they are in in their open source management practices. In companies over 10,000 employees, 39% are not very or not at all confident their open source components are secure, up to date, and well maintained.
View Video
Snyk

Misconfigurations, known unpatched vulnerabilities, and Cloud Native Application Security

May 17, 2021 By Simon Maple In Snyk

Two weeks back, we published our annual State of Cloud Native Application Security report. If you haven’t seen it yet, here’s a TL;DR. We surveyed nearly 600 developers and security professionals to see how the shift to cloud native (digital transformation) has changed their security posture. Then we parsed the results, gleaned valuable insights, and put them in an interactive webpage.

Read Post
Snyk

Scaling for DevSecOps with the Norwegian Labour and Welfare Administration

May 13, 2021 By Brian Piper In Snyk

Application development has changed, and development teams have begun supporting a model of rapid and frequent deployments to support the pace of innovation demanded by digital transformation. From an application security perspective, this means scaling through DevSecOps and supporting developer-first security. The unique challenges and solutions for shifting to DevSecOps were the subject of a recent roundtable discussion featuring Aner Mazur, Chief Product Officer at Snyk and Christer Edvartsen, Sr.

Read Post
mend

Reducing Enterprise AppSec Risks: Ponemon Report Key Takeaways

May 13, 2021 By Julie Peterson In Mend

Ponemon Institute’s Reducing Enterprise Application Security Risks: More Work Needs to Be Done looks at the reasons why many enterprises consider the application layer to be the highest security risk. Ponemon Institute, in partnership with WhiteSource, surveyed 634 IT and IT security practitioners about their enterprises’ approach to securing applications.

Read Post
Snyk

Prevent cloud misconfigurations in HashiCorp Terraform with Snyk IaC

May 13, 2021 By Jim Armstrong In Snyk

We’re delighted to share new features of Snyk Infrastructure as Code (Snyk IaC) designed to support how Terraform users write, plan, and apply their configurations. With Snyk IaC, you can get immediate guidance on security configurations as you write, and scan your Terraform plans in your deployment pipelines to ensure your changes and complete configuration are safe.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.