%term

How MongoDB built a successful security champions program

Nov 2, 2021 By Sarah Wills In Snyk

We recently spoke with Amy Berman, Security Strategic Operations Lead at MongoDB about the role of security champions at her organization. For those new to the concept, security champions are developers that have an interest in security and can facilitate collaboration between development and security teams.

Read Post

Snyk

Read more about How MongoDB built a successful security champions program

Secure your infrastructure from code to cloud

Nov 2, 2021 By Snyk In Snyk

Infrastructure as Code enables you to take ownership of your cloud environments and define what your application needs in a programmatic way. It's appealing because it’s code; you can version it, you can automate testing it using pipelines and you can deploy it frequently on your own. However there is a catch. With this level of autonomy comes increased responsibility and the implicit requirement to have the relevant knowledge needed in order to design and configure secure infrastructure.

View Video

Snyk

Read more about Secure your infrastructure from code to cloud

Creating custom rules for Snyk Infrastructure as Code (Snyk IaC)

Nov 2, 2021 By Snyk In Snyk

Snyk allows customers to create custom rules, using advanced patterns, to define what to look for in infrastructure as code files. This session will be a deep dive into how to create your own rules for Snyk Infrastructure as Code (Snyk IaC)

View Video

Snyk

Read more about Creating custom rules for Snyk Infrastructure as Code (Snyk IaC)

Haunted: Chrome's vision for post-Spectre web development

Nov 2, 2021 By Snyk In Snyk

Ahh, the web, an open platform where sites can communicate with each other, embed third-party content to unlock powerful features, make requests to arbitrary endpoints of other web applications... Well. Isolation was never a thing on the web, and this creates a number of security issues⏤but Spectre took this to the next level.

View Video

Snyk

Read more about Haunted: Chrome's vision for post-Spectre web development

Enterprise Application Risk Profiling

Nov 2, 2021 By Snyk In Snyk

I will discuss digital transformation in the enterprise, how it impacts cloud native applications developed using agile methodologies and as a result, an oscillating application risk rating, which then triggers prioritized security-related activities by application security engineers.. Key topics will include: Creating a baseline application risk profile Dynamic characteristics of application risk factors Significant changes that trigger security reviews

View Video

Snyk

Read more about Enterprise Application Risk Profiling

Secure Containers Easily with Base Image Management

Nov 2, 2021 By Snyk In Snyk

Greatly reduce vulnerabilities using Snyk's advanced container analysis. This session focuses specifically on the Base Image Management capabilities. Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about Secure Containers Easily with Base Image Management

Accelerating the Snyk infrastructure as code vision with the addition of CloudSkiff

Oct 29, 2021 By Guy Podjarny In Snyk

We are thrilled to welcome the team at CloudSkiff to Snyk! Many of you may be more familiar with driftctl, the open source project started by the CloudSkiff team. I wanted to share with you why we’re excited about the addition of this fantastic group of people to Snyk, and our plans for the future of Snyk Infrastructure as Code (Snyk IaC), as well as our commitment to keeping driftctl open source.

Read Post