Application Security

Which topics should an AppSec Training Contemplate?

The development market seems to be becoming more and more aware of the need for Application Security Training (AppSec). However, the market still looks for generic training, which often meet compliance issues, but do not add real value to development teams. Therefore, this article will present the characteristics and subjects for a good AppSec training. The Target Audience in AppSec…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Podcast

AppSec to Go: The importance of investing in AppSec training

Do you understand the impact of investments in AppSec training on the maturity of your company’s secure application development? This is what the second episode of AppSec to Go podcast is all about. To talk about it, the host of this episode – our CEO, Wagner Elias – talks to Nicolas Schmaltz, who is the leader of our Consulting and Training team. In this episode, Wagner…
Read more

AppSec to Go: Quality Assurance and AppSec

AppSec Drops: AppSec news commented by Conviso experts

Application Security

Why invest in AppSec Training

How can AppSec Training help? Aren’t you eager to know how training can help your company to reach maturity in Security Application Development? Training in Security is an investment that is not very fond of the organization. That is due to the lack of vision for results when analyzed in a short period of time scenario. In this article, we approach how Secure Development training can…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

What PCI-DSS is and the importance of training

What is PCI-SSC? After a series of security problems and credit card information leaks in the early 2000s, several companies came together in a Council to work on a possible solution. Therefore, in 2006, the largest companies in the credit card industry came together and formed the PCI-SSC (Payment Card Industry – Security Standards Council). This is a set of security requirements and…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

Lack of Professionals in AppSec

In the past years, not only the AppSec area but also all the IT area has suffered from exponential growth which increases the demand and also the lack of specialized professionals in AppSec. We are nearing the end of another year, and as every year we begin to take stock of what happened in this one to project what we want in the next. In companies this is no different, everyone starts to…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

AppSec in the process of digital transformation

Another episode of AppSec to Go is on the air. The third episode of Conviso’s podcast addresses the theme of AppSec in the process of digital transformation. This time, the host is Nícolas Schmaltz, leader of the Consulting & Training team. To enrich the chat, the guest of the occasion is Guilherme Silva, a specialist in Information Security.  Silva has experience in implementing…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

Phishing scam using Conviso's name: don't fall for it!

In the past few days, a few customers have reported to us that they have been receiving phishing emails from scammers using Conviso’s name. In this type of fraud, the scammer tries to obtain a user’s personal and financial data, through the combined use of technical means and social engineering. From what we have seen, in this particular case, the scammers’ strategy is to try to…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

3 errors in the secure coding process

Vulnerabilities are the result of human error. Many don’t like it, but most web application security issues are the result of errors during the coding process. Therefore, if we think more clearly, the best approach to creating secure software is to do everything possible to avoid errors in the development process. When we talk about training on the most common mistakes made by…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

The Importance of Metrics in Application Security

Peter Drucker once said, “That which is not measured, is not improved.” He’s right – what we can’t understand, we can’t improve or even know if it’s working or not. When we apply that same thought to the secure development processes, we realize that few companies really understand what’s going on in their process. At most, they have a sense of the…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions