Before we fully present you our DevSecOps platform, we would like to introduce you some necessary context on how we got here. In our routine…
The AppSec market has had a high visibility in recent years. As a consequence, we have seen the emergence of new AppSec tools and platforms…
In principle, a false positive in AppSec results from a security test that indicates the existence of a threat or vulnerability that does…
Continuing the series of publications on the OWASP SAMM framework (Software Assurance Maturity Model), in this article, we will address the…
There is something happening behind the scenes in the software world that will make a difference in the context of automated security…
I am quite sure everyone in the DevSecOps movement is used to CI/CD pipelines and the importance of adding security controls in the early…
A few years ago, the Conviso team realized that it needed to find a way to organize activities carried out with clients. It was necessary to…
First, why do we need an S-SDLC or even an SDLC?
The answers to these two questions are straightforward. In today’s world…
What is the importance of using Kubernetes in a Cloud environment? And what are the security practices that we need to apply for this…