Join us on Wednesday, March 12 from 1:00 – 2:00PM EDT to learn more about Ruby on Rails security features, how to use them and how to avoid breaking them.
How can business leaders guarantee that they won’t be the next headline security breach? How should companies even start to address software security? Watch the HP Discover Performance Weekly video featuring Cigital CTO, Dr. Gary McGraw, to find out.
Cigital @theWhiteboard is an exciting new eLearning offering from Cigital that combines live instructor-led content and electronic delivery. This month’s free session, led by Cigital iCTO John Steven, focuses on Secure Password Storage. The subject of Secure Password Storage will be broken into two sessions. The first session will cover the fundamentals of secure password… Read More
Software is in such a vulnerable state today. Most systems and networks were poorly designed and built from the start, which makes them even more difficult to defend against cyberwar, cyberespionage, and cybercrime attacks. We need to design and implement things to be more secure in the first place. Unfortunately, this is not the prevailing… Read More
Nearly every organization tackling software security today is working on automating code review. However, the challenge most firms are running into now is how to scale this process with industrial-strength static analysis code review tools like HP Fortify, IBM AppScan, and Coverity. The latest SearchSecurity article from Gary McGraw, CTO at Cigital, and Jim Routh,… Read More
Next week looks to be a busy one for Cigital speakers with three members of the Cigital team delivering talks around the United States. Joel Scambray, Managing Principal OWASP Austin January Chapter Meeting Tuesday, January 28, 2014 11:20 AM – 1:20 PM CST Hacking Exposed: Mobile Edition Mobile is living up to the hype as… Read More
All businesses depend on software; some software is developed internally while the rest comes from third-party software service providers and commercial off-the-shelf software (COTS) vendors. While organizations can hope the software from third parties is built securely, hope isn’t a viable security strategy—which means firms need to develop an effective vendor management strategy to reduce… Read More
Join Cigital at RSA 2014. In addition to participating in the exhibitor showcase, two members of the Cigital team, Dr. Gary McGraw and Caroline Wong, will be presenting at three sessions during the conference. Dr. Gary McGraw, Chief Technology Officer: Security Principles Versus the Real World Years ago, Saltzer and Schroeder identified a set of… Read More
Cigital is proud to be the Platinum Sponsor of Securi-Tay3, the third Information Security conference held by the Abertay Ethical Hacking Society, supported by the University of Abertay, Dundee on January 15th, 2014. Student-organised and led, Securi-Tay3 aims to deliver a high-quality security conference filled with industry professionals, students and hobbyists, with the goal of… Read More
Over the past year, a lot of attention has been focused on the security failures of software and devices. When these vulnerabilities are presented by clever and talented security experts, it is easy to imagine that protecting software from hackers requires equivalent talent and ingenuity. The reality is quite the opposite. Most of the prevalent… Read More