Application Security for Builders and Creators

Application Security for Builders and Creators

Application Security for builders and creators. Let’s build a vaccine passport app!” declared Alice during one of those recurring zoom meetings. Who are the developers, DevOps and Product Owners? What is the application security and cloud technology stack?

Meet Alice and Bob

Alice and Bob work for an exciting data analytics startup that is disrupting the healthcare tech space. You might have heard their names as they are well known in the security industry for building apps that are secure by design. As creators, they also enjoy rapidly prototyping ideas into functional apps that demonstrate innovative thoughts and potential solution to customer problems.

“Let’s build a vaccine passport app!” declared Alice during one of those recurring zoom meetings.

“You know what I’ve been thinking about it as well. Let’s do it!” said Bob as he hurriedly unmuted himself.

“We can involve Claire as well, our new DevSecOps person, since it will be best to get security built into the product from the start,” said Alice.

Bob asked, “Won’t that slow us down Alice? Can we build the app first to see if there any downloads from the AppStore and then implement security features next month?”.

Before Alice could respond, Bob quickly replied, “I’m just joking! Of course, safety and privacy of our users are more important not just speed and time to launch”.

Claire now joins the Zoom meeting.

Chat up with the devs

“OMG, that will be a super cool app!” said Claire before Alice and Bob could even describe their app idea. The boring Zoom meeting suddenly became a design discussion between the devs (Alice and Bob) and the security person (Claire). Claire starts by asking for some basic information about the app and takes notes for future reference.

  • Team: Who are the developers, DevOps and Product Owners?
  • User stories: Are there any existing user stories providing an overview of the app?
  • Tech: What is the application and cloud technology stack?
  • Architecture: Are there any diagrams even the back of the napkin ones?

Gathering information through formal and informal discussions with devs is an essential skill to succeed in an AppSec or DevSecOps and even in a cybersecurity role. A good knowledge about the application helps build a relationship with not just the dev team but also with the security testing tools (including the vendor). A well configured static analysis-based security tool would help with both developer productivity and application security.

devsecops infosec security github

What is Geek Coin

What is GeekCash, Geek Token

Best Visual Studio Code Themes of 2021

Bootstrap 5 Tutorial - Bootstrap 5 Crash Course for Beginners

Nest.JS Tutorial for Beginners

Hello Vue 3: A First Look at Vue 3 and the Composition API

Stay Safe on GitHub: Security Practices to Follow

As developers in this deeply interconnected community use open source code to build software, Github security should be a top priority. This is because extensive code re-use increases the risk of distributing vulnerabilities from one dependency or repository to another. As such, every contributor should focus on creating a secure development environment. Here are eight security practices that GitHub users can follow to stay safe and protect their code:

Stay Safe on GitHub: Security Practices to Follow

As developers in this deeply interconnected community use open source code to build software, Github security should be a top priority. This is because extensive code re-use increases the risk of distributing vulnerabilities from one dependency or repository to another. As such, every contributor should focus on creating a secure development environment. Here are eight security practices that GitHub users can follow to stay safe and protect their code:

Stay Safe on GitHub: Security Practices to Follow

As developers in this deeply interconnected community use open source code to build software, Github security should be a top priority. This is because extensive code re-use increases the risk of distributing vulnerabilities from one dependency or repository to another. As such, every contributor should focus on creating a secure development environment. Here are eight security practices that GitHub users can follow to stay safe and protect their code:

Best Custom Web & Mobile App Development Company

Top Web & Mobile Application Development Company in India & USA. We specialize in Golang, Ruby on Rails, Symfony, Laravel PHP, Python, Angular, Mobile Apps, Blockchain, & Chatbots

Tools for DevSecOps on GitHub and Azure

Tools for DevSecOps on GitHub and Azure - Learn how using GitHub Actions and GitHub integration with Azure Services can help your team build workflows that enable continuous delivery while integrating security and governance. We'll cover best practices like policy compliance and container scanning, and show you some new tools and services that can support them.