Learn how Amazon Q Developer AI assistant enhances software security and code quality through SCA, SAST, and DevSecOps integration.
A framework for evaluating work based on Expertise, Purpose, Fun, and Difficulty, with examples from Kubernetes security.
Applying behavioral economics principles from 'Thinking, Fast and Slow' to improve application security practices and decision-making.
Announcing the release date for 'The CloudSec Engineer' book, a guide focused on cloud security engineering.
Explores using AWS CodeBuild and CodePipeline to enforce security governance while maintaining developer agility in CI/CD pipelines.
A guide on implementing Dependabot for automated dependency updates and vulnerability management to improve software supply chain security.
Final part of a DevSecOps series on using Microsoft Sentinel for security monitoring, threat detection, and incident response in Azure environments.
Explores using Microsoft Defender for Cloud to improve security for Azure environments and DevOps platforms like GitHub and Azure DevOps.
Explains how to use Azure Policy and DevOps automation to achieve continuous compliance and governance in Azure cloud environments.
Explains how Azure AD and RBAC control access to Azure DevOps, GitHub, and Azure resources as part of DevSecOps identity management.
Guide to securely deploying Azure resources within a Virtual Network using DevSecOps practices for network isolation and security controls.
Guide to securing Azure infrastructure code using DevSecOps practices, Azure DevOps, and the KICS open-source static analysis tool.
Part 2 of a series on championing third-party observability tools to your security team, focusing on building empathy and alignment.
