Rethinking shift left: How a lack of context creates unnecessary friction between AppSec and Developers | allinfosecnews.com

Nov. 27, 2023, 9:33 p.m. | joe@legitsecurity.com (Joe Nicastro)

Legit Security Blog www.legitsecurity.com

Shift Left… it’s a term used almost ubiquitously across application security by both security practitioners implementing programs, regardless of scale, as well as just about every vendor selling an application security solution.

The idea that it’s faster, cheaper, and often easier to fix a security flaw when the code is being created (as opposed to later in the software development lifecycle (SDLC)) is widely accepted within the AppSec community. It only makes sense that we’ve moved towards using tools that …

application application security appsec context developers devops easier explainers fix scale security security practitioners selling shift left solution vendor

More from www.legitsecurity.com / Legit Security Blog

Dependency Confusion Vulnerability Found in an Archived Apache Project 1 week, 6 days ago | www.legitsecurity.com

apache appsec best practices dependency +10

The Role of ASPM in Enhancing Software Supply Chain Security 2 weeks, 3 days ago | www.legitsecurity.com

appsec aspm best practices critical +14

How to Reduce the Risk of Using External AI Models in Your SDLC 3 weeks, 2 days ago | www.legitsecurity.com

address ai models appsec best practices +5

Securing the Software Supply Chain: Risk Management Tips 1 month ago | www.legitsecurity.com

appsec best practices can explainers +15

What You Need to Know About the XZ Utils Backdoor 1 month ago | www.legitsecurity.com

announcement appsec backdoor legit +3

How to Get the Most From Your Secrets Scanning 1 month, 1 week ago | www.legitsecurity.com

amp appsec best practices code +17

Microsoft Under Attack by Russian Cyberattackers 1 month, 2 weeks ago | www.legitsecurity.com

appsec attack attackers best practices +11

Don't Miss These Emerging Trends in Cloud Application Security 1 month, 3 weeks ago | www.legitsecurity.com

application application security appsec best practices +9

Using AI to Reduce False Positives in Secrets Scanners 1 month, 3 weeks ago | www.legitsecurity.com

appsec best practices false positives legit +6

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States

View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US

View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States

View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States

View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)

View on infosec-jobs.com

Vice President, Cyber Operations Engineer

@ BlackRock | LO9-London - Drapers Gardens

View on infosec-jobs.com