Software Development - Security Intelligence

Security team running checks on IoT solutions.

article

Putting the ‘S’ in IoT: How to Make Internet of Things Solutions Secure by Design

When developing and deploying internet of things solutions, achieving security by design is not as simple as picking a secure development life cycle (SDLC) framework and shifting your security left.

May 7, 2019 | By Irene Michlin

article

Group of professionals reviewing cybersecurity best practices in the office

article

Everything Is Best When It Comes to Cybersecurity Best Practices

How can security professionals keep up with cybersecurity best practices without taking too much time away from other responsibilities?

May 2, 2019 | By Kacy Zurkus

article

Developer conducting an application security test.

article

How to Balance Speed and Security in Your Application Security Program

To compete in today's software market, developers are under pressure to build quality code quickly. But DevOps processes that fail to account for application security are bound to miss critical flaws.

April 10, 2019 | By Joe Coletta

article

IT professionals reviewing their microservices architecture.

article

Securing the Microservices Architecture: Decomposing the Monolith Without Compromising Information Security

Ditching monolith for microservices may be right for your organization, but it's critical to address the relevant security considerations early in the process.

March 21, 2019 | By Atul Chaturvedi

article

Diverse group of security professionals discussing a project: cybersecurity workforce

article

Creating Meaningful Diversity of Thought in the Cybersecurity Workforce

Let's add the diversity of approach, diversity of values and advocacy for deep customer empathy to the cybersecurity workforce diversity we are building.

March 20, 2019 | By Bill Bonney

article

A desktop computer and a man using a laptop in the background: system development life cycle

article

The System Development Life Cycle: A Phased Approach to Application Security

By completing the phases of the system development life cycle (SDLC), security teams can integrate processes and technologies into the development process and improve application security.

January 7, 2019 | By Brian Evans

article

Colleagues reviewing software for vulnerabilities with machine learning tools.

article

Machine Learning Will Transform How We Detect Software Vulnerabilities

When used as part of the software development process, machine learning can help identify vulnerabilities before threat actors have a chance to exploit them.

December 18, 2018 | By Bruce Schneier

article

A neighborhood crime watch sign on a suburban road.

article

Neighborhood Watch: Uniting the Data Security Community Through Software Development Kits

Software development kits enable technology partners to build integrations that fill in gaps and extend the functionality of core products, boosting collaboration and innovation among cyberdefenders.

April 13, 2018 | By Calvin Bench

article

A developer writing code: HTTP response headers

article

An Introduction to HTTP Response Headers for Security

HTTP response headers aim to help protect web applications from cross-site scripting (XSS), man-in-the-middle (MitM) attacks, clickjacking, cross-site request forgery and other threat vectors.

March 23, 2018 | By Madhusudhan Rajappa

article

Three programmers analyzing code on a laptop.

article

Three Practical Tips That Empower Developers and Prevent Open Source Security Risks From Entering Your Code

There are many benefits to developing software using open source code, but these components can also introduce vulnerabilities into your code.

August 21, 2017 | By Rebecca Aspler

article

Fraudsters Abuse Smartphone Google Calendar Feature to Push Through Scam Offers

Latest Mirai Malware Variant Contains 18 Exploits, Focuses on Embedded IoT Devices

Extortion Scam Threatens Website Owners With Reputational Damage

Attack Campaign Exploits CVE-2019-2725, Abuses Certificate Files to Deliver Monero Miner

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

IoMT Security: A Comprehensive Approach to Mitigate Risk and Secure Connected Devices

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

One Big Lesson From the Cyber Range to Help Solve Confirmation Bias

Observations of ITG07 Cyber Operations

Getting Quantum Ready and What This Means for Cryptography

HawkEye Malware Operators Renew Attacks on Business Users

Podcast: Lateral Movement: Combating High-Risk, Low-Noise Threats

Podcast: Travel Security: Why Data Safety Doesn’t Get a Day Off

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Webinar: Under the Radar: IBM QRadar Demo Series

Webinar: Appliance Networking Topics

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Webinar: zSecure Real Time Feeds: Alert vs. Audit

Tag: Software Development

Putting the ‘S’ in IoT: How to Make Internet of Things Solutions Secure by Design

Everything Is Best When It Comes to Cybersecurity Best Practices

How to Balance Speed and Security in Your Application Security Program

Securing the Microservices Architecture: Decomposing the Monolith Without Compromising Information Security

Creating Meaningful Diversity of Thought in the Cybersecurity Workforce

The System Development Life Cycle: A Phased Approach to Application Security

Machine Learning Will Transform How We Detect Software Vulnerabilities

Neighborhood Watch: Uniting the Data Security Community Through Software Development Kits

An Introduction to HTTP Response Headers for Security

Three Practical Tips That Empower Developers and Prevent Open Source Security Risks From Entering Your Code