Posts

Plan for security flaws

All but the very simplest software is likely to contain bugs, some of…

Read more
/by

Secure the build and deployment pipeline

Continuous integration, delivery and deployment are modern approaches to the building, testing and…

Read more
/by

Secure your development environment

There is sometimes a perceived conflict between security and usability. This situation is…

Read more
/by

Keep your security knowledge sharp

Creating code that is capable of withstanding attack requires an understanding of attack…

Read more
/by

Continually test your security

Testing during software development is well recognised as good practice. It helps you…

Read more
/by

Protect your code repository

Your code is only as secure as the systems used to create it….

Read more
/by

Produce clean & maintainable code

If your code lacks consistency, is poorly laid out and undocumented, you’re adding…

Read more
/by

Managing supply chain risk in cloud-enabled products

There’s been a lot of speculation about foreign involvement in the UK supply…

Read more
/by

CyBOK – the scope

If you missed the earlier blogs and don’t know what CyBOK is -…

Read more
/by

Managing the risk of cloud-enabled products

Organisations are increasingly deploying software to both servers and end user devices that…

Read more
/by