Here are some links to recent articles I’ve written regarding application security…if you take anything away from this, it’s that you can’t afford to take this part of your security program lightly.
Dealing with vendors who want to push their SOC audit reports on you
Explaining discrepancies in different security assessment reports
Why DAST and SAST are necessary if software is solid from the get-go
Nixing credential re-use across unrelated systems
Common oversights in mobile app security
What are the most important security testing basics?
Signs that you’re about to suffer a security breach
As always, you can link to all of my information security content on my website at www.principlelogic.com…Thanks for reading!