Software security engineering News
March 31, 2014
Gary McGraw discusses why the software security segment of the IT security industry is growing at a faster rate than the category as a whole.
January 28, 2014
Gary McGraw and Jim Routh talk through the pitfalls of scaling static source code review and offer some potential process improvements.
August 09, 2013
Column: Gary McGraw says five shifts in the IT landscape are affecting software security, but several BSIMM best practices can limit risk exposure.
October 04, 2012
Software security expert Gary McGraw provides actionable guidance based on analysis of dozens of software security firms.
Software security engineering Get Started
Bring yourself up to speed with our introductory content
This compilation of content featuring software security expert Gary McGraw covers every aspect of secure software development, from training to coding to post-launch analysis. Continue Reading
Building security into the software development process lowers both risks and costs in the long term. This collection explains how it can be done. Continue Reading
Application security is the use of software, hardware, and procedural methods to protect applications from external threats. Once an afterthought in software design, security is becoming an increasingly important concern during development as applications become more frequently accessible over networks and are, as a result, vulnerable to a wide variety of threats. Continue Reading
Evaluate Software security engineering Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
Software security ranks high among security executives' concerns but low in terms of time spent, according to an (ISC)2 CXO study. Continue Reading
The fourth iteration of the Building Security In Maturity Model project is a tool you can use as a measuring stick for software security initiatives. Continue Reading
Manage Software security engineering
Learn to apply best practices and optimize your operations.
Security professional John Overbaugh explains how designing a secure development lifecycle can help teams implement more secure code. Continue Reading
Enterprises rely on ERP and CRM systems, but they pose a risk if left unpatched. Michael Cobb reviews enterprise application security best practices. Continue Reading
Security is an essential part of the software testing lifecycle, yet many test pros shy away from it. Yvette Francino offers help on getting started. Continue Reading
Problem Solve Software security engineering Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
Expert Michael Cobb details how to argue for a multistep secure code review process like the Microsoft SDL, and the pros of secure coding practices. Continue Reading
New software testers will benefit from this expert's wisdom as he explains the top ten security concerns organizations should be aware of based on OWASP documentation. Continue Reading