The startup’s guide to securing your infrastructure
Eric
Running tech at a startup is a hard job. You’re on a shoestring budget, if you even have one. You’re constantly understaffed. Everyone needs that new feature or server set…
Browsing Category
Security
90 posts
How to manage security debt as a startup
What do you know about security debt? As the leader of a software startup, you’re probably familiar with the concept of technical debt. Technical debt is where your team makes…
Top 6 security best practices for Go
Christian Meléndez
Golang’s adoption has been increasing over the years. Successful projects like Docker, Kubernetes, and Terraform have bet heavily on this programming language. More recently, Go has been the de facto…
APIDays 2019: RASP for APIs and microservices
Jb
This week, I had the opportunity to speak at APIDays in Paris. As is often the case, APIDays was frequented by a super interesting mix of technologists, looking for the…
How to transition into DevSecOps
Sylvia Fronczak
Many of us have been living the DevOps life for a while now. We no longer just write the applications and leave the rest of the lifecycle to others. We’re…
Security interview: Adam Baldwin on iterating security at npm
Josh
Recently, we sat down with Adam Baldwin, VP of Security at npm, to discuss his approach to security and what he’s learned as far as security goes throughout his career.…
SOC 2 compliance guide for startups
Carlos Schults
Security has always been a big concern for business organizations. Nowadays, it’s an even more significant concern, and it isn’t hard to understand why. The technology world changes at an…
What is a Content Security Policy (CSP) and why is it important?
Trust is the fundamental currency of the internet. You trust your service provider that they’ll continue to maintain your internet access. Your developers trust your architecture provider when they say…
What is chaos engineering and why does it matter?
The big day is finally here. That project your team has been working on for the last six months? It’s launching today. A little giddy with anticipation, the team monitors…
An overview of the CIS 20: a security foundation for your organization
One of the more common mistakes that I see organizations make on digital security is ignoring free resources that can help their business level up. This is rarely intentional. Instead,…