Suzanne Ciccone

Suzanne Ciccone

Suzanne is part of the content team at Veracode, working to create resources that shed light on AppSec problems and solutions. 

Stay up to date on Application Security

Posts by Suzanne Ciccone
  • Overcoming the Language Barrier Key to…
    | By Suzanne Ciccone

    As DevOps moves to DevSecOps, there is a significant “people” component involved in the shift. Development and security teams both need to overcome their “language barriers” and understand each other’s processes and priorities. The effort is worth it because we know that (1) the consequences of…

    Read Article
     
  • Hardcoded Credentials: Why So Hard to…
    | By Suzanne Ciccone

    About a year ago, attackers managed to tap into thousands of IoT devices to create a botnet infected with Mirai malware and wreak havoc on some major websites. This Mirai botnet, made up of 100,000 IoT devices from DVRs to security cameras, unleashed a massive DDoS attack on DNS provider Dyn, which…

    Read Article
     
  • How Veracode Products Secure the…
    | By Suzanne Ciccone

    This is the second in a series of blogs on how Veracode products fit into each stage of the software lifecycle – from development to production. We want to emphasize lifecycle here, because we continue to hear the misconception that application security falls squarely and solely into the testing…

    Read Article
     
  • How Veracode Products Secure the Coding…
    | By Suzanne Ciccone

    This is the first in a series of blogs on how Veracode products fit into each stage of the software lifecycle – from development to production. We want to emphasize lifecycle here, because we continue to hear the misconception that application security falls squarely and solely into the testing…

    Read Article
     
  • Podcast: Implications of the EU GDPR
    | By Suzanne Ciccone

    The EU General Data Protection Regulations (GDPR) go into effect in May 2018, and will introduce stark new data security requirements for any organization in the EU, or doing business in the EU. The requirements in this regulation surrounding data retention and personal information are…

    Read Article
     
  • Security Needs to Shift Left – and Right
    | By Suzanne Ciccone

    The move to Agile and DevSecOps development processes has fostered a lot of attention on the need to shift security testing left in the development cycle. And this is absolutely a pivot in the right direction. Moving security testing into the realm of the developer makes security testing faster,…

    Read Article