Source: thenewstack.io
How to Increase Speed and Security with ASOC
You may be sick of technology acronyms, but if you work in the world of software and you’re not familiar with ASOC (application security orchestration and correlation), add it to your list. ASOC offers the best chance yet to make everyone a winner and resolve the seemingly endless conflict between speed and security in software development, which is revolutionary.
By now it is a familiar parade of horribles: compromised personal information, financial data and intellectual property.
As Sammy Migues, principal scientist at Synopsys and a coauthor of the annual Building Security In Maturity Model (BSIMM), said a year ago, the message from software development teams is, “We’d love to have security in our value streams if you don’t slow us down.”
It should ship the information to the developer with the type of finding, where it is in the code and even remediation guidance,” D’Amico said, adding that it will also verify when a defect has been corrected and if so, will automatically close the ticket.
By now it is a familiar parade of horribles: compromised personal information, financial data and intellectual property.
As Sammy Migues, principal scientist at Synopsys and a coauthor of the annual Building Security In Maturity Model (BSIMM), said a year ago, the message from software development teams is, “We’d love to have security in our value streams if you don’t slow us down.”
It should ship the information to the developer with the type of finding, where it is in the code and even remediation guidance,” D’Amico said, adding that it will also verify when a defect has been corrected and if so, will automatically close the ticket.
Related Articles
Community Partners
DevOps Careers