Application Security in the Cloud: Introducing a Modern Framework
As engineering becomes increasingly fast-paced, dynamic and influential across organizations, AppSec must evolve. Agile development methodologies — such as continuous integration and continuous development (CI/CD) pipelines — are commonplace in this modern cloud-native development landscape. But these technologies are outside the purview of traditional AppSec programs, and attackers have taken note. CI/CD pipelines are now viewed as a relatively easy target by cloud threat actors....