6 Application security as a service

This chapter covers

  • Changing the application security model from gated activities to enablement
  • Creating an environment of application security as a service
  • Learning the services that should be part of the application security as a service ecosystem
  • Closing the divide between security and engineering

What is a great way to stop getting invited to the engineering holiday party? Block an application release or hold up a build due to a found vulnerability. Historically, application security has been the team that comes in at the end of a productive coding release to show various issues with the code, deployment, libraries used, and other ways of showing how the software is not ready for prime time. This gated ...

Get Application Security Program Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.