Modernize the Security Development Lifecycle!
Organizations need to modernize security for the software development lifecycle – automating security assessments throughout the SDLC. Soluble does this utilizing open source security solutions.
Security Superfriends Episode 6: Rick Howard
Rick Howard, CSO, Senior Fellow, Chief Analyst, The CyberWire, shares his thoughts on The SolarWinds Breach, Supply Chain Risk, Cloud Native Development, and security books we all must read.
Minimizing Tech Debt With IaC
Tech debt can accumulate quickly as teams use IaC to provision cloud infrastructure. Learn how to minimize tech debt and remediation work by catching and fixing security issues early in development.
A Guide to Open Source IaC Testing
Are You Using Infrastructure as Code (IaC), such as Terraform, CloudFormation, Helm, or Kubernetes? Read about available IaC security testing tools - like Terrascan, Checkov, TFLint, Tf-sec, Sentinel, and others – and how they compare.
Security Superfriends Episode 5: Chad Kalmes
Currently at PagerDuty, formerly at Twilio, Chad discusses how to manage cloud native security risk at organizations with high volume software development.
Risk Ranking Terraform Changes
Need a way to assess the security impact of Terraform changes? Soluble helps customers understand the impact of code changes on their security posture.
Three Simple Checks For Better Cloud Native Security
Learn about three simple security checks that have a high impact on reducing cloud native security risk, and how to easily perform these checks within developer workflows.
Getting More Out of Cloud Security Posture Management (CSPM)
Mistakes happen! No matter how many controls and processes you put in place — services can and do get exploited by the bad guys because of errors from many developers deploying rapidly to the cloud.
Shifting Left Is a Security Superpower
Get the CISO perspective on GitHub's State of the Octoverse, and get the checklist on how to know whether you've shifted security left to help scale your security program with modern software development.
BOOM for DevSecOps: Burndown Rates
Learn how to measure burndown rates to increase the effectiveness of your security program. For cloud native devsecops, learn how it can help you make security more efficient.
Kubecon + CloudNativeCon Recap
Fresh from Kubecon + CloudNativeCon, read Soluble's recap of the CNCF 2020 Survey and the Cloud Native Security Whitepaper released by CNCF Security SIG