Threat modeling and binary analysis: Supercharge your risk strategy
Chris Romeo shares five key ways to merge modeling with modern software supply chain security — and improve your software risk management in the process.
Ericka Chickowski
Freelance writer. Ericka Chickowski's award-winning writing on business and technology have appeared in dozens of trade and consumer magazines, including Entrepreneur, Consumers Digest, Channel Insider, CIO Insight, Dark Reading, DevOps.com and InformationWeek. She's made it her specialty to explain in plain English how technology trends affect real people.
Posts from Ericka Chickowski
Threat modeling and binary analysis: Supercharge your risk strategy
Threat modeling and binary analysis: Supercharge your risk strategy
Chris Romeo shares five key ways to merge modeling with modern software supply chain security — and improve your software risk management in the process.
‘Good, fast, cheap... Pick two’: Software quality dilemma forces risky decisions
When developing software there are three options: good, fast, and cheap. But you can only pick two. Here's what that reality means for commercial software risk.
Cybersecurity's workforce woes are a myth: 5 ways to rethink recruiting
Leaders say a cybersecurity talent shortage is a myth — instead, it's a plain old hiring and training gap. And the industry is making the problem worse.
Software complexity is a real problem — and your AppSec must factor that in
Software complexity causes many challenges. Here are the key problem areas — and how to overcome the hurdles with a modern supply chain security approach.
The state of DevSecOps: Why upgrading your AppSec tooling is essential
Here's what's holding DevSecOps back — and why modernizing your application security tooling is critical in the software supply chain security era.
Making SBOMs actionable: Why sharing is essential
Factors are converging to make sharing of software bills of materials a reality. Here are key concerns — and why data sharing is essential to their effectiveness.
Where GenAI intersects with threat modeling: 3 key benefits for AppSec
Generative AI can ease the burdens of threat modeling — and speed it up. But it's not a panacea. Here's what security teams can realistically expect.
When GenAI and low-code collide: What could go wrong for AppSec?
Here's why the duo results in a perfect storm, key considerations — and expert advice on how engineering and application security teams can tackle the problem.