My article written for security executives explaining the critical role of automated testing for long term application security is published! Those who have known and work with me know this topic has been close to my heart for while now. Most organizations are not mature enough to be able to patch within hours. However, we can do a lot better as a industry on proactive security in web app software.
Read the article for yourself at How to win the race with hackers when new vulnerabilities are publicly disclosed! (grcoutlook.com).
While the purpose of writing for GRC Outlook was not primarily meant to be promotional for our business, I do want to say I am very proud of the work my team and I have done over the years with our long term web application support clients. We have taken on dozens of applications written by teams who are long gone. These in-production applications were written in different languages and different generations of those languages. We have invested heavily in Docker, CI/CD, and other technologies that have let us patch dozens of applications for many clients in four hours of less. This is far and above beyond the industry norms at this time. If this capability sounds interesting to you, let’s talk. Larger companies can and should be able to do this in house.