Security Compass Blog

Cloud adoption has gone mainstream. Taking full advantage of the benefits takes planning, skill, and a careful weighing of cloud security risks.

Securing a hybrid cloud environment can be challenging, but these best practices will help businesses minimize risk while taking advantage of the benefits.

As more organizations adopt AWS services, penetration testing is critical for designing, securing, reviewing, and improving your cloud infrastructure.

Digital transformation is at the heart of the changing landscape in the insurance space, however, insurers must consider the risk implications of any change.

Our consulting team performed an evaluation of the Android version of Canada’s COVID alert app to evaluate data privacy and security concerns.

DevOps teams are always under tremendous pressure to release products faster while integrating security. How can they achieve these goals?

Security teams add immense value to the overall business, however, they’re often unable to communicate their value in terms of growth and profitability. Read on to learn how you can achieve this.

Building security into a bank’s digital transformation plan enables financial institutions to move at the speed of business and prevent setbacks from data breaches.

Many security teams still use data flow diagrams to build security into applications. But, is that the right threat modeling approach for security?

One of the biggest challenges that remain in DevSecOps today is alignment between teams. Read how scenario planning can help overcome this challenge.

We're witnessing how new business models are enabling both software delivery speed and risk management. Learn why your organization needs this shift.

Considering the current talent shortage, the cybersecurity workforce needs to grow by 145 percent as per recent research. Can automation help the industry?

Cloud migrations come with a lot of benefits; making some people think their customer data is secure in the cloud environment. However, threats are always evolving.

As different countries get mixed results from contact tracing apps, would it be worth exploring a mandatory contact tracing program? Let's find out.

Due to the COVID-19 pandemic, a lot of people have had to take up new roles or switch over for better opportunities. If you're also considering a change, read on.

Organizations are considering cybersecurity budget cuts to save costs during the current slowdown. Read why that might not be the best strategy right now.

We consistently talk about using DevSecOps to improve collaboration and deployment speed, but what about adding intelligence to our DevSecOps pipelines?