Events & Webinars

Scale Threat Modeling with SD Elements

Does your organization need to rapidly develop secure and compliant products? Let us inspire you with a different approach to modeling software risk - one that tightly integrates with product workflow

Integrate Threat Modeling Into Your DevOps Pipelines

Historically, threat modeling consisted of manual threat analysis and a proposed list of prioritized mitigations. In DevOps, however, our teams emphasize rapid delivery and automation.  We find oursel

Using SD Elements to Comply with US Executive Order 14028 Secure Software Development Recommendations

Few software development life cycle (SDLC) models explicitly address software security in detail. As a result, secure software development practices usually need to be added in. Approaches can vary wi

Secure Software Development in the U.S. Government Agencies: Issues, Challenges and Next Steps

Executive Order 14028, Improving the Nation’s Cybersecurity, is focused on strengthening protections for critical software used by government agencies. It identifies key requirements designed to bette

Automating Threat Modeling with SD Elements to Achieve DevSecOps

Learn how SD Elements can help your organization mitigate cybersecurity risks and improve compliance across your software portfolio with automated threat modeling.

A Survey of DevSecOps and Continuous ATO in the Government Sector

Security Compass discusses governmental DevSecOps and Authority to Operate (ATO) challenges. Learn how to shift security left, and maintain speed and agility.

2021 State of Secure Development & ATO in U.S. Government Agencies

In this webinar, learn more about the current state of secure software development based on a recent study, “The State of Secure Development & ATO in U.S. Government Agencies 2021.” This study examine

Building Secure and Compliant Industrial Control System Software Faster

Manufacturers face pressure to secure increasingly complex operational technology systems against threats, manage compliance risks, and release secure products to market faster. Industrial control sys

2021 State of Cloud Adoption Report Key Findings & Recommendations for Improving Cloud Security

In this webinar, learn more about the current state of cloud adoption and security based on a recently released research study, “The State of Cloud Adoption in 2021.” This study examines the business

The Evolution of Threat Modeling and DevSecOps

Technology threat landscapes change rapidly, enterprises realize the value of integrating threat modeling with DevSecOps to protect systems better without hindering the speed brought about by DevOps.

Enabling Authority to Operate (ATO) in the U.S. Federal Government with SD Elements

Learn to Implement a cATO Architecture

Join us as we discuss the key concepts and components of a cATO architecture and walk through a use case of how the implementation works.

Obtaining ATO and cATO in the U.S. Federal Government: Software Security Best Practices & Lessons Learned

U.S. federal government agencies are under constant pressure to modernize their IT systems and consistently deliver applications faster.

Scaling Threat Modeling Beyond STRIDE and Data Flows

View our panel discussion as we discuss how threat modeling is evolving into a multi-stakeholder activity that suggests mitigations on an ongoing basis to drive down risk for critical business assets.

Managing Risk Where Hardware and DevOps Converge

Join us as we discuss how to successfully integrate firmware and software security into a system delivery model that produces secure systems and products.

Continuous Authorization with DevSecOps

This webinar will introduce you to the concept of continuous authorization and indicate how to achieve it.

DevSecOps Days

DevSecOps Days Toronto 2021, Hosted by Security Compass.

Security Concerns with Cloud Enablement

Security and risk practitioners play a key role in cloud adoption that enables business agility. Security engineers must see that all deployment artifacts conform to the unique attributes of cloud inf