https://securedelivery.io/tags/secure-engineering/Recent content in Secure Engineering on Secure DeliveryHugo -- gohugo.ioen-usWed, 05 Jan 2022 07:53:43 +0000https://securedelivery.io/workshops/secure-coding-techniques-and-practices/Wed, 05 Jan 2022 07:53:43 +0000https://securedelivery.io/workshops/secure-coding-techniques-and-practices/Security defects in code are the largest contributor to security vulnerabilities in software systems. A NIST study in 2016 established that a programming defect was the root cause of 73% of all reported software system vulnerabilities tracked in the CVE database from 2008-2016. Everyone who is hands-on with code at your organisation must know how to program securely to avoid the mistakes that we see over and over again at organisations around the world.https://securedelivery.io/workshops/secure-by-design-with-agile-threat-modelling/Tue, 04 Jan 2022 21:53:43 +0000https://securedelivery.io/workshops/secure-by-design-with-agile-threat-modelling/Threat modelling is an essential part of building secure systems. The United States’ Executive Order 14028 to improve the nation’s cybersecurity mandates threat modeling as part of the minimum standard for verification. OWASP’s Top 10:2021 puts Insecure Design at number 4 of the top 10 risks to businesses. To scale threat modelling to cover your whole organisation you must put the capability into the hands of of your product development teams.