Generative AI and Privacy
Generative AI and Privacy Read More »
Digital Transformation
Governance in the Era of AI: A Decision Maker’s Guide to Oversight
This guide helps Board Members and executives navigate AI governance and adoption within their organizations. AI offers transformative opportunities, but it also presents challenges that require strategic oversight and alignment with the company’s broader goals. Boards and senior leaders must ensure the CEO has a clear vision for AI adoption and that governance frameworks are
Governance in the Era of AI: A Decision Maker’s Guide to Oversight Read More »
The 2024 State of Secure Development & ATO in U.S. Government Agencies
In 2024, US government agencies at the federal, state, and local levels face escalating cybersecurity challenges as advanced threats become increasingly sophisticated. As AI increases the threat surface, agencies are moving quickly to expand the opportunity surface at an even greater rate through AI-enhanced cybersecurity strategies. The complexity and scale of threats necessitate continuous adaptation
The 2024 State of Secure Development & ATO in U.S. Government Agencies Read More »
Security Compass 2024 State of Security by Design and Threat Modeling
In today’s cybersecurity landscape, security by design is becoming a standard in software development. In this context, threat modeling plays a critical role in identifying, assessing, and mitigating potential security vulnerabilities in software systems as they are built. This report finds the majority of organizations that perform threat modeling do so from the design stage
Security Compass 2024 State of Security by Design and Threat Modeling Read More »
The Top 10 Privacy Considerations for Enterprises
This blog post explores the top 10 privacy insights from the TrustArc 2023 Global Privacy Benchmarks Study, focusing on privacy considerations for professionals.
The Top 10 Privacy Considerations for Enterprises Read More »
Cybersecure Software Development: Management Views on AI
This research was commissioned by Security Compass and conducted by Golfdale Consulting, Inc. It explores the view of managers and executives overseeing cybersecurity and software development in large companies that build software. It explores their views on the use of AI in software development and as integrated components of their digital products.
Cybersecure Software Development: Management Views on AI Read More »
2022 Year in Review – Interactive Report of Annual Research Findings on Cybersecurity
What follows are highlights from primary research studies Security Compass commissioned in 2022 on topics in cybersecurity, covering Developer Perspectives on Application Development, DevSecOps Perspectives on AppSec Training, and Application Security in the Mid-Market.
The research was conducted independently by Golfdale Consulting, Inc.
2022 Year in Review – Interactive Report of Annual Research Findings on Cybersecurity Read More »
2022 DevSecOps Perspectives on AppSec Training
Given the importance that eLearning plays in developing secure software, this ebook provides an overview of our research into AppSec training approaches. Findings include “deep dives” into budgeting, training challenges, time consuming elements, how best to reinforce AppSec eLearning, and the value of accreditation to individual contributors, managers, and organizations.
2022 DevSecOps Perspectives on AppSec Training Read More »
2022 Developer Perspectives on Application Security
Most developers involved in product builds believe their companies to have a mature security posture but nonetheless struggle to keep up to date with growing regulations and compliance requirements. On the cybersecurity front, developers view automated modeling, integration with other tools, and matching the speed of new threats that emerge as all highly important. Security must start with design and remain a critical element at each stage of the SDLC.
2022 Developer Perspectives on Application Security Read More »