Posts by Felipe Ruiz

Learn what vulnerability assessment is, why this IT systems evaluation process is important, what types exist, and how it relates to vulnerability management.

We briefly present the amendments to cybersecurity-related disclosure rules proposed by the SEC, their potential benefits and costs, and some recommendations.

We present a short review of a study in which the authors suggest an approach to introduce and encourage software developers to use secure coding practices.

Discover what is usually seen as code quality, why we believe this concept should include security and some recommendations to develop high-quality code.

In this blog post, we present some differences between automated and manual code reviews and emphasize the latter and the procedures performed by the reviewers.

Check out some best practices for secure coding your developers can start applying and how our Secure Code Review can complement them.

This blog post explains the "attack surface management" and "attack resistance management" concepts and our transition from one to the other.

Thanks to this blog post, you will get an idea of possible threats and preventive measures that will take place in the cybersecurity context in 2023.

After reading this blog post, you will understand what Software Composition Analysis (SCA) is and what we can obtain from SCA scans.