Why More Isn't Better When It Comes to AppSec and Why Less Is Better
Cybersecurity adheres to the belief that the more results you can generate, the better your security model. This is certainly true in the application security space, where the more alerts that are generated, the better an organization's security posture. But this isn't necessarily true. In this Inside AppSec Podcast interview, Contrast's Chief Scientist and Co-founder Arshan Dabirsiaghi and Head of Product Marketing Mahesh Babu discuss why this belief is so firmly entrenched in the application security space and why less is actually more. The interview also touches on Contrast's pipeline-native static analysis tool (Contrast Scan) and how it turns legacy static scanning models on their head to produce faster scan results and dramatically greater accuracy with significant improvements in operational efficiency.Blog Posts:MODERN PROBLEMS: TRADITIONAL SECURITY SCANNING WASN’T BUILT FOR TODAY’S PIPELINES https://www.contrastsecurity.com/security-influencers/modern-problems-traditional-security-scanning-wasnt-built-for-todays-pipelinesCONTRAST ANNOUNCES THE FIRST BREAKTHROUGH IN SAST IN 15 YEARS https://www.contrastsecurity.com/security-influencers/contrast-announces-the-first-breakthrough-in-sast-in-15-yearsWhite Paper: WHITE PAPER: PIPELINE-NATIVE SCANNING FOR MODERN APPLICATION DEVELOPMENT https://www.contrastsecurity.com/whitepaper-pipeline-native-scanning-modern-application