https://www.thatsjet.com/blog/ Recent content in Blogs on That's Jet! Hugo -- gohugo.io en-us Mon, 05 Mar 2018 01:00:00 +0000 https://www.thatsjet.com/blog/blog-jet-shift-left-education/ Mon, 05 Mar 2018 01:00:00 +0000 https://www.thatsjet.com/blog/blog-jet-shift-left-education/ I spend a lot of time thinking about how to get application security testing further left in the SDLC, especially for open source vulnerabilities. Of course, starting with DevSecOps or as some would call it “Just good DevOps” means you’ll scan early and often, fix critical defects fast, and embed security checks into continuous-integration pipelines. And yet, as much as we see companies moving this direction I see another way we can move even further left: https://www.thatsjet.com/blog/moving-blog-posting-again-rsa-coming/ Sat, 10 Feb 2018 15:42:56 -0800 https://www.thatsjet.com/blog/moving-blog-posting-again-rsa-coming/ Hi there! If you’ve been to my blog before you’ll notice some content missing. I’ll likely re-release some old content, but for now I’m starting from scratch as I move my blog from a Ghost blog, to Hugo static site. It’s versioned in GitHub, deployed with Travis, and the static content lives in S3 and fronted by CloudFront and the domain is in Route53. https://www.thatsjet.com/blog/2016/05/02/securing-the-sdlc/ Mon, 02 May 2016 01:00:00 +0000 https://www.thatsjet.com/blog/2016/05/02/securing-the-sdlc/ I had the opportunity to speak last week at my local ISSA chapter on the topic of Securing the Software Development Lifecycle. Given the interest it generated among the attendees I realized that this is a topic for MUCH further discussion worthy of at least a few blog posts on thatsjet.com. Today’s post is just a high level introduction, hitting the high points of my talk and in the coming weeks I’ll be writing a few follow up posts with greater detail around the finer points.