Navigating the #FedRAMP authorization process? This whitepaper provides a comprehensive overview of the framework, key stakeholders, and the 5-step process for SaaS, PaaS, and I... https://get.anchore.com/unlocking-the-federal-market/ #FedRAMP #CloudSecurity #Compliance #GovTech #SecurityEngineering
The LinkedIn Bot That Tried to Pass the Turing Test (and Failed Spectacularly)
zerotohero.dev/inbox/the-li...
#AI #AgenticAI #Identity #ZeroTrust #SecurityEngineering #SignalVsNoise #SocialEngineering #BotDetection #AISafety
MCP is what makes “AI in the SOC” usable.
Not the model. The integration layer. Standard connections to tools and data with controls that security teams can live with.
Breakdown: graylog.org/post/what-is...
#MCP #SecurityEngineering
Read the full interview:
www.technadu.com/what-happens...
What’s your take - are organizations ready to treat identity and access as engineering problems instead of policy exercises?
#AgenticAI #IdentitySecurity #IAM #CloudSecurity #Automation #CyberRisk #SecurityEngineering #Governance
What if your network wanted to be secure? 🧵 In Episode 1 of "The Morphogenetic SOC," we’re using Michael Levin’s TAME framework to redefine cyber defense. #CyberSecurity #AI #zeroknowledge #evolutionaryalgorithms #agentic #SOC #securityengineering open.spotify.com/episode/4Pam...
Most Java input validation assumes ASCII-era rules.
Unicode breaks that assumption.
A deep dive into Unicode security:
• invisible characters
• homograph attacks
• BiDi overrides
• production-grade defenses in Quarkus
buff.ly/4sTgaBx
#Java #Quarkus #Unicode #SecurityEngineering #BackendDev
This guide is designed for real-world learning, not theory — using the same tools and workflows that professional penetration testers trust.
Read the full guide here: medium.com/the-first-di...
#Linux #SecurityEngineering
What’s your biggest AppSec bottleneck right now?
A) too many findings
B) low dev adoption
C) slow remediation / unclear ownership
D) tool sprawl
We cover what teams are doing to fix these in the Neo State of AppSec Report.
📥 projectdiscovery.io/whitepapers/...
#AppSec #SecurityEngineering
Disabling SSH keystroke obfuscation is debated. Some argue minimal security benefits in low-threat scenarios justify disabling for performance. Others warn against underestimating risks, emphasizing that context matters for secure configurations. #SecurityEngineering 3/6
Zero-Trust: The Paradox Behind the Cybersecurity Illusion
#ZeroTrust #CyberSecurity #AI #GPT #LLM #SecurityArchitecture #CTEM #InHouseSecurity #CyberRisk #Infosec #SecurityEngineering #TrustButVerify
vaptgpt.com
www.linkedin.com/pulse/zero-t...
Kom och jobba med mig!
@assuredab.bsky.social söker nytt blod. Bland annat en säljansvarig för #securityengineering #allthecybers #cra #nis2 #dora #sdlc
www.assured.se/sv/jobb/ledi...
Why is the SSE-Engineer role becoming one of the most sought-after jobs in cybersecurity?
🔐 Discover the factors driving its rapid rise in this article.
www.linkedin.com/pulse/rise-s...
#SSE #CyberSecurityJobs #SecurityEngineering #Infosec
If you manage open-source dependencies, this incident is a wake-up call. The real lessons are strategic: maintenance, ownership, and understanding the blast radius of every component you ship.
Read more: buff.ly/LSA5qfq
#ApplicationSecurity #HAProxy #VulnerabilityManagement #SecurityEngineering 🧵6/6
HAProxy’s team didn’t shrug this off. They owned the issue, explained the impact clearly, and forked the dependency to deliver a real fix. That level of transparency is rare—and appreciated.
#SecurityEngineering #DevSecOps #RiskManagement 🧵3/6
v0.13.0 expands audit capabilities with a dedicated UI for managing export jobs — schedule exports, filter logs, and send them to S3, GCS, Azure, or any S3-compatible backend.
→ buff.ly/mRxAYdl
#ModelContextProtocol #SecurityEngineering
While Ron Woerner's Canon review was of the 2008 2nd edition, Dr. Anderson has since released a 3rd edition just a few years ago.
🛍️ If interested in purchasing the book, please consider using our affiliate link: amzn.to/47NiFa4
#CybersecurityBooks #SecurityEngineering
Actions: upgrade Rancher to 2.12.2 / 2.11.6 / 2.10.10 / 2.9.12. Enforce allowlists for SAML params, shorten token TTLs, and train admins to verify login URLs. Review audit logs for suspicious re-auth flows. #SecurityEngineering #BlueTeam #IncidentResponse 🧵4/5
Exciting job opportunity at Ramp! We have a full-time Security Engineer | Cloud position available. Workplace: on-site in New York. Salary Range: $211,400 - $290,600 per year. #JobOpportunity #SecurityEngineering
🔐SSH and shell-free
🧱Immutable by default
🔁Trusted Boot out of the box
Because we believe security starts at the foundation. Here's what makes Talos Linux different.
🔗 www.siderolabs.com/blog/masteri...
#Kubernetes #TalosLinux #DevSecOps #CloudNative #SecurityEngineering
Tired of fragmented security tools? Learn to seamlessly integrate container security into your CI/CD. Our upcoming webinar shows you how to connect Anchore and DefectD... go.anchore.com/using-anchore-defectdojo... #DevSecOps #ContainerSecurity #AppSec #SecurityEngineering
Automation made us fast.
AI agents might make us fearless—or reckless.
In this deep-dive opinion piece, we explore how DevSecOps evolves when autonomous AI joins the team.
What gets better? What gets worse? Let’s talk.
#DevSecOps #AI #Automation #SecurityEngineering #TechLeadership #AIInSecurity
In a new blog, Proofpoint threat research engineers disclosed their detailed discovery of Amatera Stealer, a newly rebranded and upgraded malware-as-a-service (MaaS) version of the ACR Stealer.
Read the blog: brnw.ch/21wTvpI.
#securityengineering #detectionengineering #securitycontrols
Blast radius matters.
But most teams reduce it by narrowing perimeters—not by shifting control to where the risk actually is.
Want real resilience?
Push your controls closer to the data and decisions.
#SecurityEngineering #DataCentricSecurity
The role of GitHub MCP was also debated. Is it responsible, or just a tool exposing the API? Some suggest MCP could add security layers like better permission systems or clearer UI for access grants. #SecurityEngineering 6/6
Navigating the #FedRAMP authorization process? This whitepaper provides a comprehensive overview of the framework, key stakeholders, and the 5-step process for SaaS, PaaS, and I... https://get.anchore.com/unlocking-the-federal-market/ #FedRAMP #CloudSecurity #Compliance #GovTech #SecurityEngineering
Get hands-on with EKS security! Our upcoming webinar on May 20 with Bion Consulting provides a technical deep dive into Shift Right Security on EKS using Anchore. Shift Right? Ye... get.anchore.com/shift-right-security-for... #EKS #KubernetesTraining #SecurityEngineering #DevOps
Learning in public for reaaal!
Another golang project, now we're building security tooling in public. Just started this new project, i'll be posting on it more here!
#securityengineering #learninginpublic
O custo que não aparece no orçamento.
Participe do nosso acesso antecipado e veja como estamos resolvendo esse desafio: getup.io/en/lp/images
#DevSecOps, #SecurityEngineering, #CloudArchitecture, #PlatformEngineering, #SecurityCulture, #RiskManagement, #Compliance, #CloudGovernance
Are you passionate about cybersecurity, security engineering, and compliance? Join our team as a Cybersecurity & Security Engineering Specialist.
Apply now: bit.ly/42auLJ1
#CyberSecurityJobs #SecurityEngineering #TechCareers #ComplianceCareers #JobsinBromley
