Joe Coletta, Product Advertising and marketing Supervisor, Distinction Safety
Joe Coletta is a Sr. Product Advertising and marketing Supervisor at Distinction Safety specializing in Open Supply Safety. Getting into the AppSec discipline as a Safety Program Supervisor, Joe has consulted dozens of organizations of various sizes on how one can work cross-functionally as a way to scale their utility safety packages. Making use of this frontline data to a product advertising and marketing profession, Joe develops go-to-market assets that seize the voice of AppSec practitioners in each Safety and Growth. On a private be aware, Joe divvies his free time between studying, drawing, and Brazilian Jiu Jitsu
Subscribe to the Distinction Weblog
By subscribing to our weblog you’ll keep on high of all the most recent appsec information and devops greatest practices. Additionally, you will be told of the most recent Distinction product information and thrilling utility safety occasions.
Due to the ubiquity of client-side code in trendy net purposes, safety protection is a rising concern for DevSecOps organizations that need to ensure their utility stack is safe, from client-side all the way in which to server-side code.
Traditionally, SAST scanners have had a tough time adapting to trendy growth pipelines. That is largely attributable to the truth that they have been designed to behave as a safety gate inside waterfall environments. In an try to search out each conceivable vulnerability, many SAST instruments at this time are nonetheless ruled by the identical antiquated SAST guidelines and scanning algorithms from 20 years in the past. The top result’s normally an inventory of false positives that may quantity within the a whole lot, if not 1000’s — not a good way to advertise developer adoption.
Determine 2: Distinction Scan is as much as 81% extra correct than a few of the main industrial SAST instruments
Determine 3: Distinction Scan finds almost twice as many important & high-severity, client-side vulnerabilities as Snyk
See for your self with CodeSec
For extra info on how one can get began with CodeSec, go to Developer Central for a step-by-step information.
For extra info on how one can scale pipeline-native SAST throughout your enterprise, click on here to schedule a demo of Distinction Scan with certainly one of our specialists.