Opinion

Opinion

Software development tools

• Europe’s cyber security strategy must be clear about open source

  Europe’s cyber security policy on open source is lagging behind the US, and despite growing government awareness of the issues, that poses a problem  Continue Reading

• Gartner: Three key tasks needed to decommission applications

  A guide to slimming down a full portfolio of applications that are expensive to maintain and difficult to adapt to business needs  Continue Reading

• Reducing the cyber stack with API security

  Budgets are tight, making it difficult to secure spend, but is there an argument for jettisoning fragmented approaches to securing APIs in favour of a dedicated end-to-end approach? Doubling down on API security could help businesses not just reduce...  Continue Reading

• Three ways that APIs can fail

  It’s all very well having an API strategy, but software teams need to be ready for when things start going wrong  Continue Reading

• Security Think Tank: Three steps to a solid DevSecOps strategy

  Read about how buyers can manage third-party risk when procuring applications, how to secure the software development process, and even how to affect cultural change among developers not used to thinking cyber first  Continue Reading

• It’s time for engineering teams to own DevSecOps

  It may seem counterintuitive, but maybe organisations should consider delegating responsibility for DevSecOps to engineering teams, not security teams, argues Elastic’s Mandy Andress  Continue Reading

• Security Think Tank: Adding trust to AppSec and DevSecOps

  When building in trust and assurance into app development through standards, it is critically important not to stifle innovation  Continue Reading

• Security Think Tank: Creating a DevSecOps-friendly cyber strategy

  When slowing down is not an option, you need to find a security strategy that is DevSecOps friendly, says Airbus Protect’s Olivier Allaire  Continue Reading

• Security Think Tank: The many dimensions of DevSecOps

  It is imperative to make our colleagues and customers know that when we talk DevSecOps, we are facing a multiphase challenge that starts at the very beginning of DevOps, and one that never ends  Continue Reading

• Security Think Tank: Shift left, shift right. What about shift everywhere?

  The concepts of shift left and shift right are highly effective in securing the development process, but for those who want to take things that step further there is shift everywhere  Continue Reading

• Security Think Tank: Effective DevSecOps requires collaboration

  Application security and effective DevSecOps can only be achieved through collaboration with the business – the ultimate goal is to make it safer to do business, which requires considering integrated risk management and identity and access ...  Continue Reading

• The evolution of threat modelling as a DevSecOps practice

  Threat modelling is becoming ever more integrated into software architecture design. Here, Stephen de Vries of IriusRisk looks at the evolution of the process  Continue Reading

• Naivety of computer evidence leaves door ajar for more miscarriages of justice

  Barrister Paul Marshall explains why the government’s lack of action on reforming the legal rules around computer evidence, which presume it is correct, mean the Post Office Horizon scandal could be the tip of a miscarriages of justice iceberg  Continue Reading

• Building distributed systems requires effective developer teams

  Technologies edge computing and containerisation call for teams capable of building distributed systems  Continue Reading

• Cloud enterprise applications need great developer tools too

  Developer and quality assurance tools play an important role in safeguarding cloud enterprise applications from disruption  Continue Reading

• A trial relying on computer evidence should start with a trial of the computer evidence

  Learning from the Post Office Horizon scandal - the most widespread miscarriage of justice in recent British legal history  Continue Reading

• Security Think Tank: In the cloud, anti-human approaches set us up to fail

  Security learning is a career-long process, so as 2021 draws to a close, participants in the Computer Weekly Security Think Tank sum up the most important cyber lessons they’ve taken away from the past 12 months  Continue Reading

• How software development will change in 2022

  Businesses need a pipeline of software-enabled functionality that has to be delivered quickly and reliably without overworking software teams  Continue Reading

• How to prevent developer burnout

  The pandemic has led to more pressure on software developers, many of whom have reported increased levels of stress and anxiety  Continue Reading

• Five tips to bridge application management service gaps

  The watermelon effect is defined in the ITIL 4 Foundation guide as a breakage between the SLA client wants and what the service provider delivers  Continue Reading

• Basel III: How fintech can provide allocated gold for banks

  Banking rules that were over 10 years in the making as a response to the financial crisis have finally come into effect, marking a seismic shift for European banks and their dealings with gold – potentially completely altering the landscape of ...  Continue Reading

• Can a web app ever be truly secure?

  Despite the wealth of vulnerability detection tools and practices, there remains a vast array of web application security breaches  Continue Reading

• Python @ 30: Praising the versatility of Python

  Python recently celebrated its 30th birthday, and pioneers of the language have been reflecting on its significance as an open source project  Continue Reading

• Driving innovation in government

  An insider's perspective on the organisation, culture and methods used to drive innovation in the Department for Work and Pensions  Continue Reading

• Five myths of DevOps in the enterprise

  While we might all be familiar with the term, what has become abundantly clear is that what we call ‘DevOps’ can vary greatly  Continue Reading

• Why automation isn’t always an improvement

  Automation can help organisations run more efficiently, but only if the most inefficient steps in a business process are fixed first  Continue Reading

• From compliance to open banking to embedded finance – all thanks to APIs

  The road to embedded finance, banking and insurance with APIs is full of promise – and banks should take it for a journey to a better world of finance  Continue Reading

• Exploring the future of modern software development

  What tools, programming languages and architectures, defines modern software development  Continue Reading

• How to modernise IT systems while ensuring they remain stable

  Organisations need to be both agile and maintain control and stability of their IT. How can they achieve both outcomes?  Continue Reading

• A beginner’s guide to quantum computer programming

  Quantum computing takes a radically different approach to programming. IBM’s education head discusses how to get started  Continue Reading

• How CI/CD helps digital organisations

  Developments in technology have transformed IT management practices. We discuss the management implications of using CI/CD to drive digitisation initiatives  Continue Reading

• The five software testing techniques every software developer should know about

  Five simple testing techniques that will help developers test their software systematically, thoroughly and quickly  Continue Reading

• The winter of AI discontent – thoughts on trends in tech ethics

  All organisations need to consider the ethics of their technology use, especially as artificial intelligence tools become more mainstream  Continue Reading

• Feudal Lords and anarchic allies – the new models for software collaboration

  Software developers often take an unconventional view of contracts for the work they undertake, which can come back and bite them  Continue Reading

• Are SAP’s indirect use charges legal?

  The German legal system is examining whether SAP can legitimately charge for indirect access to its software from a third-party application  Continue Reading

• The lesson of TSB – testing, 1, 2, 3

  An organisation’s IT system might look good on the surface, but you can’t fix a problem if you don’t know it’s there  Continue Reading

• Will the EU Copyright Directive ‘break the internet’?

  A new European Union law proposed for copyrighted material has provoked strong reactions from all sides – but what does it mean?  Continue Reading

• The challenge of our era - digital transformation at Allianz

  The insurance firm wants to become "digital by default" and its CIO explains the vital role DevOps and cloud play in its change programme  Continue Reading

• Beware of Oracle’s developer Trojan Horse

  The Oracle Technology Network allows developers to prototype applications for free, but there is a catch when it is time to deploy  Continue Reading

• Was that it? Business as usual for fintechs after Brexit vote

  Following the Brexit vote, Fintech Times editor Bird Lovegod describes how financial services IT startups are getting on with business as usual  Continue Reading

• Searching for the signal of open standards amid the growing noise of agile

  For all its undeniable strengths, the use of agile in government is in danger of becoming a fetish  Continue Reading

• User acceptance testing needs real training, not just a short course

  In spite of its importance, user acceptance testing (UAT) is often chaotic, problematic and ineffective  Continue Reading

• The Great Deverticalisation - part 4: The role of the private sector

  Why do we persist in running vertically integrated organisations when standardising many of these processes would free us up to do things so much better, and more cheaply?  Continue Reading

• Open standards are about the business model, not the technology

  Software companies, abuzz with lobbyists and patent lawyers over government open standards, are similar to the record industry 10 years ago.  Continue Reading