Blog

Jemurai's Digital Stream of Consciousness

September securityprogram.io Update

Security Cloud security Spio September 04, 2019

As many of you know, we’ve been working hard on our security platform at https://securityprogram.io. This post provides a periodic update around what is going on with the product.

Read More
Using Github Pull Request Templates and Checks to Implement Security Checklists

Security Cloud security August 15, 2019

This blog post will show one way to build security checklists into your code review and pull request flows in GitHub.

Read More
Ginkgo for BDD Infrastructure Security Testing

Security Cloud security July 29, 2019

Recently I’ve been working on a series of unit tests in Ginkgo (a popular BDD testing framework for Golang) and thought it might make for an interesting point of reference.

Read More
The Not Insecure Podcast

Security Cloud security July 14, 2019

Folks on the Jemurai team recently started a podcast in which they talk about security, and some of the challenges of building a secure security product! We thought it would be clever to call it Not Insecure.

Read More
Vendor Management

Security Cloud security June 17, 2019

This post talks about the do’s and don’ts of implementing a vendor management program.

Read More
Jemurai and OSS

Security Cloud security Open source software June 05, 2019

Today we added a section to our website to highlight open source software that we have been working on.

Read More
Update on SecurityProgram.io

Security Cloud security May 30, 2019

In late March we announced our new offering securityprogram.io. In this post we want to provide an update around what we’ve been working on through May and how it works.

Read More
User Auditing with GAA

Security Cloud security May 10, 2019

If you read the story about Samsung exposing SmartThings and AWS keys in code, which I came across through a Philippe De Ryck twitter post this AM, you might wonder how on earth those repositories came to be public. It turns out, that’s not that uncommon - and we wrote an open source tool to help clients work through this issue. This post introduces the tool and approach.

Read More
Encrypting Large Files

Security Cloud security April 23, 2019

We have a client that is doing interesting data science that depends on processing very large files (100GB) that are also transferred between parties.

Read More
Package managers

Security Cloud security April 17, 2019

Over the past few weeks we’ve been talking a lot internally at Jemurai about how package managers and the code repositories we use (often what people think of as open source) affect our security.

Read More

← Newer posts 2 of 8 Older posts →

Blog

Want to stay up to date with the lastest from Jemurai?