Posts by this author

Aug 24, 2023
Post comments count0
Post likes count2

Your Most Important Git Repos

What do you keep in your Git repos? Source code for your production applications certainly, but you probably also keep a fair amount of experimental and “hackathon” code. Maybe you keep your documentation in Git. Maybe, like the District of Columbia does, you even keep legal documents there. So which of these are the most important to protect? Fro...

Sep 16, 2021
Post comments count0
Post likes count1

You can’t have security for DevOps until you have DevOps for security

The faster we iterate on refining secure development practices, the faster our developers can address security pain points, and the better we protect our customers. In this post, Bryan Sullivan walks through key learnings from the 1ES Security team.

Jul 6, 2021
Post comments count1
Post likes count0

Separating the signal from the noise

If a security tool catches a critical vulnerability, but also reports 99 other findings that turn out to be false positives, developers are going to ignore everything that the tool reports and then miss the important issues. Bryan Sullivan talks through how you can hone your tooling to separate the signal from the noise.