Bridget Farrell

Category //

Bridget Farrell

Microservices

This is a software architecture where the business application is broken down into self contained business services so that each microservice is independently deployable e.g. payment service, user registration, etc.

Read More »

Lambda Function

Function as a Service (Faas) is the idea of running your application code via a serverless architecture and is event driven. Your application code is deployed and executed on a platform hosted and managed by the cloud provider. In the

Read More »

Kubernetes (K8s)

Kubernetes is a portable, extensible, open-source platform for managing containerized workloads and services, that facilitates both declarative configuration and automation. It has a large, rapidly growing ecosystem. Kubernetes services, support, and tools are widely available. The name Kubernetes originates from

Read More »

KICS

The Checkmarx infrastructure-as-code engine (aptly named KICS for Keeping Infrastructure as Code Secure) finds security vulnerabilities, compliance issues, and infrastructure misconfigurations in following Infrastructure as Code technologies: Terraform, Kubernetes, Docker, AWS CloudFormation, and Ansible. As the engine is capable of

Read More »

Infrastructure-as-Code (IaC)

Infrastructure as Code is the process of provisioning and configuring an environment through code instead of manually setting up the required devices and systems. Once code parameters are defined, developers run scripts, and the IaC platform builds the cloud infrastructure

Read More »

Integrated Development Environment (IDE)

Integrated Development Environment (IDE) is a software application that combines all of the features and tools needed by a software developer. It’s graphical in nature, meaning that it uses windows and controls like buttons to display information and accept input from

Read More »

Function as a service

FaaS is a cloud computing model that lets you run and manage application functions without managing a traditional server as the application’s backend—giving rise to the nomenclature “serverless.” The functions typically respond to events, making FaaS a useful method of

Read More »

False Negative

A false negative, in the context of security testing, is a result which HAS NOT been highlighted by a security tool but the vulnerability does exist.

Read More »

False Positive

A false positive, in the context of security testing, is a result highlighted by a security tool but in fact it DOES NOT.

Read More »

Engine

A Checkmarx engine is where the magic happens (it’s also where a large part of our secret sauce resides). An engine could refer to any of the following products: CxSAST – A CxSAST engine is the part of the system

Read More »
Skip to content