Products
Contrast Runtime Security Platform

Contrast Protect (RASP)

Contrast Assess (IAST)

Contrast Scan (SAST)

Contrast Software Composition Analysis (SCA)
Developer Central

Log4j Response

Pricing

How We Compare

Languages

Integrations
Solutions
BY USE CASE

Why IAST?

DevSecOps

Automated Penetration Testing

AppSec Monitoring

API Security

Software Supply Chain Security

Runtime Protection

Software Bills of Materials (SBOMs)

GitHub CI/CD

Compliance Testing

Services

BY DEPARTMENT

Dev and DevOps Teams

Security

DevSecOps

CISO

BY INDUSTRY

Government

Financial Services

Healthcare

Others
Partner
Technology Partners

Systems Integrators

Ecosystem Integrations

Managed Security Services Providers

Channel Partners Overview

Cloud Partners

GitHub
Partner Program Overview

Become a Partner

Find a Partner

Visit Partner Portal
GITHUB ACTIONS BLOG SERIES, PART 1: PIPELINE NATIVE CODE ANALYSIS

Read the Blog
Customers
Company
About Us

Leadership Team

Culture & Careers

Women of Contrast

Contact Us
Blog

Events & Webinars

Newsroom

Podcast

Awards
Contrast Security recognized as a Visionary by Gartner in Application Security Testing.

Learn More
Resources
Contrast for Developers

Contrast Secure Code Learn Hub

Contrast Community

Resource Center

OWASP Top 10

Accountability & Transparency

SBOMs

ContrastLive

Support

Services

Trust Center

Documentation

Product Release Notes

Blog

Podcast

Events

Glossary
Contrast Incident Response Hub

Spring4Shell Vulnerability

Log4j Vulnerability

Weekly CISO Update

Trust Center
Developers

Insights from a CISO: Compliance & Application Security

September 15, 2016

Contrast interviews folks who are "Security Influencer's" and then shares their knowledge via online media. We see Security Influencers as thought leaders and security experts who provide real-world insight and “in-the-trenches” experience on topics ranging from application and information security to DevOps and risk management.

Listen in on a conversation between Jeff Williams, Contrast Security CTO and Rich Licato, CISO, Airlines Reporting Corporation (ARC) as they discuss topics regarding risk and compliance as essential components of an overall cyber security program.

Rich.Licato.jpg Rich’s extensive background includes over 20 years of security experience spanning IT security risk and compliance, operational enterprise and risk management to systems development. Rich and Jeff will:

Dispel the negative notion that compliance should be used as a "hammer" to get work done
Share the frameworks and infrastructures used at ARC
Provide insight into activities that create an effective application security program

Interested in hearing more from other "Security Influencers"?
We have a full line up of interviews available here.
Or subscribe to our blog (form to the left) for weekly updates delivered in you inbox.

Thought Leaders

Contrast Marketing

IAST & the Villainous Library Named "commons-httpclient-3.1.jar"

How Can Devs Keep Up with the Library Security Devil?

BY USE CASE

BY DEPARTMENT

BY INDUSTRY

GITHUB ACTIONS BLOG SERIES, PART 1: PIPELINE NATIVE CODE ANALYSIS

Contrast Security recognized as a Visionary by Gartner in Application Security Testing.

Contrast Incident Response Hub

Insights from a CISO: Compliance & Application Security

Contrast Marketing

Loving our content? Subscribe now!