AppSec Phoenix Principles

blog

AppSec Phoenix Principles

Mission

At Appsec Phoenix our mission is to Making Software security Smart and accessible to everyone in an organizations

The reason behind this mission comes from the frustration in application security and interaction between development and business whenever something needs to be fixed. Traditionally software security and communication with the target is complex and challenging and this comes down to friction between people in the business area and dev

We started this journey to make life easy for everyone in the business accelerating the speed of development and decision making and removing frustration and friction

Our Guiding Principles

CF – customer First

Customer view comes before everything. Serving customers is key. Making the customer feel valued and valued.

IO – Ideas backed by ownership

take ideas into action, own the ideas and showcase

EF – Execution First

Focus on execution, ideas without a plan and a roadmap are just thoughts

IF – Inclusion and Fairness

Everyone should have the equal opportunity

ODC – Open Doors Communication

When something does not work speak up

BL – Be a leader

Inspire, mentor and be a role model for others

BB – Have a backbone

When you believe something is right disagree and back the argument with data and communicate clearly action and a plan

DF – Data First

AppSec Phoenix is a data company and we encourage documentation of argument and backing them up with data

LBC – Learn and be curious

Carve out time to learn and explore

I wrote this blog to showcase our mission and the principles that guide them

Mission

At Appsec Phoenix our mission is to Making Software security Smart and accessible to everyone in an organizations

We started this journey to make life easy for everyone in the business accelerating the speed of development and decision making and removing frustration and friction

Our Guiding Principles

CF – customer First

Customer view comes before everything. Serving customers is key. Making the customer feel valued and valued.

IO – Ideas backed by ownership

take ideas into action, own the ideas and showcase

EF – Execution First

Focus on execution, ideas without a plan and a roadmap are just thoughts

IF – Inclusion and Fairness

Everyone should have the equal opportunity

ODC – Open Doors Communication

When something does not work speak up

BL – Be a leader

Inspire, mentor and be a role model for others

BB – Have a backbone

When you believe something is right disagree and back the argument with data and communicate clearly action and a plan

DF – Data First

AppSec Phoenix is a data company and we encourage documentation of argument and backing them up with data

LBC – Learn and be curious

Carve out time to learn and explore

More posts

News

News

Francesco Cipollone

Francesco is an internationally renowned public speaker, with multiple interviews in high-profile publications (eg. Forbes), and an author of numerous books and articles, who utilises his platform to evangelize the importance of Cloud security and cutting-edge technologies on a global scale.

1st October 2021

Discuss this blog with our community on Slack

Join our AppSec Phoenix community on Slack to discuss this blog and other news with our professional security team

From our Blog

Zero-Day Alert: Lace Tempest CVE-2023-47246 Vulnerability in SysAid Software Exploited by Ransomware Group

Critical Alert: Discover the implications of the Lace Tempest CVE-2023-47246 vulnerability in SysAid software, exploited by the notorious ransomware group TA505 also known as cl0p. Learn path traversal flaw, Microsoft’s insights, and urgent patching advice. Stay informed on the latest in cybersecurity with Phoenix Security’s insights and solutions for mitigating this high-impact ransomware threat. Focus on your vulnerability management program and application security program

Francesco Cipollone

What you need to know about Apache’s CVE-2023-46604 Exploit and Its Impact on Apache ActiveMQ

Explore the critical insights into Apache’s CVE-2023-46604 vulnerability. Learn how this exploit impacts Apache ActiveMQ and the best practices in vulnerability management to mitigate risks. Stay compliant with CISA KEV guidelines for your application security program

Francesco Cipollone

Unpacking Atlassian’s Confluence Vulnerability CVE-2023-22515 CVE-2023-22518 and Its Global Cybersecurity Implications

Discover the critical Atlassian Confluence vulnerability, CVE-2023-22518 and CVE-2023-22515, actively exploited by Storm-0062 (also recognized as DarkShadow or Oro0lxy) and added in CISA . Learn about the risks and the urgent patches needed to secure your systems for your vulnerability management and application security program

Francesco Cipollone

📣Phoenix Security Now Offers 150+ Integrations! 📣via API visualize your vulnerabilities with Cyber risk graph on enterprise-grade platform

Enhance your security posture with Phoenix Security’s Azure Integration. Featuring Azure Defender for Endpoint, Cloud, and DevOps, prioritize vulnerabilities and link to automated resolution actions. Part of 70+ integrations for end-to-end security.

Alfonso Eusebio

F5’s Big IP CVE-2023-46747 Critical Security Flaw: A Deep Dive into CVE-2023-46747 and Its Exploit Chain

Explore a deep dive into Cisco’s latest critical zero-day vulnerability affecting IOS XE software. Learn about CVE-2023-20198, its impact, and best practices in Cisco vulnerability management. Act now to safeguard your enterprise network with Phoenix Security

Francesco Cipollone

SolarWinds Faces SEC Lawsuit Over 2019 Cyberattack: A Deep Dive into the Charges and Lesson Learned

Explore the implications of the SEC’s lawsuit against SolarWinds for cybersecurity lapses and how Phoenix Security can help organizations align their cybersecurity posture with business goals. Learn about vulnerability management, risk-based decision-making, and setting targeted objectives to drive down risk.

Francesco Cipollone

blog