<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Security Engineering on CybersecurityOS</title><link>http://www.cybersecurityos.net/categories/security-engineering/</link><description>Recent content in Security Engineering on CybersecurityOS</description><generator>Hugo</generator><language>en-us</language><lastBuildDate>Wed, 08 Jul 2026 17:19:19 -0500</lastBuildDate><atom:link href="http://www.cybersecurityos.net/categories/security-engineering/index.xml" rel="self" type="application/rss+xml"/><item><title>AWS Security Agent: Continuous Penetration Testing and Threat Modeling for the AI Development Era</title><link>http://www.cybersecurityos.net/posts/os-weekly/aws-security-agent-overview/</link><pubDate>Thu, 25 Jun 2026 00:00:00 +0000</pubDate><guid>http://www.cybersecurityos.net/posts/os-weekly/aws-security-agent-overview/</guid><description>&lt;p&gt;Most security programs are still built around a calendar, not a codebase. A pen test gets scheduled once or twice a year. A design review happens at a milestone meeting. By the time either one produces a finding, the application it was testing has already shipped four more releases.&lt;/p&gt;
&lt;p&gt;That mismatch isn&amp;rsquo;t a staffing problem — it&amp;rsquo;s a structural one. AWS&amp;rsquo;s own teams have pointed out that &lt;a href="https://aws.amazon.com/blogs/aws/new-aws-security-agent-secures-applications-proactively-from-design-to-deployment-preview/"&gt;more than 60% of organizations update their web applications weekly or more often, while nearly 75% test those same applications only monthly or less&lt;/a&gt;. Manual review simply can&amp;rsquo;t move at the speed code ships. &lt;strong&gt;AWS Security Agent&lt;/strong&gt; is AWS&amp;rsquo;s answer to that gap — and it&amp;rsquo;s worth understanding regardless of which cloud you run on, because the underlying shift it represents is bigger than one vendor&amp;rsquo;s product.&lt;/p&gt;</description></item><item><title>Threat Modeling in Plain English: A Guide for Engineering Teams</title><link>http://www.cybersecurityos.net/posts/os-weekly/threat-modeling-plain-english-engineering-teams/</link><pubDate>Sun, 31 May 2026 00:00:00 +0000</pubDate><guid>http://www.cybersecurityos.net/posts/os-weekly/threat-modeling-plain-english-engineering-teams/</guid><description>&lt;p&gt;Most engineering teams know they &lt;em&gt;should&lt;/em&gt; be doing threat modeling.&lt;/p&gt;
&lt;p&gt;Very few actually do it — and the ones who try often produce a document that gets filed away and never looked at again.&lt;/p&gt;
&lt;p&gt;The problem isn&amp;rsquo;t motivation. It&amp;rsquo;s that almost every guide to threat modeling is written for security teams, not engineering teams. The language is wrong. The framing is wrong. The process feels like a compliance exercise instead of something that makes the software actually harder to attack.&lt;/p&gt;</description></item><item><title>SPECTRA: AI-Powered Vulnerability Triage That Actually Works for Security Teams</title><link>http://www.cybersecurityos.net/posts/os-weekly/spectra-overview-claude-ai-security/</link><pubDate>Sun, 10 May 2026 00:00:00 +0000</pubDate><guid>http://www.cybersecurityos.net/posts/os-weekly/spectra-overview-claude-ai-security/</guid><description>&lt;p&gt;Security teams are not losing the fight because of bad tools. They&amp;rsquo;re losing it because of volume.&lt;/p&gt;
&lt;p&gt;In 2025, &lt;a href="https://securityboulevard.com/2026/03/46-vulnerability-statistics-2026-key-trends-in-discovery-exploitation-and-risk/"&gt;131 new CVEs were disclosed every single day&lt;/a&gt; — up from 113 per day the year prior. Meanwhile, the &lt;a href="https://www.isc2.org/Insights/2025/12/2025-ISC2-Cybersecurity-Workforce-Study"&gt;global cybersecurity workforce gap has reached 4.8 million unfilled positions&lt;/a&gt;, and &lt;a href="https://deepstrike.io/blog/cybersecurity-skills-gap"&gt;budget cuts — not lack of talent — are now the primary driver of security team understaffing&lt;/a&gt;. The signal is buried in the noise, and analysts spend more hours normalizing scanner outputs and writing summaries than actually remediating risk.&lt;/p&gt;</description></item><item><title>Top 5 Claude AI Use Cases for Startup Cybersecurity Teams in 2026</title><link>http://www.cybersecurityos.net/posts/os-weekly/claude-ai-use-cases-startup-cybersecurity-2026/</link><pubDate>Sat, 25 Apr 2026 00:00:00 +0000</pubDate><guid>http://www.cybersecurityos.net/posts/os-weekly/claude-ai-use-cases-startup-cybersecurity-2026/</guid><description>&lt;p&gt;The cybersecurity landscape shifted dramatically in 2026. With the launch of &lt;a href="https://www.anthropic.com/news/claude-code-security"&gt;Claude Code Security&lt;/a&gt; in February and the subsequent release of &lt;a href="https://www.anthropic.com/glasswing"&gt;Claude Mythos Preview&lt;/a&gt; through Project Glasswing, AI-powered security is no longer a luxury reserved for enterprise teams with eight-figure budgets.&lt;/p&gt;
&lt;p&gt;For startup security teams — often a single overworked engineer or a small group managing compliance, code review, vendor risk, and incident response simultaneously — Claude has become a genuine force multiplier. But the internet is full of surface-level takes on &amp;ldquo;AI for security.&amp;rdquo; This isn&amp;rsquo;t that.&lt;/p&gt;</description></item><item><title>Building a Secure DevSecOps Pipeline: Deploying to Amazon ECR with GitHub Actions and Trivy</title><link>http://www.cybersecurityos.net/posts/devsecops/container-security-pipeline/</link><pubDate>Tue, 03 Dec 2024 00:00:00 +0000</pubDate><guid>http://www.cybersecurityos.net/posts/devsecops/container-security-pipeline/</guid><description>&lt;p&gt;In today’s rapidly evolving tech landscape, incorporating security into every step of the development lifecycle is essential. &lt;a href="https://owasp.org/www-project-devsecops/"&gt;DevSecOps&lt;/a&gt; ensures that security is baked into the process, not bolted on afterward.&lt;/p&gt;
&lt;p&gt;This blog post will walk you through setting up a secure &lt;a href="https://aws.amazon.com/devops/continuous-delivery/"&gt;CI/CD pipeline&lt;/a&gt; to deploy a container image to &lt;a href="https://docs.aws.amazon.com/AmazonECR/latest/userguide/what-is-ecr.html"&gt;Amazon Elastic Container Registry (ECR)&lt;/a&gt; using &lt;a href="https://docs.github.com/en/actions"&gt;GitHub Actions&lt;/a&gt;, with vulnerability scanning using &lt;a href="https://aquasecurity.github.io/trivy/"&gt;Trivy&lt;/a&gt;.&lt;/p&gt;
&lt;p&gt;By the end of this guide, you’ll have a secure, automated workflow that builds, scans, and pushes your container images to ECR.&lt;/p&gt;</description></item><item><title>Turbocharge Your Container Security with NVIDIA's NIM Agent Blueprint</title><link>http://www.cybersecurityos.net/posts/ai-devsecops/nvidia-container-security/</link><pubDate>Thu, 17 Oct 2024 23:29:07 -0500</pubDate><guid>http://www.cybersecurityos.net/posts/ai-devsecops/nvidia-container-security/</guid><description>&lt;p&gt;Let’s be real—cybersecurity is getting crazier by the day. The number of vulnerabilities out there is skyrocketing, and keeping up with them is like playing whack-a-mole on expert level. By the end of 2023, the CVE database was pushing past 200K reported vulnerabilities. Now, imagine trying to sift through hundreds of data points just to assess a &lt;em&gt;single&lt;/em&gt; container for risks. Yeah, no thanks.&lt;/p&gt;
&lt;p&gt;But here’s the good news: NVIDIA’s cooking up something that’ll make your life a whole lot easier—and faster. The &lt;strong&gt;NIM Agent Blueprint&lt;/strong&gt; is an AI-driven, GPU-powered answer to container security woes, turning the days-long process of vulnerability analysis into a matter of seconds. Seconds! That’s the kind of efficiency every security team needs in their arsenal.&lt;/p&gt;</description></item><item><title>Pylint Power-Up: Automated Code Quality Checks for GitHub Projects</title><link>http://www.cybersecurityos.net/posts/python/pylint-github-action/</link><pubDate>Fri, 27 Sep 2024 10:58:08 -0400</pubDate><guid>http://www.cybersecurityos.net/posts/python/pylint-github-action/</guid><description>&lt;p&gt;Pylint is a powerful tool for analyzing Python code to ensure it follows coding standards and best practices. Integrating Pylint into your GitHub repository as part of your CI/CD pipeline helps maintain clean, readable, and error-free code. Here&amp;rsquo;s a quick guide on how to configure Pylint in GitHub using GitHub Actions.&lt;/p&gt;
&lt;ul&gt;
&lt;li&gt;GitHub Repo Source: &lt;a href="https://github.com/d0uble3L/pylint-demo"&gt;d0uble3l. GitHub&lt;/a&gt;*&lt;/li&gt;
&lt;/ul&gt;
&lt;h2 id="set-up-a-github-action-for-pylint"&gt;Set Up a GitHub Action for Pylint&lt;/h2&gt;
&lt;p&gt;Create a .github/workflows directory in the root of your repository if it doesn&amp;rsquo;t exist.&lt;/p&gt;</description></item><item><title>The Power of AI in DevSecOps: Building Secure Applications Faster</title><link>http://www.cybersecurityos.net/posts/ai-devsecops/ai-impact-on-devsecops/</link><pubDate>Wed, 25 Sep 2024 23:29:07 -0500</pubDate><guid>http://www.cybersecurityos.net/posts/ai-devsecops/ai-impact-on-devsecops/</guid><description>&lt;p&gt;As artificial intelligence (AI) rapidly advances, its profound implications for these practices offer unprecedented opportunities to further strengthen our security posture and streamline processes.&lt;/p&gt;
&lt;p&gt;In this post I will focus on the transformative integration of DevSecOps and how the shift-left philosophy has fundamentally enhanced how organizations approach security throughout the software development lifecycle.&lt;/p&gt;
&lt;h2 id="understanding-devsecops-and-shifting-left"&gt;Understanding DevSecOps and Shifting Left&lt;/h2&gt;
&lt;p&gt;DevSecOps integrates security practices within the DevOps process, ensuring that security is a shared responsibility throughout the software development lifecycle.&lt;/p&gt;</description></item><item><title>Foundations of Vulnerability Management: Strengthening Your Cybersecurity Posture</title><link>http://www.cybersecurityos.net/posts/vuln/vulnerability-management-101/</link><pubDate>Wed, 25 Sep 2024 23:19:07 -0500</pubDate><guid>http://www.cybersecurityos.net/posts/vuln/vulnerability-management-101/</guid><description>&lt;p&gt;In today’s digital world, no organization is immune to cyber threats. From small businesses to global enterprises, everyone is a potential target for hackers seeking to exploit vulnerabilities. Whether you&amp;rsquo;re a seasoned cybersecurity professional or a curious beginner, understanding &lt;strong&gt;vulnerability management&lt;/strong&gt; is key to safeguarding your systems and data.&lt;/p&gt;
&lt;p&gt;In this post, we&amp;rsquo;ll break down the basics of vulnerability management, explain why it&amp;rsquo;s important, and provide steps for implementing an effective vulnerability management program.&lt;/p&gt;</description></item></channel></rss>