Continuous security: development, shipment and delivery of an app in a secure manner.
Software engineering & maintenance secured by design: training, private repo, inventory analysis, monitoring of reusable code, automated bug tracking (creating remedy tasks), metrics gathering, SAST (Static Application Security Testing), SCA (Security Configuration Assessment), signing releases, DAST (Dynamic Application Security Testing), fuzz testing, run-time application self-protection and error detection.