DevSecOps: Embedding a Security Practice into your DevOps Approach

Source – devops.com It’s a no-brainer that the element of security cannot be compromised even to the smallest of extents in today’s competitive, fast-paced, modern technology-driven IT infrastructure. However, to keep up with the rapid developments of other processes in this agile world, security is often given relatively less importance and in some cases, even left behind. As the term suggests, DevSecOps is primarily concerned with the incorporation of security in the DevOps pipeline. The intended primary function of DevSecOps is

Read more

5 Steps to Put a Faltering DevOps Plan Back on Track

Source – informationweek.com DevOps encompasses a set of practices that automate and streamline processes between software development and IT teams, enabling organizations to build, test, and release software faster and more reliably. That’s the goal, anyway. But what happens when a DevOps initiative doesn’t meet an organization’s anticipated goals or, worse yet, actually begins exerting a negative impact on software development? That’s when it’s time to go back to the virtual drawing board and steer the initiative back onto its planned course.

Read more

Four tips for a successful DevOps spring cleaning

Source – techtarget.com Despite a demand for faster release cycles — weekly rather than monthly — development teams can find it difficult to integrate the necessary set of tools into their pipeline to make updates ahead of a deadline. How do we give teams the capabilities to keep up with this industrywide trend of accelerated release cycles? Successful DevOps involves a tuneup of Agile processes. A thorough spring cleaning can help teams get there. Here’s how. Step 1. Refresh roles and responsibilities

Read more

DevOps requires a fresh approach to security

Source – itworldcanada.com DevOps originated from the need/desire to break down the silos between development and quality control. The need to be more agile, to continuously produce and deliver code in a quick, iterative approach, while maintaining quality. The developers became accountable for the quality of code that went into production. When practiced properly, agile development is an efficient approach that allows for constant upgrades and feature releases, while maintaining code quality. However, security has still remained a tack-on afterthought. Enter

Read more

Building the Development Side of DevOps

Source – itbusinessedge.com Developing software has always been about creating products that work. Unfortunately, “work” is a relative term when the goal is to satisfy hundreds, if not thousands, and perhaps even millions, of users across all manner of disciplines. This is why DevOps is quickly supplanting the traditional waterfall model of development. Once you have established basic functionality, it makes much more sense to roll out continuous improvements quickly rather than wait a year or more for the next big

Read more

Making DevOps a Reality – Bringing in Security: Top 4 Topics

Source – devops.com I caught up with Maria Loughlin, vice president of engineering at CA Veracode; Chris Eng, vice president of research at CA Veracode;  and Alan Shimel, CEO of DevOps.com, to talk more about their recent panel webinar on bringing in security to make DevOps a reality. It was enlightening to hear their perspectives on how companies can build security into its culture so that it permeates the development process. Many enterprises have realized that with the continuing popularity of DevOps

Read more

AI-powered DevOps is how CA wants to reinvent software development and itself

Source – zdnet.com CA is one of the oldest, most traditional enterprise software companies around. As such, it has not exactly been synonymous with innovation. But Ashok Reddy, its DevOps general manager, says this is changing, and CA is reinventing how DevOps is used to develop and deploy software throughout its lifecycle, based on data, machine learning, and AI. IF EVERYONE IS USING THE SAME SOFTWARE AS A SERVICE, DIFFERENTIATION COMES THROUGH DYNAMICALLY ADAPTING TO DATA CA has come a long way since

Read more

Continuous Delivery is Not Continuous Deployment

Source – devops.com Every once in a while, it is worth revisiting a topic that flies under most people’s radar. The differences between continuous delivery and continuous deployment is one of those topics. While those steeped in DevOps are well-aware that software can be delivered daily (or even more frequently), deployment is less frequent, and more dependent upon both development and marketing cycles. Most CI/CD tools can and do crank out “deployable” apps on a daily basis, or even each time

Read more

Puppet Report Sees Long DevOps Journey Ahead

Source – devops.com A recent report published by Puppet suggests the level of DevOps maturity within most organizations is still relatively slight. In fact, most of the respondents reported high levels of manual work still occurring across configuration management, deployment, testing and change approval processes. Alanna Brown, director of product marketing for Puppet, said the “State of DevOps: Market Segmentation Report” makes it clear that DevOps is being embraced to solve specific pain points with specific IT departments. As a result,

Read more

Why Isn’t Secure DevOps Being Practiced?

Source – securityintelligence.com New research reveals that consistent practice of secure development and operations (DevOps) remains a challenge for organizations across industries. Only half of DevOps teams integrate application security testing elements in continuous integration and continuous delivery (CI/CD) workflows — despite widespread awareness of the advantages — according to a May 2018 report, Examining DevSecOps Realities and Opportunities, from Synopsys and 451 Research. The report surveyed 350 leaders at large enterprises and revealed insight into the state of secure DevOps and perceived

Read more
1 2 3 4 110