September 25, 2017 bestdevops Agile, DevOps, IT trends Leave a comment

HashiCorp DevOps tools add Sentinel for IT policy management

Source – techtarget.com In some enterprise IT shops, DevOps is evolving into DevSecOps, and new tools are needed to automate IT policy management as part of that trend. One such tool emerged this week in Sentinel, an option now included with the enterprise versions of HashiCorp DevOps tools such as Consul for service discovery, Vault for secrets management, Nomad for container scheduling, and Terraform for infrastructure as code. Sentinel automates IT policy management with a policy language that can be tested, version-controlled

September 18, 2017 bestdevops Cloud Computing, DevOps, IT trends Leave a comment

An Unexpected Security Problem in the Cloud

Source – wsj.com As more companies unplug their data centers and rent out cloud-computing services from providers such as Amazon.com Inc. and Microsoft Corp. , some are discovering an unexpected problem: They’re accidentally leaving their corporate data exposed for all the world to see. Configuration errors made while using cloud-storage services are common, security experts say, and often occur when users set access permissions so someone outside of the company—say, a vendor—can see data. “More data has been lost due to poor configuration than anything else on

September 14, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

DevSecOps Transforms the Dana Foundation

Source – cioinsight.com There’s a growing recognition that DevOps is critical for digital transformation. Yet, as many CIOs have learned—sometimes the hard way—establishing a business and IT framework based on agility and flexibility is a complex task. Incorporating security into DevOps is even more difficult. After all, DevOps is more than a technology, and it’s more than a one-off project. It’s a delivery process that requires completely rethinking and reinventing development and operations. One organization that has made a successful journey

September 13, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

The time to secure DevOps is here — but how?

Source – techtarget.com The DevOps methodology was birthed by the necessity for improved communication between software developers and operations teams. DevOps brings together the developer and operations sides of software creation and delivery to speed up and smooth out the process. When DevOps works well, users get better-working software that has new features and gets bugs fixed more regularly. For a long time, security was viewed as the speed bump that slowed down the glorious machinery of creation and improvement. But

September 5, 2017 bestdevops Cloud Computing, DevOps Leave a comment

How cloud and DevOps combine for software delivery success

Source – cloudcomputing-news.net Throughout the global economy and across all industries, companies are re-inventing themselves to become better at sensing the next big thing their customers need, and finding ways to deliver it to get ahead of the competition. The concept of DevOps dates back nearly 10 years now. During this time, a lot has changed. As DevOps has matured, we have seen many successful implementations, lessons learnt and copious amounts of data gathered. One thing that remains unchanged to this day –

September 4, 2017 bestdevops DevOps, DevOps Updates Leave a comment

DevSecOps in the app economy

Source – itweb.co.za DevSecOps is crucial in the app economy. When a business depends on digital technology, securitycan’t be bolted onto apps as an afterthought. Similar to DevOps, which integrates IT operations earlier into the software development cycle, DevSecOps brings security into the development process sooner. This ensures security is built in to digital applications from the outset. Seven steps to effective identity-centric security There is a strong business case for embracing identity-centric approaches to security. But, how do businesses get started? How do they

August 30, 2017 bestdevops DevOps, IT trends Leave a comment

Lack of Security Training Hinders DevOps Success

Source – baselinemag.com With large-scale cyber-attacks becoming more frequent, security is more critical than ever, especially in fast-paced DevOps environments. But software developers are not receiving the security training they need, impeding the evolution to DevSecOps, the practice of integrating security into software development and testing. That could have real impact on the productivity of businesses in every industry, as well as on the security and quality of the software that underpins the digital economy. The “2017 DevSecOps Global Skills Survey” shows that

August 28, 2017 bestdevops Continuous Delivery, Continuous Integration, DevOps Leave a comment

Integrating security into DevOps

Source – networksasia.net Many developers today find themselves working in a DevOps (“development and operations”) setup in which an agile relationship exists between development and IT operations, with close communication and collaboration between these business units. DevOps brings many advantages such as releasing features and fix bugs faster using Agile methodologies, CI/CD processes, and open source tools. However, traditional security activities can’t seem to keep up with this fast-paced tempo. How can you make sure security doesn’t get left behind? The

August 26, 2017 bestdevops Cloud Computing, DevOps Leave a comment

Top 2 aspects of cloud computing you need to consi

Source – accountingweb.com If you are planning to invest in a cloud computing environment, you are not alone. In the present era, majority of business owners prefer to invest in cloud and data centre services in order to provide their customers with improved services. Although the large enterprises can plan to invest in personalized data centres, it’s hardly possible for SMEs. However, in order to cater to their target audience in a better way, they need to upgrade the quality of their services and products.

August 21, 2017 bestdevops Continuous Integration, DevOps, IT trends Leave a comment

Integrating Security into DevOps Takes Care

Source – informationweek.com DevOps is quickly evolving from the experimental phase to becoming the standard approach to application development and delivery. It breaks down the barriers between developers and IT operations, speeding up development projects. However, that speed can also create significant security risks if the IT security team is not brought into the process after DevOps releases a new product. The recent DigiCert “2017 Inviting Security into DevOps Survey” finds a vast majority of enterprises are in fact working to

August 17, 2017 bestdevops Cloud Computing, DevOps, DevOps Best Practices Leave a comment

DevOps security has not caught up

Source – networksasia.net With the world’s fourth-largest internet population, Southeast Asia has in recent years become an attractive target for cybercriminals, their task made simpler by an underdeveloped system of data protection laws and weak adoption of cybersecurity best practices. The pace of innovation and rapid adoption of new technologies such as cloud and DevOps also pose further vulnerabilities for Southeast Asia. DevOps is the future, but organizations are not future-proof While seventy (70) percent state their organization plan to – or

August 12, 2017 bestdevops Agile, DevOps Leave a comment

DevOps and Security: Fighting factions or fabulous friends?

Source – cbronline.com DevOps processes focus on being agile, ahead of the game and able to deliver innovative software quickly and efficiently. Traditional software security processes prioritise thoroughness over agility and are often implemented as blocking gates at the last stages of software delivery. Due to this, these approach are often viewed as being in competition. It doesn’t have to be this way. More and more security breaches are uncovered every week, and it has become vitally important that security and

August 3, 2017 bestdevops DevOps, DevOps Best Practices, DevOps News Leave a comment

DevOps Security & the Culture of ‘Yes’

Source – darkreading.com I was talking to the CISO of a Fortune 500 healthcare company about how security teams work with their counterparts in other organizations. He lamented that he had recently overheard a peer refer to him derisively as the “C-S-No.” That was painful to hear because it brought into focus one of his most strategic challenges, one that security leaders everywhere are facing. That is, we as an industry haven’t figured out how to remain effective and relevant within

July 26, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

Opportunity focus: USCIS seeks agile innovation with DevSecOps

Source – bgov.com U.S. Citizenship and Immigration Services (USCIS) is prepping two solicitations for Development, Security and Operations (DevSecOps) services — with the first laying the foundation for the advanced programs requested in the second. DevSecOps, the combination of DevOps and information security, is an agile approach to delivering secure software applications quickly. In the first solicitation, the USCIS Office of Information Technology is looking for a vendor to build and enhance systems in the cloud. Click here to download the request for information. The second solicitation builds on that

July 14, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

Is security killing your digital transformation?

Source – sdtimes.com Hackers love traditional security. So do your competitors. Want to ruin their day? Forget what you know about how faster development increases risk. If your approach to security is slowing you down, it’s only a question of which you’ll lose faster — your data or your customers. To begin, let’s agree on one fundamental principle: In the era of DevOps, agile, and the cloud, survival depends on speed. If you’re not first to market with the innovations today’s

July 11, 2017 bestdevops Cloud Computing, DevOps Leave a comment

The changing face of security in the age of the cloud

Source – cloudcomputing-news.net The computing world just keeps on progressing but as we all know with progress comes additional challenges. This is especially true of challenges around security. Every advance in computing has given rise to the same question: “how do we secure this new toy?” When client/server architecture was all the rage in the late 1990s there was great excitement about the advantages it brought about but also a concern for the security implications of distributed clients and centralised servers.

July 7, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

DevOps is failing these three tenets of privacy compliance

Source – sdtimes.com If you’re like many organizations with data security concerns, you probably believe your automated tests are sufficient to catch any potential security or privacy vulnerabilities. The scenario is familiar: You’re streaming data from multiple sources into your SEIM systems, and you’ve configured triggers for the reporting process. You keep a close eye on results from automated tests on software running in production. All of your monitoring tools indicate your code is running flawlessly and there are zero errors.

July 7, 2017 bestdevops DevOps, IT trends Leave a comment

IT Security Practices Being Eyed Earlier in App Development: Study

Source – windowsitpro.com In the past, IT security in the application building process has often been addressed as an after-thought, usually brought up at the last minute, just after the desired application and code were created. Since 2014, however, that frequent pattern has been changing as more security emphasis is apparently being brought into application development earlier in its creation, according to a recent DevSecOps study on enterprise security practices, released by Sonatype. The report, the 2017 DevSecOps Community Survey, found that in 2014, the last time

July 6, 2017 bestdevops DevOps, DevOps Tools Leave a comment

Are DevOps and Application Security Compatible?

Source – simpleprogrammer.com DevOps is the word of the year. The software industry is on fire with the DevOps craze and more and more companies are looking for DevOps skills. DevOps practices are the key to delivering value quickly, scaling effectively, and enabling a fast feedback cycle of important information. They allow the true agility in software development that companies need to be successful. Good application security practices help to prevent the misuse of software for nefarious means. It aims to protect

July 1, 2017 bestdevops Continuous Integration, DevOps Leave a comment

How to Achieve Continuous Container Security for Your CI/CD Pipeline

Source – dabcc.com Integrate and Automate Security in Your Build, Ship, & Run Processes As enterprises move quickly to deploy containers and microservices with a continuous integration and delivery (CI/CD) pipeline, security often becomes an afterthought. DevOps and security teams should also strive to achieve continuous container security in the pipeline. The starting point for container security is during the Build phase, making sure applications don’t introduce vulnerabilities and containers are hardened to reduce the attack surface. But by far the

« 1 … 11 12 13 14 15 »