Reflect adds color to Puppet DevOps tools

Source – techtarget.com Data visualization specialist Reflect enlivens the growing Puppet DevOps tool portfolio, but it’s unclear if Puppet’s wares will catch enterprise customers’ attention in a busy marketplace. The purchase of Reflect, a startup company based in Portland, Ore., shows that Puppet has little choice but to reinvent itself as containers pull users’ attention away from traditional configuration management, analysts said. Data visualization, a way to portray data so that it’s easily understood by people, will also be increasingly important

Read more

Securing DevOps Without Undermining It

Source – itbusinessedge.com Everybody wants to do DevOps right, and part of that equation is making sure applications and services remain secure even as development and integration transition to a continuous workflow model. But chaos, even the controlled chaos of DevOps, poses a particular challenge to security. It opens up too many attack vectors and introduces too much uncertainty into what is now a very staid, stable data environment. When everything, even infrastructure, is defined and managed as code, security requires

Read more

7 risk mitigation strategies for the cloud

Source – itworld.com Cloud services are here to stay, and they are taking over more enterprise functions every year. Where once cloud services were limited to simple storage or contact management, core functions like ERP have now moved to the cloud. And with a broad array of essential services increasingly shifting to the cloud, IT leaders must keep an eye on the risks inherent in today’s cloud environment and take preventative steps to mitigate them. Here’s a look at what your organization

Read more

These are the tech skills you need to survive in Singapore banking: adapt or die

Source – efinancialcareers.com Barely a week goes by without a major bank announcing a restructure, transformation programme, or rebalancing of their strategy, especially here in Asia. Despite this, banks are still investing heavily in technology in Singapore, but the mix of skills they need is changing. As they seek to achieve digital transformation to engage better with customers and hold off fintech start-ups, they need technology people who can collaborate with peers in other professional disciplines, both within the bank and with vendors,

Read more

Does DevOps Plus Open Source Equal Security?

Source – forbes.com There is a cost to prioritizing speed over software quality. Today’s CIO is in a tough spot. As one of the fastest-growing professions, according to the U.S. Bureau of Labor Statistics, we are seeing more newly promoted CIOs enter the job market than ever before. In addition to this flood of fresh CIOs who have limited experience managing increasingly complex IT issues, we have CEOs and boards putting more pressure on IT organizations to deliver updates faster while

Read more

Qualys: How to be cool with DevOps

Source – computerweekly.com Well, it was only meant to be an open question, a hypothesising supposition, a point of informed speculation that might lead to an informal pub discussion at best. But, as is often the way with these things, the industry has taken it as a clarion call for commentary and deeper analysis… and who are we to turn down the opportunity for deeper inspection of the DevOps state of the nation? First among a small group of spokespeople invited

Read more

When DevOps And SecOps Collide: How To Improve Collaboration To Enable Agility

Source – forbes.com There are two kinds of companies today: the ones that are in the cloud and ones that will be in the cloud. The gravitational pull fueled by agility, cost and resource management cannot be resisted. Today’s digital transformation is invigorating companies around the world to increase performance and drive more output. The rush to harness new digital technologies often results in enthusiastic business owners taking initiatives straight to the cloud, putting DevOps and SecOps at odds by allowing

Read more

DevOps the forgotten team when it comes to security: CyberArk

Source – zdnet.com Due to the dynamic nature of DevOps and the business “secrets” they have access to, security vendor CyberArk has highlighted the importance of ensuring these teams are protected from the threat landscape. According to Jeffrey Kok, senior director of solution engineering for Asia Pacific and Japan at CyberArk, exposing DevOps to the elements means privileged account credentials — such as SSH keys, API keys, and other credentials — are proliferating throughout IT infrastructure at a rapid-fire pace, creating

Read more

CyberArk integrates with Puppet to automate DevOps secrets protection

Source – economictimes.indiatimes.com Mumbai: CyberArk announced its partnership with Puppet as an Advanced Technology Partner. Together, CyberArk and Puppet are working together to create supported modules that provide automated, enterprise-grade protection of secrets and are seamlessly integrated with Puppet’s configuration automation, enabling secure, high-velocity DevOpsworkflows. In dynamic DevOps environments, tools, scripts and applications/services are constantly being created, used and disabled. Each step requires secrets, including SSH/API keys, passwords and certificates, which regularly go unchanged or revoked, or may not be available for a range of reasons,

Read more

HashiCorp DevOps tools add Sentinel for IT policy management

Source – techtarget.com In some enterprise IT shops, DevOps is evolving into DevSecOps, and new tools are needed to automate IT policy management as part of that trend. One such tool emerged this week in Sentinel, an option now included with the enterprise versions of HashiCorp DevOps tools such as Consul for service discovery, Vault for secrets management, Nomad for container scheduling, and Terraform for infrastructure as code. Sentinel automates IT policy management with a policy language that can be tested, version-controlled

Read more
1 2 3