April 27, 2019 bestdevops DevOps Leave a comment

How SecDevOps Can Improve Your Software and Protect Your Business

Source:- business2community.com. How is SecDevOps Different from DevOps? Corporate America has bought into DevOps in a big way. According to Statistica, 77% of companies had adopted DevOps to some degree in 2018 with 17% saying their entire company has embraced DevOps. This represents a 7% jump from the year prior. You only have to look at these numbers to see why business has gone gaga over DevOps. 63% have experienced improvement in the quality of their software deployments 63% release software builds more frequently 55%

April 3, 2018 bestdevops Continuous Delivery, Continuous Deployment, Continuous Integration, DevOps Leave a comment

Secdevops or devsecops or devops next-generation (NG) – What is your take on devops?

Source – csoonline.com I recently had the opportunity to attend and present at the Advanced Technology Academic Research Center (ATARC) Devops Summit last month. There was, as expected given the topic, a huge turn-out of US federal, commercial and public-sector participants looking to learn, connect and share lessons from adopting and implementing devops in their organizations. A key moment at the summit conference was an informal survey of over 200 participants by Tom Suder, the President of ATARC. Tom pulsed the

November 17, 2017 bestdevops Continuous Delivery, DevOps Leave a comment

With continuous security, SecDevOps deconstructs CI/CD

Source – techtarget.com DevOps has taken the IT world by storm over the last several years. It’s often credited as a way to reduce costs, speed deployments and improve corporate agility. Yet the application lifecycle management process is taking at least some of the blame in the fallout from recent high-profile security breaches. In principle, at least, “DevOps teams that deploy software are responsible for maintaining security by design,” said Craig Lurey, CTO and co-founder of Keeper Security, a Chicago-based security

November 8, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

SecDevOps: Putting Security at the Heart of DevOps

Source – securityintelligence.com Agility has become an unavoidable necessity in a fast-moving technology environment, but achieving it can be a challenge for organizations and their development teams. The DevOps philosophy provides a road map; following it is not always as easy. Even more crucial than the need to transform the development process is the need to protect against ever more sophisticated threats and attacks. But some organizations are finding that agility and security can go hand in hand. SecDevOps is an

September 22, 2017 bestdevops Agile, DevOps Leave a comment

The Myth of Mutual Exclusivity: Making the DevOps Process More Agile Without Compromising Security

Source – securityintelligence.com The marketplace is demanding agility, but many enterprises perceive the need for agility as an ongoing security risk. If applications are constantly evolving, they assume, the process will constantly open up new avenues for attackers to exploit. This worry has given rise to a widespread misconception that security or agility is a binary choice. But a growing number of organizations are challenging this stereotype and actively working to integrate security into the DevOps process. These proactive players in

April 27, 2017 bestdevops DevOps, DevOps Best Practices, Software Leave a comment

DevSecOps, or how to build safer software so much faster

Source – techtarget.com Call it DevSecOps or SecDevOps or security in DevOps, but no matter what you call it your development organization will be tackling it soon. DevOps is hard to do and security is harder. But at a time when security breaches continue to dominate the headlines, there’s no question that security and DevOps need to come together. The only issues are when and how. A recent survey by DevOps software supply chain provider Sonatype found that for every

April 8, 2017 bestdevops DevOps, DevOps Best Practices, DevOps Updates Leave a comment

Resources for DevOps Pros to Learn About Security

Source:- threatstack.com These days, security should be part of everyone’s job. This is especially true for DevOps teams, which are responsible for developing, delivering, and maintaining critical applications for many organizations, and must therefore prioritize security as part of their role. But the world of security can seem like a bit of a mystery until you’ve been exposed to it. If you or someone on your team is looking to learn more about what it takes to run a secure

March 31, 2017 bestdevops DevOps, DevOps Best Practices, DevOps Process Leave a comment

IT ops pros adopt iterative approach to security in DevOps

Source:- searchitoperations.techtarget.com Baby steps that add security in DevOps environments are better than none at all, according to experienced IT ops practitioners. Most organizations have dedicated IT security departments or personnel, but lack of a mature DevSecOps collaboration means IT ops ends up on the front lines to identify vulnerabilities and anomalies in production applications. Like it or not, security in DevOps environments is often left up to them. Attacks are often unmasked because they show up as a problem

March 21, 2017 bestdevops DevOps, Test Driven DevOps Leave a comment

Secure DevOps: A simple plan to deliver business value

Source:- techbeacon.com DevOps—the movement to break down silos, deliver software faster, and overall create a better experience for customers—is spreading from startups and experimenters to the enterprise. Many security team leads would cringe at the idea of faster development cycles in an IT department that has even less time and patience for standard security checks, but James Wickett, a senior DevOps engineer, sees not just opportunity, but necessity. “Traditional information security is going to die if we don’t respond to

February 10, 2017 bestdevops DevOps, DevOps Best Practices, DevOps Events Leave a comment

Secure Coding: The Rise of SecDevOps

Source:- databreachtoday.com For too long, ensuring that code is securely written – and bug free – has been a business afterthought. But there’s been new hope for building security into the development lifecycle, thanks to the rise of DevOps, aka rugged software, says Chris Wysopal, CTO of the application security firm Veracode. DevOps – a truncation of software development and IT operations – incorporates aspects of agile development, including short sprints – perhaps just two weeks in length – that