February 16, 2019 Bittu K Cloud Computing Leave a comment

3 reasons to move your business to the cloud today

Source- bizjournals.com For business owners and managers unfamiliar with cloud technology, the idea of transitioning to a cloud-based business may seem daunting. Many worry that it might be less secure than on-site data and file storage, or it will cost too much to migrate or take too much time and business will suffer in the process. This couldn’t be further from the truth. In reality, cloud-based businesses are reaping enormous benefits today in terms of cost savings, increased productivity and enhanced

January 3, 2019 Bittu K DevOps Leave a comment

The security silo: How to better integrate DevOps and security teams

Source- siliconrepublic.com Rapidly maturing DevOps teams are breaking boundaries, strengthening processes and building products at a faster pace with each iteration. This, seemingly, is a win for everyone. DevOps teams have a continuous opportunity to perfect their processes with each release; leadership sees deadlines being met and exceeded; and end users get faster, more reliable improvements to the apps and software they use daily. Overall, efficiencies almost always mean a healthier bottom line, and the adoption of DevOps practices is often

December 22, 2018 Bittu K Continuous Deployment Leave a comment

DevOps: Underestimated Security Risks

Source- e3zine.com Digital transformation needs high agility and increasingly promotes the use of DevOps environments. That’s because DevOps offers accelerated innovation, higher flexibility and reduced complexity in application development and deployment. With the implementation of DevOps, companies, therefore, want to primarily benefit their businesses. More often than not, however, they neglect security. A severe mistake, because DevOps significantly widens the attack surface for cybercriminals. If companies use DevOps models, they also have to create more privileged accounts and login details and

December 20, 2018 Bittu K Cloud Computing Leave a comment

Attackers are using cloud services to mask attack origin and build false trust

Source- techrepublic.com Security experts love talking up the importance of trusted websites. Google’s dominant Chrome browser—which has held about two-thirds of the browser market share all year—emphasized the importance of this with its lock icon, indicating that traffic was encrypted. It’s a useful heuristic, easy for end users to understand. Lock equals security. It’s skeuomorphism at its best, but it lulls users into a false sense of security. A Wednesday report from Menlo Security finds that attackers are using cloud hosting services to avoid detection, opting to

December 19, 2018 Bittu K DevOps Leave a comment

Five Best Practices for DevOps Automation

Source- cioreview.com Open source libraries and frameworks play a crucial role in the DevOps environment that emphasizes the shorter development lifecycles, collaboration, and innovation. It’s important not to neglect the security of these open source components. Here we will talk about five things that one must consider concerning the safety of an open source project. • Security Automation A significant driving force for DevOps is to automate as much as possible. DevOps automation emphasizes using technologies like virtual machines and containerization to

November 29, 2018 Bittu K DevOps Leave a comment

3 Tips to Build A DevSecOps Organization

Source- devops.com For organizations undergoing digital transformation today, modernizing the existing environment can present serious challenges when it comes to security. Whether you’re dealing with a transition from legacy to cloud or hybrid models, or shifting from ITIL and waterfall methodologies to DevOps, the increasing number of technologies and complexity mean you need to rethink your security posture. The traditional approach to security—that is, a static strategy that largely involves patching on piecemeal measures at the 11th hour—is simply not a

October 22, 2018 Bittu K Continuous Deployment, Continuous Integration Leave a comment

DevSecOps: Focus training on 3 key areas

Source- enterprisersproject.com DevOps, with its fast and frequent release cycles, is the new environment that organizations need to contend with in order to stay competitive in the market. It is especially challenging when security considerations come into play since developers don’t often have secure coding expertise and since security practices traditionally stall release cycles. Despite its necessity, establishing a DevSecOps environment in an organization is no simple feat; it is a complicated, multi-layered process, and much of its success relies on the reinforcement of strong

October 12, 2018 Bittu K Cloud Computing Leave a comment

Pentagon Cloud Computing Deal Could Give Amazon Monopoly

Source- investors.com Good news for Amazon.com employees is not necessarily good news for everyone else. For example, consider the announcement that Amazon.com will now pay at least $15 per hour. That may be great for current employees, but it’s bad for any smaller companies that hope to compete with Amazon on price. Amazon has a history of cutting prices to dominate a developing space, then using its massive market power to block others from even entering. That’s why it opposed internet sales taxes for

October 5, 2018 Bittu K DevOps Leave a comment

Bridging the priority gap between IT and security in DevOps

Source- betanews.com Let’s start with a test. Suppose that you manage a corporate network gateway across which a critical programmed transaction is scheduled to occur in exactly one hour. Suppose further that the firewall protecting this gateway is functionally misbehaving and will almost certainly block any programmed activity with your transaction partner. This is a serious concern because your boss has reinforced to you several times the importance of this planned transaction. Your team continues to work the technical problem,

October 4, 2018 Bittu K DevOps, Software Leave a comment

Putting Security on Par with DevOps

Source- darkreading.com DevSecOps: It’s not a very friendly acronym. It reeks of techno-babble, sounds a little military, and resists a consumer connection. But think again. This is a vital discipline that’s directly relevant to every enterprise and every individual, particularly within cloud infrastructures, and has long deserved greater attention. Maybe that’s why we’re now seeing greater research and more discussion devoted to the subject. But what’s really at stake here? And what needs to happen next? First, let’s understand the

1 2 3 … 6 »