DevOps Chat: Device Identity at the Speed of DevOps, With Venafi

Source: securityboulevard.com DevOps and Agile are all about making software cycles short and dynamic, empowering development teams to rapidly iterate, leveraging tools with fewer burdens and reliance on outside organizations. It’s the dev + ops combination that is so powerful. But what about security, specifically the identity of physical and virtual devices, containers and microservices? Digital certificates are a key asset in managing device identity, but traditional tools and processes may not fit the speed and dynamic nature of today’s

DevOps teams have poor security practices

Source – itproportal.com Many organisations don’t enforce proper security measures in their DevOps environments, putting both the company and the product at risk. This is according to a new report by Venafi, looking into security practices among DevOps. Using the same passwords for multiple machines, or not even bothering to secure communications between machines are some of the most common issues, usually among organisations in the middle of adopting DevOps practices. However, even organisations that say their DevOps practices are ‘mature’,