DevOps’ Role in Developing a Robust and Secure IoT Framework

Source – devops.com Creating a secure IoT infrastructure is a challenge for developers, requiring a holistic approach. It requires a dynamic framework that is capable of collecting data from a cloud backend as well as directly from the embedded hardware. Supporting this secure environment is another challenge, requiring the development of complex systems capable of deployment in a timely and cost-effective manner. This is where the relationship between DevOps and IoT proves invaluable. In this article, we will take a close

Read more

Application security needs to shift left

Source – sdtimes.com As teams are pressured to release software more rapidly, more and more aspects of software development are being forced to “shift left,” moving up earlier in the development lifecycle. Because of the speed in which code is updated and delivered, security can no longer be thought of as an afterthought, said Rani Osnat, VP of product marketing at Aqua Security, a company that specializes in container security. “That’s why we profess to shift left security and basically embed

Read more

Big growth predicted for DevOps

Source – digitaljournal.com DevOps and Fast IT adoption are set to the among the biggest growth areas for business technology, according to a new report. These are driven by the widespread adoption of cloud computing. The growth in DevOps and Fast IT is highlighted in a new report from Venafi (a privately held cybersecurity company). While the focuses on security vulnerabilities and proposes actions, it highlights a number of growth areas in relation to business machine-to-machine communication. The report is titled

Read more

Re-Architecting Log Management for DevOps

Source – itbusinessedge.com Log management in a DevOps environment requires a lot more than just the right platform. As enterprises become more steeped in DevOps processes, tools like deep visibility and AI-driven analytics are proving invaluable to continuous integration/continuous deployment (CI/CD). But in many cases, even the most advanced of these technologies will fail to produce the desired results if not implemented and orchestrated properly. Among the initial questions organizations face when revamping their log practices is what components to log and

Read more

Integrating Blockchain and DevOps

Source – devops.com Blockchain is one of today’s hottest technology buzzwords. And at the same time, the concept of DevOps has achieved acceptance and is gaining momentum. Blockchain and DevOps already offer a number of benefits individually. Together, they can provide significant tactical and strategic advantages. However, some challenges must be overcome simply to adopt blockchain, as well as to successfully merge blockchain and DevOps. What is Blockchain? Let’s start with an overview of blockchain. Many people mistakenly conflate cryptocurrency and

Read more

GitLab Pushes Kubernetes-Based Update for Auto DevOps

Source – sdxcentral.com GitLab released the latest version of its namesake platform that leverages Kubernetes to automate the handling of code on its journey to being a running application. The move comes as the online Git repository manager is riding an attention bump following Microsoft’s $7.5 billion acquisition of GitHub. GitLab CEO and cofounder Sid Sijbrandij said the 11.0 update basically allows developers to push code and the platform does the rest. That includes building, testing, code quality scanning, security scanning, license scanning, packaging, performance

Read more

What Comes after DevOps? Two Possibilities

Source – devops.com People have been talking about the “post-DevOps” world since at least 2014. But have we actually arrived in the post-DevOps era? If so, what comes after DevOps? Let’s explore those questions. The DevOps concept is more than a decade old. DevOps has seen widespread adoption across companies large and small. “DevOps engineer” is now a common job title for tech folks. At a minimum, these developments mean that DevOps is now very mature and mainstream. They may even signal the end of DevOps,

Read more

DevSecOps: Embedding a Security Practice into your DevOps Approach

Source – devops.com It’s a no-brainer that the element of security cannot be compromised even to the smallest of extents in today’s competitive, fast-paced, modern technology-driven IT infrastructure. However, to keep up with the rapid developments of other processes in this agile world, security is often given relatively less importance and in some cases, even left behind. As the term suggests, DevSecOps is primarily concerned with the incorporation of security in the DevOps pipeline. The intended primary function of DevSecOps is

Read more

DevOps requires a fresh approach to security

Source – itworldcanada.com DevOps originated from the need/desire to break down the silos between development and quality control. The need to be more agile, to continuously produce and deliver code in a quick, iterative approach, while maintaining quality. The developers became accountable for the quality of code that went into production. When practiced properly, agile development is an efficient approach that allows for constant upgrades and feature releases, while maintaining code quality. However, security has still remained a tack-on afterthought. Enter

Read more

Making DevOps a Reality – Bringing in Security: Top 4 Topics

Source – devops.com I caught up with Maria Loughlin, vice president of engineering at CA Veracode; Chris Eng, vice president of research at CA Veracode;  and Alan Shimel, CEO of DevOps.com, to talk more about their recent panel webinar on bringing in security to make DevOps a reality. It was enlightening to hear their perspectives on how companies can build security into its culture so that it permeates the development process. Many enterprises have realized that with the continuing popularity of DevOps

Read more

Securing DevOps Without Undermining It

Source – itbusinessedge.com Everybody wants to do DevOps right, and part of that equation is making sure applications and services remain secure even as development and integration transition to a continuous workflow model. But chaos, even the controlled chaos of DevOps, poses a particular challenge to security. It opens up too many attack vectors and introduces too much uncertainty into what is now a very staid, stable data environment. When everything, even infrastructure, is defined and managed as code, security requires

Read more

Continuous Discussions Video Podcast: DevSecOps, Best Practices and More

Source – devops.com In a recent episode of the Continuous Discussions (#c9d9) podcast, a group of industry experts discussed why DevSecOps is officially more than just a buzzword, tips on how to get everyone in the organization to own security and some of their own challenges and experiences baking security into the software delivery pipeline. The panel included: Alan Shimel, editor in chief at DevOps.com; Chenxi Wang, managing general partner at Rain Capital; Derek E. Weeks, VP and DevOps Advocate at Sonatype; Paula Thrasher, Chief Architect, National Security Division at

Read more

Five Essential Steps for Moving to DevOps

Source – tripwire.com Last week, I introduced the DevOps model for software development and discussed the advantages this type of approach has over more traditional methods. Its benefits, which include collaboration between operations and development teams as well as a better overall project creation for customers, explain why so many organizations are transitioning to DevOps. But they don’t illuminate how enterprises are making that move. Hence the purpose of this piece. Before firms leap towards change, they must strategize how to implement the transition and then measure

Read more

Bridge the DevSecOps Experience Divide with Cross-Functional Teams

Source – devops.com Last week’s DevOps Connect event at RSA Conference offered up a ton of wisdom and real-world examples of the power of DevSecOps. With its best-ever attendance after several years and impressive participation levels, this year’s event stands as a good harbinger for the growing interest that the security community has in vesting itself in the DevOps phenomenon. But there’s still a lot of work to do in helping security professionals shift their mindsets and fully understand what DevSecOps

Read more

DevOps and security can coexist with a little planning

Source – techtarget.com “If you’re not thinking about security at all, it’s crazy.” Those words, from Ari Weil, vice president and senior director of industry marketing at Akamai, neatly sum up his frustration with the so-called DevSecOps landscape. Despite well-publicized security breaches, most DevOps teams continue to think about security too late in the process. DevSecOps — with its promise to bake security in from the beginning — could help. But, today, this movement is nascent at best. And while Akamai now offers new

Read more

Security in DevOps Is Lagging Despite Advantages and Opportunities

Source – bwcio.businessworld.in Synopsys Inc. has released new data that highlights the opportunities and challenges of DevSecOps, an emerging paradigm in which DevOps teams incorporate application security into their continuous integration and continuous delivery (CI/CD) workflows. The 451 Research report commissioned by Synopsys, DevSecOps Realities and Opportunities, analyses survey results from 350 enterprise decision-makers at large enterprises across a variety of industries. The study found that only half of CI/CD workflows include application security testing elements despite respondents citing awareness

Read more

DevSecOps: How to get your team on board

Source – enterprisersproject.com A funny thing happened as IT embraced DevOps and broke down longstanding silos between teams: Many organizations created new silos in their place, around security. “We found through our research that DevOps and security teams are already operating in silos, and the rush to the cloud is exacerbating this disconnect,” says Pete Cheslock, senior director at Threat Stack. “Teams are increasingly isolated, and they’re facing a steep learning curve.” This is why you’re increasingly hearing the term DevSecOps. You’re forgiven if you’re skeptical

Read more

The integration of DevOps and security

Source – jaxenter.com The cloud delivers to enterprises operational and management advantages by being agile, user friendly, and optimized to scale. It also enables IT teams to apply continuous integration/continuous deployment (CI/CD) methods to deliver applications and functionality more rapidly. By using the development and delivery methodology known as DevOps, the entire organization can be more responsive to customer and market needs and deliver innovation continuously. Speed is the essence of DevOps; the idea is to iterate, iterate, iterate, and get

Read more

Secdevops or devsecops or devops next-generation (NG) – What is your take on devops?

Source – csoonline.com I recently had the opportunity to attend and present at the Advanced Technology Academic Research Center (ATARC) Devops Summit last month. There was, as expected given the topic, a huge turn-out of US federal, commercial and public-sector participants looking to learn, connect and share lessons from adopting and implementing devops in their organizations. A key moment at the summit conference was an informal survey of over 200 participants by Tom Suder, the President of ATARC. Tom pulsed the

Read more

Advice and tips about DevOps for beginners

Source – techtarget.com Brand new to DevOps? Here’s our get started guide If you or your organization is brand new to DevOps it might feel as if you’ve traveled to a foreign country. Nearly everything you thought you knew about software development, deployment, testing, security and UX is altered when seen through the DevOps lens. DevOps for beginners really isn’t for the faint of heart, but with advice, time and patience, you’ll get there. For developers, the move to DevOps requires

Read more
1 2 3 4 5