March 27, 2018 bestdevops DevOps Leave a comment

DevOps Today: What Does It Mean to You?

Source – informationweek.com DevOps is moving forward. Is your organization coming along for the ride? As DevOps becomes ever more widely respected and adopted, the fundamental concepts driving the approach are rapidly evolving and improving for the better. The latest DevOps iteration is BizDevSecOps, which aims to introduce a “whole company” approach to deriving business value from IT. “One of the best aspects of DevOps is really its bringing of Lean and Agile principles together, so it’s a continuous improvement process,”

March 23, 2018 bestdevops DevOps, DevOps Best Practices, DevOps Updates Leave a comment

DevOps Security Watch: Three Trends To Track In 2018

Source – informationsecuritybuzz.com In the face of incessant competition, countless organisations are turning to DevOps to improve efficiency and accelerate innovation. While this approach delivers proven benefits, DevOps is also creating new security risks and reviving old ones. That’s because these very organisations are failing to adequately train or develop staff to implement best practice in security, leaving them vulnerable to both internal and external threats. At a time when managing their security portfolio effectively is crucial, many are unwittingly introducing

March 22, 2018 bestdevops DevOps Leave a comment

DevSecOps Needs Less Hype, More Adoption in 2018

Source – scmagazine.com “Development, operations and security are fundamentally intertwined. A well-designed, developed and managed system is the foundation of a secure system. DevOps must evolve to a new vision (that) balances the need for speed and agility of enterprise IT capabilities with the enterprise need to protect critical assets, applications and services.” Gartner analyst Neil MacDonald wrote those words back in 2012 when he and colleague Cameron Haight introduced the concept of DevSecOps – the seamless integration of security experts,

March 21, 2018 bestdevops DevOps Leave a comment

Firms need to move from DevOps to DevSecOps, says expert

Source – computerweekly.com DevOps delivers proven benefits in terms of business agility, but it can also create new security risks and revive old ones, according to a DevOps specialist. Risk is the result of organisations failing to train or develop staff adequately to implement best practice in security, said Elizabeth Lawler, vice-president of DevOps security at CyberArk. “This failure leaves organisations vulnerable to both internal and external threats,” she told Computer Weekly. At a time when managing their security portfolio effectively

March 16, 2018 bestdevops DevOps Leave a comment

6 DevSecOps best practices: Automate early and often

Source – techbeacon.com Organizations that want to integrate security into their DevOps pipelines should adopt tools and practices that unite application development, IT operations, and security teams under a common DevSecOps rubric. The goal is to make security part of the software development workflow, rather than bolting it on later in the cycle, as has been the case with waterfall development models. This shift is upending traditional notions of how, when, and where security controls should be integrated into software, and

March 15, 2018 bestdevops Cloud Computing, DevOps Leave a comment

DevOps Tech Trends to Look Out For in 2018

Source – fluxmagazine.com DevOps is something that more businesses are using to boost the technology they offer to clients. In 2018, DevOps Tech is highly likely to play an even greater role in the creation and testing of new tech, but what will the trends for this year be? We take a look at what could happen in the coming months. Reliance on the Cloud So how does DevOps work? Cloud computing and DevOps are both playing major roles in how

March 8, 2018 bestdevops Cloud Computing, DevOps Leave a comment

A complete beginner’s guide to blending DevOps and security

Source – techtarget.com DevOps can be daunting enough for those brand-new to it. And it becomes even trickier when you begin to add security into the mix. If you want to build out your DevOps and security programs in order to improve your application security initiatives, vulnerability testing and verification have to be baked into your day-to-day processes. The DevOps/DevSecOps approach allows for security to be introduced earlier in the software development lifecycle. Instead of performing security checks once the code is

March 6, 2018 bestdevops Continuous Delivery, Continuous Integration, DevOps Leave a comment

Building Open Source Security into DevOps

Source – infosecurity-magazine.com DevOps is a philosophy of IT operations that binds the development of services and their delivery to the core principles of W. Edwards Deming’s points on Quality Management. When applied to software development and IT organizations, Deming’s principles seek to improve the overall quality of software systems as a whole. This is done in part by decomposing the system into manageable components, which can be owned by teams. These teams have the freedom to quickly resolve any issues

February 16, 2018 bestdevops DevOps Leave a comment

Democracy & DevOps: What Is the Proper Role for Security?

Source – darkreading.com Security experts need a front-row seat in the application development process but not at the expense of the business. With the advent of the cloud and DevOps, the job of implementing security has been dispersed more widely across IT. This has led to significant gains in speed and agility, but it has also created unacceptable risk for the business. For security, the pendulum has swung too far toward democracy. We need to pull it back. It’s easy to

February 16, 2018 bestdevops DevOps, IT trends Leave a comment

From DevOps to DevSecOps: Structuring Communication for Better Security

Source – darkreading.com A solid approach to change management can help prevent problems downstream. Security has long been considered an afterthought in the software development process, with ad hoc measures typically tacked on just before release. This approach is no longer adequate in sustaining today’s expectations for rapid and reliable service. DevSecOps is emerging as a superior way to integrate security throughout the DevOps cycles, using better intelligence, situational awareness, and enhanced collaboration. It entails a solid approach to change management,

January 29, 2018 bestdevops Agile, DevOps, DevOps Best Practices Leave a comment

Avoid These Common DevOps Pitfalls

Source – itbusinessedge.com Virtually everybody is interested in doing DevOps these days, but more than that, there is tremendous pressure to do DevOps right. After all, the IT landscape is littered with technologies and initiatives that seemed to promise great things but, for one reason or another, failed to deliver. When it comes to DevOps, the concept is solid – faster, more agile, development, lower costs, a better user experience – so the only thing that can really foul it up

January 10, 2018 bestdevops Continuous Deployment, Continuous Integration, DevOps Leave a comment

What is DevSecOps? Developing more secure applications

Source – itworld.com The simple premise of DevSecOps is that everyone in the software development life cycle is responsible for security, in essence bringing operations and development together with security functions. DevSecOps aims to embed security in every part of the development process. It is about trying to automate core security tasks by embedding security controls and processes early in the DevOps workflow (rather than being bolted on at the end). For example, this could be the case when migrating to

December 23, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

Incorporating security is the next step in the evolution of DevOps

Source – techtarget.com DevOps has been a staple at Actifio Inc. since its founding in 2009. But much like the evolution of DevOps has continued throughout the past eight years, so has the tech company’s version of it. In fact, Actifio has moved into the next iteration: DevSecOps. The company has shifted security testing to a much earlier stage in product development, said Actifio CSO John A. Meyers. It also increased automation and gave developers, solution architects and product managers access

December 6, 2017 bestdevops Continuous Integration, DevOps Leave a comment

Common sense DevSecOps tips for developers

Source – jaxenter.com DevSecOps might be the latest in a long line of tech buzzwords, but it’s actually a fairly practical way at promoting secure tech practices while uniting different spheres of production and operations. But getting into a DevSecOps mindset requires serious collaboration to change processes and tech for the better. As DevSecOps is rapidly becoming the preferred approach for organizations, it becomes even more important to take a moment and make sure everything is heading in the right directions.

December 5, 2017 bestdevops DevOps, DevOps Updates Leave a comment

Closing the DevOps and database gap

Source – sdtimes.com Security isn’t the only aspect overlooked in a DevOps approach. According to Robert Reeves, co-founder and CTO of Datical, a database automation company, database deployments are often forgotten about. “Pushing out the application is the easy part of DevOps,” he said. “It is managing and automating database changes that is the real challenge.” According to Reeves, the database deployment process is often slow, error-prone, and resource intensive because a lot of companies are still doing it manually; but

November 24, 2017 bestdevops DevOps, DevOps News Leave a comment

CA ‘Modern Software Factory’ Boosted By DevOps, Automation & Security Updates

Source – silicon.co.uk CA WORLD 2017: CA releases 20 new products and enhancements as it preaches the power of change through software CA has used its CA World conference in Las Vegas to detail new products and enhancements and to reiterate its commitment to help deliver ‘The Modern Software Factory’. CEO Mike Gregoire has pushed the idea since he joined the company five years ago and spoke to customers about the need to marry the concepts of “ideas and execution” by

November 17, 2017 bestdevops Continuous Delivery, DevOps Leave a comment

With continuous security, SecDevOps deconstructs CI/CD

Source – techtarget.com DevOps has taken the IT world by storm over the last several years. It’s often credited as a way to reduce costs, speed deployments and improve corporate agility. Yet the application lifecycle management process is taking at least some of the blame in the fallout from recent high-profile security breaches. In principle, at least, “DevOps teams that deploy software are responsible for maintaining security by design,” said Craig Lurey, CTO and co-founder of Keeper Security, a Chicago-based security

November 16, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

GitLab tells us about Auto DevOps

Source – appdevelopermagazine.com As enterprises begin to embrace the benefits of DevOps to improve their application workflow, challenges still exist in the development process that prevent a streamlined workflow between developers and operations. In this interview, Sid Sijbrandij, CEO and co-founder at GitLab, shares insight on the company’s plans to offer an automated approach to DevOps, and shares solutions for enterprises who are interested in adopting DevOps as part of their business strategy. We sat down with Sid Sijbrandij to discuss

November 13, 2017 bestdevops DevOps, DevOps Best Practices Leave a comment

Shortcomings of DevOps automation and security bug detection

Source – theserverside.com Eariler this year we spoke with Jim Manco of Manicode security. It was immediately prior to Oracle OpenWorld 2017, in which Manico was delivering a JavaOne session on Java SE 9 security. There are plenty of new tools and technologies in the latest version of the JDK to help minimize the number of Java security bugs that developers might encounter. Of course, it’s not good enough just having technologies like JEP-273 (DRBG-Based SecureRandom Implementations), JEP-290 (Filtering of Incoming Serialization Data), and

November 9, 2017 bestdevops DevOps, IT Training Leave a comment

DevOps the forgotten team when it comes to security: CyberArk

Source – zdnet.com Due to the dynamic nature of DevOps and the business “secrets” they have access to, security vendor CyberArk has highlighted the importance of ensuring these teams are protected from the threat landscape. According to Jeffrey Kok, senior director of solution engineering for Asia Pacific and Japan at CyberArk, exposing DevOps to the elements means privileged account credentials — such as SSH keys, API keys, and other credentials — are proliferating throughout IT infrastructure at a rapid-fire pace, creating

« 1 2 3 4 5 »