DevOps.com
Latest
Articles
Features
Most Read
News
News Releases
Topics
AI
Continuous Delivery
Continuous Testing
Cloud
Culture
DataOps
DevSecOps
Enterprise DevOps
Leadership Suite
DevOps Practice
ROELBOB
DevOps Toolbox
IT as Code
Videos/Podcasts
Techstrong.tv Podcast
Techstrong.tv - Twitch
DevOps Unbound
Webinars
Upcoming
Calendar View
On-Demand Webinars
Library
Events
Upcoming Events
Calendar View
On-Demand Events
Sponsored Content
Related Sites
Techstrong Group
Cloud Native Now
Security Boulevard
Techstrong Research
DevOps Dozen
DevOps TV
Techstrong TV
Techstrong.tv Podcast
Techstrong.tv - Twitch
Media Kit
About
Sponsor
AI
Cloud
CI/CD
Continuous Testing
DataOps
DevSecOps
DevOps Onramp
Platform Engineering
Sustainability
Low-Code/No-Code
IT as Code
More
AWS Serverless Resources
Builder Community Hub
Application Performance Management/Monitoring
Culture
Enterprise DevOps
ROELBOB
Hot Topics
IBM Confirms: It's Buying HashiCorp
Embrace Adds Support for OpenTelemetry to Instrument Mobile Applications
Paying Your Dues
AIOps Success Requires Synthetic Internet Telemetry Data
Five Great DevOps Jobs Opportunities
Don Macvittie
http://nandgate.com
20 year veteran leading a new technology consulting firm focused on the dev side of DevOps, Cloud, Security, and Application Development.
Improvement Cycles and AI
November 1, 2023
|
agile
,
automation
,
cloud-first
,
code
,
deployment
,
development
,
generative AI
,
kubernetes
,
linux
,
test
Don MacVittie makes one early prediction for 2024: AI will be the next big DevOps tool to break bottlenecks ...
Don’t Forget the One-Offs
October 25, 2023
|
automation
,
backup
,
disk
,
source
,
storage
In the age of DevOps, we have automated the things that happen all the time or are mission-critical (like backups). But we forget about the one-offs ...
Remember: Tools Fail, Too
October 18, 2023
|
agile
,
blame
,
devops
,
DevOps failures
,
streamline
,
tool updates
,
updates
In DevOps, we’re admonishing each other less and fixing things more, and that’s good. But tools are going to fail ...
But Are You a Platform?
October 11, 2023
|
Complexity
,
infrastructure
,
Platform
,
security
,
technical debt
,
toolchain
Don MacVittie asks, 'Do you really need all the functionality of a platform, or will a single tool suffice?' ...
At Some Level, We’re Doing Security Wrong
October 4, 2023
|
ai
,
Common Vulnerabilities and Exposures
,
DLP
,
infrastructure vulnerability
,
security
Don MacVittie explains that today's security approaches just aren't cut out for the threats organizations face ...
Technical Debt: Don’t Buy Buzzwords
September 27, 2023
|
SBOMs
,
SCA
,
software development
,
technical debt
,
tools
Buying into the 'next big new shiny thing' only increases your technical debt. Don MacVittie advises only buying what's necessary ...
Generative AI: The 90% Rule
September 20, 2023
|
ai
,
Authors
,
code
,
development workloads
,
Generative
,
operations
Don MacVittie explains his vision of generative AI - the 90% rule - and how it will help developers ...
Unused Code: Proving a Negative
September 13, 2023
|
application code
,
feature flags
,
Functional Test
,
security
,
test
,
versioning
Don MacVittie says there’s a lot of unused code floating around out there – and that’s a big problem ...
Steady On. We Still Have a Job to Do
September 6, 2023
|
ai
,
app development
,
appsec
,
Generated code
,
generative AI
,
java
,
JavaScript
,
LLM
,
ml
,
security
,
testing
,
XML
AI-generated change is not significantly different than the last couple decades where change has become IT’s constant companion ...
Convert COBOL Easily? Yes, Please!
August 30, 2023
|
COBOL
,
ibm
,
java
,
linux
,
LPAR
,
mainframe
,
VM
IBM's preview of an AI tool to convert COBOL to Java has Don MacVittie cheering ...
Show More
Secure Guardrails
Step
1
of
8
12%
Secure Guardrails Definition:
Secure guardrails enforce secure practices within software development workflows.
Does your organization currently implement secure guardrails in the software development process?
(Required)
Yes, extensively across all projects
Yes, but only in specific projects or teams
In the process of implementation
No, but planning to in the near future
No, and no plans to implement
What are the biggest challenges you face in implementing secure guardrails within your development processes? (Select all that apply)
(Required)
Lack of awareness or understanding
Technical difficulties in integration
Resistance from development teams
Lack of suitable tools
Cost constraints
Other
Other, tell us more:
How effective do you find secure guardrails in preventing security vulnerabilities in your projects? Rate on a scale from 1 (Not effective) to 5 (Highly effective)
(Required)
1
2
3
4
5
To what extent are your secure guardrails automated?
(Required)
Fully automated
Mostly automated with some manual processes
Equally automated and manual
Mostly manual with some automation
Entirely manual
What features do you prioritize in a secure guardrail solution? (Rank in order of importance)
Ease of integration into existing workflows
Comprehensive coverage of security vulnerabilities
Customizability for specific project needs
Minimal impact on development speed
Actionable insights and recommendations
Support for a wide range of programming languages and frameworks
What are your organization's plans regarding the adoption or enhancement of secure guardrails within the next 12 months?
(Required)
Expand the use of secure guardrails to more projects
Enhance the capabilities of existing secure guardrails
Maintain current level of secure guardrail use without changes
Reduce reliance on secure guardrails
No plans related to secure guardrails
What best describes your primary role?
(Required)
Security Engineer
DevOps Engineer
Platform Engineer
Security champion on the development team
Software Developer
CISO (or equivalent)
Sr. Management (CEO, CTO, CIO, CPO, VP)
Manager, Director
Other
Δ