DevOps.com

Where the world meets DevOps

DevSecOps

Portable Security Policies: A DevSecOps Primer

Portable Security Policies: A DevSecOps Primer

| | app security, application security, cloud environments, Cloud Security, devsecops, software developers, zero-trust
Protecting critical data and applications is a challenge under any circumstances, but it’s especially daunting when resources reside in the cloud. Most organizations today operate a significant portion of their workloads in ...
Data: the New Currency That Accelerates Business

Data: the New Currency That Accelerates Business

| | data, data integrity, IoT data, IoT devices, value of data
The amount of data created every day is staggering: 2.5 quintillion (that's 18 zeros) bytes, to be exact. And that number is growing exponentially, thanks to mass deployments of internet of things ...
DevOps Security Champion

DevOps Security Champion: Who, What and Why?

| | application security, development team, devops, security champions
In general, DevOps is a process and culture of organizations to get applications out the door faster and with higher quality. To do so, security champions are essential. In DevOps, security champions ...
Lockheed Brought Better Security to Fighter Jets

Open Innovation Labs: How Lockheed Brought Better Security to Fighter Jets

| | case study, devsecops, Lockheed Martin, Open Innovation Labs, red hat, security, software development
How Red Hat's Open Innovation Labs have helped accelerate Lockheed's software development for the F-22 Raptor As the key government contractor charged with helping the U.S. Air Force keep its F-22 Raptor ...
Security: Are You Doing DevOps Right

Security: Are You Doing DevOps Right?

| | developers, devops, Devops and Security, devsecops
Phil Kernick, co-founder and CTO of cybersecurity specialist CQR Consulting, has no fundamental problem with DevOps, but asks, from a security perspective, "How many people do it right?" If DevOps is going ...
The Bug in Production

The Bug in Production: What You Don’t Know Can – and Will – Harm You

| | CI/CD pipeline, devops, QA testing, Quality Assurance, rollbacks, rollouts, software bugs
Despite the risk of unplanned downtime, many organizations that develop software and services push them live without adequately testing for bugs that will manifest against production traffic. This is a huge gamble: ...
Motorola Solutions: Driving a Thriving Security Culture

Motorola Solutions: Driving a Thriving Security Culture

| | Cybersecurity, developers, devsecops, Motorola Solutions, security culture
It’s crunch time in the cybersecurity industry. For too long, many companies have remained unmoved by the increasing threat of cyberattacks, despite increased digitization of their products and services. Customer data is ...
DevSecOps: Can JIT PAM Bring Relief?

DevSecOps: Can JIT PAM Bring Relief?

| | Cybersecurity, devsecops, JIT, just-in-time, PAM, privileged access management
IT and cybersecurity leaders have come to agree that the purpose and intent of DevSecOps is to create a mindset that "everyone is responsible for security," while also incorporating application and infrastructure ...
Who’s Coming to JFrog swampUP

Guess Who’s Coming to JFrog swampUP?

| | cloud-native, devops, devsecops, nicole forsgren, swampUP
The annual DevOps gathering and JFrog user conference, swampUP 2019, is going to be here before we know it. It’s happening June 17-19 in San Francisco, providing easy access for everyone (it’s ...
Securing a Dynamic, Cloud-Based DevOps Environment

The Challenge of Securing a Dynamic, Cloud-Based DevOps Environment

| | cloud ecosystem, Cloud Security, comprehensive visibility, Cybersecurity, devops
The tech landscape has fundamentally changed over the last decade. The steady migration from local data centers to cloud computing combined with the advent of DevOps and the rise of containers have ...