Tag: compliance

How to Use DevOps for Compliance

Ken Lynch | January 15, 2020 | automation, compliance, developers, devops, IT operations

Picture this: You’ve been working in an organization's IT department for a couple of years and tasks have become quite a routine. Some documentation here and there, code reviews, end-user training, routine ...

CircleCI Achieves SOC 2 Compliance for DevOps Platform

Mike Vizard | October 31, 2019 | compliance, data security, DevOps platform, SaaS, SOC 2

CircleCI has achieved a SOC 2 compliance rating for the DevOps platform it makes available via a software-as-a-service (SaaS) model. Tad Whitaker, security manager at CircleCI, said CircleCI is the first provider ...

Chef Achieves Multiple Compliance Mandates

Mike Vizard | March 13, 2019 | Chef, compliance, it automation, regulations

Chef today announced it will make it easier for organizations that adopt its IT automation framework to stay compliant with mandates such as the Federal Information Processing Standards (FIPS), Secure Technical Implementation ...

What It Really Takes to Build Compliant Apps

Sonya Koptyev | December 20, 2018 | CI/CD, compliance, devops, security, software delivery life cycle

If you search online for “software compliance,” you’ll be met with a seemingly endless lineup of blog posts, how-tos and explainer articles promising to tell you everything you need to know about ...

CloudBees Further Extends Jenkins CI/CD Reach

Mike Vizard | October 25, 2018 | CI/CD, cloudbees, compliance, Jenkins, serverless computing

CloudBees announced it is expanding the scope and reach of its Jenkins open source continuous integration/continuous development (CI/CD) platform into the realms of compliance and serverless computing frameworks. Announced at the DevOps ...

Chef Extends Scope of Compliance Automation

Mike Vizard | October 19, 2018 | application development, Chef, compliance

Chef has extended the reach of its InSpec compliance automation framework by adding a plug-in architecture that makes it easier for developers to programmatically generate compliance controls that can be applied to ...

Don’t Forget to Automate Cloud Security

Don Macvittie | June 1, 2018 | automation, compliance, devsecops, security, shift left

Cloud has been around long enough, and we’ve had enough breaches stemming from unsecured cloud (mostly data objects, but other items, too) that we should know better. I cringe whenever I see ...

Has DevOps Caused the Re-emergence of Shadow IT?

Aditya Vadaganadam | May 30, 2018 | CIO and devops, compliance, Devops and Security, Enterprise Adoption, Shadow IT

Shadow IT is back, and this time, it's in the DevOps toolstack "One of our clients conducted an audit and found more than 10,000 Jenkins instances across their IT landscape!" This remark ...

Software Liability Goes Global

Derek E. Weeks | March 21, 2018 | compliance, governance, liability, software

This month, France turned up the conversation on software liability for manufacturers who place known defective software components in their products. But, they are not the first. Software Liability in France According ...

Automation Levels the Playing Field for Continuous Compliance

Tony Bradley | February 26, 2018 | automation, compliance, continuous compliance

At this point, I doubt there is any company doing business anywhere that doesn’t fall under at least one compliance framework. One universal truth of compliance—in intent, if not in practice—is that ...