Tag: sdlc
How to Make DevSecOps a Reality
DevSecOps is an increasingly popular term; however, security vulnerabilities in software continue to proliferate. 2019 saw a surge in web application breaches shining a spotlight on the fact that DevSecOps remains elusive ...
The Secret to Winning at DevOps: Are You Up for the Challenge?
Sam Bocetta | | automation, developers, DevOps practices, devops teams, devsecops, IT operations, sdlcThe main idea behind DevOps is to enable companies to keep up with the increased software velocity and advancements in agile culture for a smoother end-to-end software delivery cycle. The main goal ...
Increasing Software Velocity While Maintaining Quality and Efficiency
Rick Slade | | continuous improvement, mainframe software delivery, MTTB, MTTD, sdlc, software velocityAt Compuware, we have been exploring the need for continuous improvement across three key dimensions of software development: velocity, quality and efficiency. Given today’s current market demands and the importance of digital ...
The Secure Software Development Life Cycle: Syncing Development and Security
Derek Handova | | application security, automated security assurance, DevOps practices, devsecops, sdlc, software developmentOver the last five to 10 years, the nature of software development has shifted dramatically. Whereas large software releases occurred every six to 18 months in the past, current release schedules have ...
The Key to Embracing DevOps: A Real-Time Roadmap
While the term “DevOps” has become somewhat of an industry buzzword, it represents an important shift in the way teams think about planning, building and deploying software. Drawing its inspiration from the ...
The DevOps Sweet Spot: Inserting Security at Pull Requests (Part 2)
In part one of this two-part series, I explored how organizations can more effectively automate security quality decisions and discard doing automation for automation’s sake. I shared why security scans need to ...
The DevOps Sweet Spot: Inserting Security at Pull Requests (Part 1)
Chetan Conikee | | devops, sdlc, security, security automation, security scans, software development lifecycleToday’s organizations are increasingly benefiting from the modernization of the software development lifecycle (SDLC), including the adoption of cloud, DevOps, Agile methodologies, containers and more. Thanks to this modernization, organizations are innovating ...
Software Supply Chain Attacks: How to Disrupt Attackers
Supply chain attacks—compromising an organization via insecure components in its software supply chain—are a growing concern for organizations. Throughout the past three years, an increasing number of open source software package repositories ...
5 Best Practices for Managing Open-Source Components
In today’s connected world, software development environments focus a lot on faced-paced development. Organizations that adopt agile development practices such as DevOps and use Open-Source (OS) software and components to their advantage ...
5 Tips to Eliminate Knowledge Gaps in Dev and QA
To create and release high-quality software, the software development lifecycle (SDLC) was established using different roles and processes designed to work seamlessly together. This approach is of critical importance because it spans ...
CollabNet VersionOne Advances End-to-End DevOps Strategy
Mike Vizard | | business objectives, CollabNet, continuous integration, Continuum, sdlc, software development life cycle, VersionOneAt its Agile 2019 conference, CollabNet VersionOne announced it plans to extend the capabilities of its software delivery and management platforms later this month as part of an effort to provide organizations ...
Software Compliance Teams Can Learn a Lot from DevSecOps
Charlie Klein | | compliance testing, devsecops, integrated development environment, sdlc, software compliance, software development life cycleMany argue that application security should be the responsibility of a security team. However, while security professionals can contribute, developers are usually the only ones with the technical ability to fix software ...
