Reducing Risk in Applications Using Docker Containers

May 2, 2018 by Derek E. Weeks 1 Comments

Docker. It seems like in this day and age you are either using Docker containers or you are going to use Docker containers. If you haven’t jumped on the bandwagon yet, check out a previous article, “Docker: The New Ordinary.” If you are on the wagon or are thinking about it but have concerns about […]

You Build It, You Secure It: Higher Velocity and Better Security with DevSecOps

February 16, 2018 by Deborah Schalm 0 Comments

It’s 30 times cheaper to fix a security defect in Development vs. Production, yet Security is often treated as an afterthought and a bottleneck. It doesn’t have to be that way. DevSecOps practices build security and quality into the software delivery process by making EVERYONE responsible for security at every stage. Join John Willis, Electric […]

Akamai Extends Scope of DevSecOps Reach

April 17, 2018 by Mike Vizard 0 Comments

Akamai pressed its case for becoming a strategic DevSecOps platform by adding a range of security capabilities to its network service platform that help isolate applications from cybersecurity threats. The company has added support for scripting to automate application security using its Kona Site Defender web application firewall as well as improved management and versioning […]

Security, Policy & Drift – Getting Database Risk Under Control in Release Automation

April 2, 2018 by Deborah Schalm 0 Comments

Major database errors remain a prominent problem for enterprises, across all industries. In a recent study conducted by DBmaestro, nearly 50% of respondents reported experiencing a major database error or crash in the past 3 months. As more and more organizations move toward Agile processes and more frequent deployments, how can DevOps best practices be […]

Building a Solid Foundation for Microservices Security

March 27, 2018 by Horacio Duran 1 Comments

It’s often true that threats evolve faster than development practices and technologies can keep up with, which can be seen in the current microservices approach to application development. While microservices bring clear benefits to developers by enabling application deployment via modular, independently deployable services, they also open the door to new security vulnerabilities. Consequently, these […]

DevSecOps: Don’t Invest In Hope

March 23, 2018 by Derek E. Weeks 0 Comments

A successful DevSecOps approach is rooted in action, not hope. There is a lot of investment in hope. I hope we won’t get breached. I hope our DevOps teams aren’t deploying thousands of vulnerable containers. I hope our developers aren’t downloading millions of vulnerable open source components. I hope our developers and security teams will […]

Barracuda Networks Survey: DevSecOps Is Hard

March 22, 2018 by Mike Vizard 1 Comments

Organizations that have adopted DevSecOps processes may be making progress when it comes to improving cybersecurity, but it’s far from easy. A survey of 618 IT decision-makers conducted by Dimensional Research on behalf of Barracuda Networks, a provider of IT security software and appliances, finds half have adopted either DevOps, DevSecOps or a continuous integration/continuous […]

Integrating Security into your Development Pipeline

March 7, 2018 by Deborah Schalm 0 Comments

One of the biggest challenges of adopting containerization is fast and effective vulnerability management. In this webinar, we will examine how containers and image vulnerability assessment can be integrated into DevSecOps tools and processes. We will discuss integrating tools like Jenkins, Chef, and Puppet into the DevSecOps toolchain, and explore the tools that will help DevOps […]