DevSecOps in the Enterprise

By Curtis Yanko | Development, Security and Ops news channel because it's all connected these days. By any other name, Rugged DevOps or SecDevOps you need to be thinking and collaborating holistically. From Software Supply Chain Management to protecting data in Prod.

Continuous Integration in the Age of Containers - Part 1

When I was running a DevOps team back in 2012 BC (before containers) we had learned some powerful lessons. One of those lessons, as we got some …

New Report from CA Veracode Reveals Business Leaders Only Address Cybersecurity Under Duress

BURLINGTON, Mass. and LONDON, Dec. 11, 2017 (GLOBE NEWSWIRE) -- Veracode, Inc., a leader in securing the world’s software, and acquired by CA …

Digital transformation lessons from 3 DevOps leaders

In just a few years, DevOps has evolved from a grassroots effort aimed at transforming the way systems are developed and deployed in early-adopter …

How cybersecurity solutions can help with GDPR compliance

Technical (protection) measures, means, technologies, rules and resources are mentioned multiple times throughout the GDPR text. The Regulation does …

The DevOpsGuys DevOps Advent Calendar | DevOpsGuys

As part of the Christmas celebrations DevOpsGuys have created The DevOps Advent Calendar where a new learning point will be shared everyday until …

First US Federal CISO Shares Security Lessons Learned

Greg Touhill's advice for security leaders includes knowing the value of information, hardening their workforce, and prioritizing security by …

Developer experience as the new differentiator | Technology Radar Vol.16

Mitigate Digital Transformation Cybersecurity Risk With 'DevSecOps'

Achieving customer value with any digital transformation initiative requires an organizational and cultural shift across the enterprise to align people’s efforts with customer priorities.<p>We see such cultural change in software development shops in particular, as DevOps becomes the standard approach …

Cybersecurity

The Unwritten Rules for Github by devdiscuss

A while back a #devdiscuss post by @ThePraticalDev sparked a great discussion on the advice users have for getting the most out of Github. Either for …

Minimizing Risk and Improving Security in DevOps

Organizations today are utilizing DevOps to accelerate the software development and deployment space with the goal of releasing better quality …

White House Releases New Charter for Using, Disclosing Security Vulnerabilities

Updated Vulnerability Equities Process provides transparency into how government will handle new vulnerabilities that it discovers in vendor products …

Report: 60% of developers lack confidence in their app security, but don't take steps to fix it

Many developers ignore the code review process or don't review their code thoroughly enough, according to a report from NodeSource and …

How to begin the transition to DevOps with a dedicated team

Throughout our previous posts, we have seen what motivates a company to adopt a DevOps approach, starting with the organisational transformation and …

Data Breach Record Exposure Up 305% from 2016

There have been 3,833 publicly disclosed data breaches in the first nine months of 2017, exposing more than seven billion records.<p>The Equifax and …

Cybersecurity

The Results of Google's Team-Effectiveness Research Will Make You Rethink How You Build Teams

Why hiring the best and brightest might not be enough.<p>It's no surprise that Google, now part of Alphabet, loves data, and the company's execs frequently share the revelations they find, such as their insights on mobile web use. But some of us would be surprised to discover that this unicorn company …

Leadership

7 Non-Technical Skills You Need To Succeed In A DevOps Career

DevOps (“development” meets “operations”) is still an evolving field. Asked for a definition, even some in other technical roles might struggle to pin it down. The best way to think of it, though, is less as a specific collection of skills necessary for a specific role, and more as a culture or …

DevOps

5 DevOps Cultural Challenges Infographic

When it comes to digital transformation, it is often said that people and culture determine its success- not technology.<p>So what impact does the …

Equihax: Identifying Wrangling Vulnerabilities

Now that we know what was taken from Equifax, how it was taken, and what is being sold, what more do we need to learn before the next time?<p>Equifax …

Cybersecurity

3 DevSecOps tenets: How to deliver security from day one

DevOps presents an unprecedented opportunity for security teams to engage with developers and IT Ops to deliver high-quality, secure software to …

How your security budget helps hackers win

When a single breach can cause untold damage to your business, from millions in losses to reputational damage, operational disruption, and lost …

Cybersecurity

Keep calm, fix your data strategy and be GDPR compliant

How to run a kick ass business that complies with all governmental regulations at the same time? Reed this blog, keep calm and be GDPR compliant.

Why IT departments must reinvent themselves: Part 2

In my last blog, I tried to explain the factors that impact the direction that IT departments need to take to stay relevant in the current business …

Management

How to Maintain Security when Rolling out DevOps

DevOps may be up and running for your enterprise. Taking the time to integrate security will keep it that way.<p>While DevOps is relatively new to …

Business Technology

Why Isn’t Agile Working?

A couple drawings…<p>I was visiting a relative a couple years ago. My poor cousin (the CEO of an insurance company) had been sold the Agile Silver …

Under the Hood: An Intro to Kubernetes Architecture

A 101 on Kubernetes Components and How They All Work TogetherIf you’re making the move to containers, you’ll need a container management platform. …

DevOps

A Comparison of Linux Container Images

Background<p>Going back to basics, there are two major parts of an operating system – the kernel and the user space. The kernel is a special program …

DevOps

10 Time-Consuming Tasks Security People Hate

Whether it is dealing with false positives, reporting to auditors, or patching software, here's the scut work security people dread.<p>1 of 11<p><i>Image</i> …

Information Security

Why IT projects still fail

Despite new methodologies and management techniques meant to head off spectacular failures, critical technical initiatives still fall flat at an …

Project Management

DevOps requires dumping old IT leadership ideas

Some IT leaders see DevOps and agile practices simply as a way to run their software projects. If you look at DevOps in this narrow way, you miss the …

DevOps