Operations | Monitoring | ITSM | DevOps | Cloud

mezmo

ESG research: leveraging observability data for DevSecOps

Aug 16, 2022 By Mezmo In Mezmo

There’s a call throughout the industry to shift security left in the software development lifecycle, expanding the DevOps methodologies that have been growing in adoption for more than a decade. DevSecOps is based on the idea that security is not an afterthought. Rather, it is a collaborative process that must be integrated from the start of the development process.

Read Post
puppet

Puppet and Government: DevSecOps in government environments

Jun 7, 2022 By Melissa Palmer In Puppet

This blog is the second in a four-part series about how Puppet can help government agencies meet compliance and security requirements. Read the first post here. Zero Trust is a strategy created to combat system intrusions through a “never trust, always verify” model. DevSecOps is a collaborative software development strategy that integrates development, security, and operations practices into a continuously evolving lifecycle.

Read Post
jfrog

JFrog Connect: Ready for What's Next for DevSecOps, Edge and IoT

May 25, 2022 By Amit Ezer In JFrog
Today at swampUP, our annual DevOps conference, JFrog CTO Yoav Landman unveiled the next step toward making the Liquid Software vision of continuous, secure updates a truly universal reality. We’ve introduced JFrog Connect, a new solution designed to help developers update, manage, monitor, and secure remote Linux & Internet of Things (IoT) devices at scale.
Read Post
InvGate

The Top 10 Best DevSecOps Tools for 2022

May 11, 2022 By Steve Manjaly In InvGate
Over the last decade or so, we have seen organizations competing to rapidly launch products and new updates. This also often meant that information security lagged behind, as evinced by the fact that we have seen many companies facing major breaches and attacks over the last couple of years. The DevOps approach which focused on rapid development proved ineffective for robust security. This is where DevSecOps emerged. In this article, we explore the concept of DevSecOps and the top ten DevSecOps tools.
Read Post
cloudsmith

Understanding and Implementing a Software Bill of Materials

Apr 6, 2022 By Alan Carson In Cloudsmith

Software programs today can be likened to a complex stew, with multiple ingredients sourced from disparate places. In software, open-source tools are a major ingredient. According to the 2020 Open Source Security and Risk Analysis (OSSRA) report produced by the Synopsys Cybersecurity Research Center, 99 percent of the codebases contain at least one open source component, with open source comprising 70 percent of the code overall.

Read Post

Shifting Left for DevSecOps Success

Mar 11, 2022 By JFrog In JFrog
Catch this session to see exactly what does “shift left” security mean? More importantly, how does this strategy affect a developer’s workflow? In this workshop we walk attendees through the steps of setting up an end-to-end DevSecOps solution to automate your build artifact storage, vulnerability detection, testing, and deployment. Lastly, attendees learn how to take advantage of JFrog’s IDE integration and JFrog XRay to increase your confidence in the security of your application, all within a freely available DevSecOps environment!
View Video
jfrog

Shifting Left for DevSecOps Success

Mar 10, 2022 By Bill Manning In JFrog
Not long ago, developers built applications with little awareness about security and compliance. Checking for vulnerabilities, misconfigurations and policy violations wasn’t their job. After creating a fully-functional application, they’d throw it over the proverbial fence, and a security team would evaluate it at some point – or maybe never. Those days are gone – due to three main shifts.
Read Post
Sponsored Post
Torq

ITOps vs. SecOps vs. DevOps vs. DevSecOps

Mar 2, 2022 By Chris Tozzi In Torq
ITOps, SecOps, and DevOps may sound similar. Indeed, they are similar - to a degree. But they have different areas of focus, different histories, and different operational paradigms. Keep reading for an overview of what ITOps, SecOps, and DevOps mean and how they compare. We'll also explain where DevSecOps fits into the conversation - and why you shouldn't worry so much about defining these terms perfectly as you should about finding ways to operationalize collaboration between your various teams.
Read Post
chaossearch

Talent Shortage 2022: Stretching Your Lean DevSecOps Team

Jan 27, 2022 By George Hamilton In ChaosSearch
The cybersecurity talent shortage is real. As of December 2021, a job-tracking database from the U.S. Commerce Department showed nearly 600,000 unfilled cybersecurity positions. And a 2021 study found that 57% of cybersecurity professionals worked at organizations that have been directly impacted by the cybersecurity talent shortage. Even so, many organizations want to “shift security left” or build security best practices earlier into the software development lifecycle (SDLC).
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.