DevSecOps

Latest Release of Wind River Studio Delivers Transformational Automation Technologies Across the Intelligent Systems Lifecycle

Jul 20, 2021 By Wind River

Latest release of Wind River Studio provides customizable automation engine, digital feedback loop, enhanced security, analytics with machine learning capabilities, and DevSecOps pipeline.

Read Post

Read more about Latest Release of Wind River Studio Delivers Transformational Automation Technologies Across the Intelligent Systems Lifecycle

How to Establish a Culture of Secure DevOps

Jul 16, 2021 By Chris Kranz In Sysdig

We’re constantly told to “Shift Left” and that Secure DevOps is the only way to have confidence in your cloud native applications. But speaking to end-users and industry colleagues, it’s clear that there are some major challenges in adopting Secure DevOps. If we read our history books, we know that DevOps wasn’t successfully adopted by buying tools, and a true cultural movement towards DevOps wasn’t established by having a small dedicated team of DevOps specialists.

Read Post

Sysdig

Read more about How to Establish a Culture of Secure DevOps

Resilience, DevSecOps, and other key takeaways from RSAC 2021

Jul 15, 2021 By Huxley Barbee In Datadog

For the first time in its 30-year history, the 2021 RSA Conference was a virtual-only event, and not in its usual time during the spring. But, with 20,000 registrants joining for the various sessions, it was a testament to this year’s conference theme of resilience.

Read Post

Datadog

Read more about Resilience, DevSecOps, and other key takeaways from RSAC 2021

Measure your DevSecOps maturity with Datadog's self-assessment

Jul 13, 2021 By Andrew Krug In Datadog

With DevOps teams moving at ever greater speed, it’s vital for security teams to be deeply involved at all stages of the software development and delivery lifecycle. Breaking down silos between development, operations, and security teams ensures that security considerations are not overlooked, that vulnerabilities are caught early, and that security checkpoints do not slow down the delivery process.

Read Post

Datadog

Read more about Measure your DevSecOps maturity with Datadog's self-assessment

JFrog And Red Hat DevSecOps Security Series

Jul 6, 2021 By JFrog In JFrog

Accurately detecting and mitigating security vulnerabilities is critical for any enterprise. JFrog’s ongoing collaboration with Red Hat provides the DevOps community with enterprise-grade DevSecOps capabilities, enabling you to deliver high-quality, and more secure software, anywhere. As part of the Red Hat DevSecOps Security Series, Join us on July 1st for JFrog & Red Hat’s perspective on application analysis and how JFrog’s recently achieved Vulnerability Scanner Certification helps identify vulnerabilities in applications, images and configurations early in your lifecycle.

View Video

JFrog

Read more about JFrog And Red Hat DevSecOps Security Series

DevSecOps is a practice. Make it visible

Jun 30, 2021 By JFrog In JFrog

Security should be embedded in DevOps by default, but for many organizations, it is not. Enter “DevSecOps”. What is DevSecOps? It is a practice to build more secure applications, secure the software factory, and secure cloud workloads. Because it is a practice it needs to be visible. In this session hear about the ways tech-enabled enterprises approach a DevSecOps practice, how they make it visible, and how Splunk + JFrog can accelerate your journey.

View Video

JFrog

Read more about DevSecOps is a practice. Make it visible

The Biggest DevSecOps Hits From swampUP 2021

Jun 24, 2021 By Paul Garden In JFrog

In the wake of recent events like the SolarWinds hack and the White House executive order on cybersecurity, DevSecOps and security are top-of-mind for most DevOps and security professionals. How to efficiently adapt or adopt a sound DevSecOps practice has become a priority, especially with the U.S. government’s impending mandate requiring software applications to be vetted, and to create a trusted Software Bill Of Materials (SBOM) for each one.

Read Post

JFrog

Read more about The Biggest DevSecOps Hits From swampUP 2021

Drive DevSecOps Visibility with JFrog Partner Integrations

Jun 23, 2021 By John Peterson In JFrog

If you need your teams to act, you need to alert them where they’re already looking. Yet yesterday’s DevOps practices demand individuals to wrangle with uncorrelated events, multiple UIs, and siloed technologies. Tomorrow’s DevOps must enable teams with: To practice DevSecOps, you’ll need to know where a vulnerable build has been deployed into production, and where to find the corrected build that should replace it.

Read Post

JFrog

Read more about Drive DevSecOps Visibility with JFrog Partner Integrations

Upgrading DevSecOps with compliance automation - Bryan Langston, Mirantis

Jun 11, 2021 By Tigera In Tigera

Compliance automation is a commonly overlooked area of Kubernetes observability. The question is: how do you automate compliance to a security framework that isn’t well understood by DevSecOps teams to begin with? This lack of understanding contributes to mismanaged compliance efforts and in a worst-case scenario, audit exposures and organizational risk. This talk will walk through an example of how to 1) map compliance controls to specific Kubernetes technical configuration 2) automate the assessment of those controls 3) visualize the assessment results. DevSecOps teams will better understand how to incorporate compliance automation alongside security automation.

View Video