Showing Blog Posts: 1–10 of 15 tagged DevOps

  • Ben's Book of the Month: Review of "Securing DevOps: Safe Services in The Cloud"

    by Ben Rothke on February 28, 2018

    Last year, one of my book of the month selections was The DevOps Handbook: How to Create World-Class Agility, Reliability, and Security in Technology Organizations (IT Revolution Press 978-1942788003), by Gene Kim, Patrick Debois, John Willis and Jez Humble. As noted at DevOpsSec, the challenge facing DevOps teams today, however, is that incorporating security into their day-to-day work is not…

  • Shift Left or Die: Baking Security into the Software Development Lifecycle is More Critical Than Ever

    by Tony Kontzer on February 27, 2018

    Somewhere along the road to DevOps nirvana that so many organizations have been attempting to follow, security got left behind. You see, a big driver of the need for DevOps is the speed with which organizations crank out software. It turns out it's really easy for software development to run off the rails, turning what should be innovation into unnecessary fiascos that can cost millions to fix, …

  • SecDevOps: The Space Cowboys of the Future

    by RSAC Editorial Team on February 6, 2018

    *Warning this post or embedded links may contain spoilers* Note: This is part two of a five-part monthly series to kick off 2018 in which we take a look at characters from Star Wars Episode VIII: The Last Jedi and how technology, topics, and trends from the cybersecurity world compare to characters and themes from the blockbuster film. We hope you enjoy our blog series in which the…

  • Vulnerability Management in an Elastic World

    by Richard Bussiere on June 14, 2017

    Elastic computing defined The concepts of cloud computing as a utility, DevOps and containerization have combined to enable the deployment of applications and web-based services in a very dynamic way. Often called elastic computing, services can grow or shrink when required. This enables a deployment model that can maintain customer satisfaction in a cost-effective way, which is critical in…

  • Ben's Book of the Month: Review of "The DevOps Handbook: How to Create World-Class Agility, Reliability, and Security in Technology Organizations"

    by Ben Rothke on April 28, 2017

    My first reaction when initially learning about quantum physics was like that of many others - it’s a bizarre concept that makes absolutely no sense. After spending some time delving deeper, did it very slowly start to make sense. For many learning about DevOps for the first time, their response is often the same. It’s a concept that promises far too much and is way too radical a model to work in…

  • AppSec Testing: An Often Overlooked Component of DevOps

    by Tony Kontzer on April 25, 2017

    No matter how much companies learn about the vulnerability of their applications, or how many people are urging them to address those vulnerabilities during development, they still don't seem get the message. Despite the fact that just about every DevOps and AppSec vendor is waxing poetic about the importance of AppSec testing, and independent studies are predicting huge growth for the market, …

  • J. Paul Reed on The Intersection of Release Engineering and Rugged DevOps

    by Mark Miller on April 24, 2017

    This is a review of J. Paul Reed’s’ session at DevOps Connect: DevSecOps at RSAC 2017 Vacuums: Good for cleaning carpets. Not great for teams who need to collaborate. DevOps without collaboration cannot succeed. I’ll guarantee that. In fact, collaboration is fundamental to the cultural changes required for successful DevOps evolutions. Gone are the days of development developing in a vacuum and…

  • Leveraging DevOps for AppSec in Retail

    by Ed Moyle on April 20, 2017

    Application development is in a period of transition; it seems everyone is moving to faster-cycle development paradigms like DevOps and Agile while new release and deployment paradigms like application containers (Docker), platform as a service (PaaS) and microservices simultaneously gain traction. That change is happening everywhere, but in a retail context, there are special considerations that…

  • John Willis on Breaking Bad Equilibrium in DevOps

    by Mark Miller on April 13, 2017

    This is a review of John Willis’ session at DevOps Connect: DevSecOps at RSAC 2017 Definition: Equilibrium - when all competing influences in a system are balanced. In everyday life, we often refer to it as balance - achieving a work-life balance, balancing risk and reward or debt and income. However we say it, achieving equilibrium is key to success in your personal and professional life. …

  • 3 Ways To Empower Developers to Actually FIX Security Vulnerabilities as Part of Their DevOps Workflows

    by Eric Sheridan on April 3, 2017

    Developers have a lot on their plates these days, trying to keep up with the rapid pace of Agile DevOps. With the recent emphasis on application security, organizations now strive to fix web app security vulnerabilities earlier in the SDLC, before apps are deployed in order to lower the risk of potential data breaches. This means that developers now need to fix security vulnerabilities in…

View All


Are you interested in contributing to the RSA Conference blog? Download our 2019 Editorial Calendar for more info. 

This document was retrieved from on Thu, 18 Jul 2019 11:17:44 -0400.