devsecops - Tagged - DevOps.com Where the world meets DevOps Fri, 20 Dec 2024 16:03:59 +0000 en-US hourly 1 https://devops.com/wp-content/uploads/2021/10/android-chrome-256x256-1-130x130.png devsecops - Tagged - DevOps.com 32 32 144979424 Best of 2024: Securing the DevOps Pipeline: Tools and Best Practices https://devops.com/securing-the-devops-pipeline-tools-and-best-practices-2/ Fri, 27 Dec 2024 20:00:19 +0000 https://devops.com/?p=174763 DevsecOps software supply chain data, pipelines, data lineageDevsecOps software supply chain data, pipelines, data lineageBecause of the critical nature of the DevOps pipeline, security is becoming a top priority. Here's how to integrate DevSecOps.]]> 174763 Sonar Acquires Tidelift to Extend DevSecOps Reach Into Open Source Software https://devops.com/sonar-acquires-tidelift-to-extend-devsecops-reach-into-open-source-software/ Tue, 17 Dec 2024 17:53:18 +0000 https://devops.com/?p=174700 Tidelift, DevSecOps, code, open source, AWS, devsecops, Digital.ai DevSecOps business SDLC Integrating Security in the Development Process with DevSecOpsTidelift, DevSecOps, code, open source, AWS, devsecops, Digital.ai DevSecOps business SDLC Integrating Security in the Development Process with DevSecOpsSonar today revealed it has agreed to acquire Tidelift to gain access to third-party open-source code that it plans to integrate into its static code analysis tools.]]> 174700 OpenText Allies With Secure Code Warrior to Improve Application Security https://devops.com/opentext-allies-with-secure-code-warrior-to-improve-application-security/ Tue, 17 Dec 2024 07:40:14 +0000 https://devops.com/?p=174679 DevSecOps, OpenText, Process, DevSecOps, ASPM, Cycode SecOps GitLab Quali SigStore OWASP DevSecOps vulnerabilities security Pulumi DevSecOps Analyzing Code for Security VulnerabilitiesDevSecOps, OpenText, Process, DevSecOps, ASPM, Cycode SecOps GitLab Quali SigStore OWASP DevSecOps vulnerabilities security Pulumi DevSecOps Analyzing Code for Security VulnerabilitiesOpenText has partnered with Secure Code Warrior to make it simpler for application developers to learn best DevSecOps practices as needed.]]> 174679 DevSecOps “Friends”, Webinar Series: The One with Platform Engineering (and the Happy Developers) https://devops.com/webinars/devsecops-friends-webinar-series-the-one-with-platform-engineering-and-the-happy-developers/ Tue, 10 Dec 2024 16:00:00 +0000 https://devops.com/?post_type=tribe_events&p=174147 DevSecOps “Friends”, Webinar Series: The One with Platform Engineering (and the Happy Developers)DevSecOps “Friends”, Webinar Series: The One with Platform Engineering (and the Happy Developers)Join us for a DevSecOps “Friends” webinar series where we explore the ins and outs of DevSecOps. We’ll dive deep into key topics, from platform engineering to the role of AI, all while navigating the intricacies of modern software development (and maybe sharing a coffee or two at the digital “central perk” along the way). […]]]> 174147 AWS Adds Declarative Policies Capability to Reduce DevSecOps Friction https://devops.com/aws-adds-declarative-policies-capability-to-reduce-devsecops-friction/ Thu, 05 Dec 2024 18:13:04 +0000 https://devops.com/?p=174425 Tidelift, DevSecOps, code, open source, AWS, devsecops, Digital.ai DevSecOps business SDLC Integrating Security in the Development Process with DevSecOpsTidelift, DevSecOps, code, open source, AWS, devsecops, Digital.ai DevSecOps business SDLC Integrating Security in the Development Process with DevSecOpsAmazon Web Services (AWS) this week added a declarative policies capability that promises to reduce the level of DevSecOps friction that far too many software engineering teams continue to encounter.]]> 174425 Mastering DevSecOps in 2024: Insights on AI-Driven Security https://devops.com/webinars/mastering-devsecops-in-2024-insights-on-ai-driven-security/ Thu, 05 Dec 2024 18:00:00 +0000 https://devops.com/?post_type=tribe_events&p=173551 Mastering DevSecOps in 2024: Insights on AI-Driven SecurityMastering DevSecOps in 2024: Insights on AI-Driven Security  This year’s DevSecOps report defines a vivid image of organizations’ journey to secure their software development pipelines. It provides intriguing conclusions about operational challenges, AppSec efficiency, and evolving risk exposure amid the rise of AI-assisted development. Did you know that although 85% of respondents have some measures in place to address the challenges posed […]]]> 173551 The Importance of Database Release Automation Platforms in the Era of Digital Transformation https://devops.com/the-importance-of-database-release-automation-platforms-in-the-era-of-digital-transformation/ Tue, 03 Dec 2024 15:46:04 +0000 https://devops.com/?p=174379 automation, platforms, DevOpsautomation, platforms, DevOpsThe path to efficiency, security and confidence in database operations lies in leveraging advanced automation platforms.]]> 174379 How an Effective AppSec Program Shifts Your Teams From Fixing to Building https://devops.com/how-an-effective-appsec-program-shifts-your-teams-from-fixing-to-building/ Mon, 02 Dec 2024 13:55:48 +0000 https://devops.com/?p=174365 devsecops, developers, appsec, tool, appsec, Bionic modernization DevSecOps AppSec Cortex materialized view SIEMdevsecops, developers, appsec, tool, appsec, Bionic modernization DevSecOps AppSec Cortex materialized view SIEMDevelopment teams are under growing pressure to build cutting-edge applications with shorter development lifecycles. However, they are often slowed down by the growing burden of fixing security vulnerabilities. Ineffective application security processes mean these teams can spend more time firefighting than building, diverting focus from their primary objective: Delivering innovative, high-performance software. Yet, healthy security […]]]> 174365 Microsoft Enlists Endor Labs to Integrate SCA Tool with CNAPP https://devops.com/microsoft-enlists-endor-labs-to-integrate-sca-tool-with-cnapp/ Mon, 25 Nov 2024 13:59:40 +0000 https://devops.com/?p=174306 microsoft, endor, Sysdig NetApp Spotmicrosoft, endor, Sysdig NetApp SpotMicrosoft has tapped Endor Labs to incorporate a software composition analysis (SCA) tool into its cloud-native application protection platform (CNAPP).]]> 174306 Ensuring the AppSec and API Security Strategy Meets the Moment https://devops.com/webinars/ensuring-the-appsec-and-api-security-strategy-meets-the-moment/ Wed, 06 Nov 2024 18:00:00 +0000 https://devops.com/?post_type=tribe_events&p=172293 Ensuring the AppSec and API Security Strategy Meets the MomentEnsuring the AppSec and API Security Strategy Meets the MomentDevelopers and engineering leaders understand that effectively implementing application and API security is crucial. This webinar, hosted by Techstrong on September 17th at 1 PM ET, will delve into the critical issues of application and API security investment levels and how these buttress critical strategies and developer training to better secure the enterprise. With so […]]]> 172293