Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Tag: devops security

Pentesting, penetration testing

Elevating DevOps Security: Why Integrating Threat Modeling Transforms Pentesting

| | application security, devops security, pentesting, Risk-based security testing, threat modeling
Do not stop at compliance — embrace threat-driven pentesting and build a security posture that is ready for the real-world threats your organization faces ...
devsecops, applications, devops security policy management Virtual DevSecOps Conference Shifting Left

5 Security Threats DevOps Teams Should Know

| | application security, code scanning, devops security, devsecops, network filtering
DevOps security (DevSecOps) is about breaking down silos and promoting open collaboration across teams ...

A DevOps Guide to the Language of DevSecOps

| | code security, devops security, devsecops, SBOMs, source code security
Security is increasingly important for DevOps due to the growing complexity of applications and the accelerated pace of development. As organizations adopt DevOps practices, they face new challenges in securing applications and ...
Arm connected car security enterprise software development

Security Debt: Speed vs. Common Sense

| | Agile Security, crash, devops security, kubernetes, privileged access management, run time security
A couple years ago, we had some spectacular security events that involved DevOps and Kubernetes, where the managing team simply redeployed containers whenever one crashed. It turned out that many organizations were ...
APIs, API, security, Sonar, vulnerabilities, API, APIs, developers, development, management, tools, API monetization, stack, platform, APIs API Security Summit -- API security -- cybersecurity - Application Programming Interfaces

Securing APIs at the Speed of DevOps

| | APIs, devops security, devsecops, State of DevOps Report
In the 2021 State of DevOps Report, 83% of IT decision-makers told Puppet that their organizations were in the process of implementing DevOps practices to improve the quality of their software, the ...
DevSecOps, open source, Tidelift, DevSecOps Mobb developers security devsecops vulnerabilities DevSecOps Chat - Maximizing the Benefits of DevSecOps

DevOps Chat: Maximizing the Benefits of DevSecOps

| | business value, DevOps Chats, devops security, devsecops, ZeroNorth
When discussing security in DevOps, we often focus on the security tools instead of the DevSecOps process itself. In this DevOps Chat, ZeroNorth CEO John Worrall takes us to the root of ...
con

Container Security

| | container security, devops security, humor, parody, satire, tech humor
...
Snyk DigiCert ReversingLabs vulnerabilities supply chain

Linux Foundation Project Secures Software Supply Chains

| | application security, devops security, Linux Foundation, Software Supply Chain
The Linux Foundation today embraced a sigstore project founded by Red Hat, Google and Purdue University to make it simpler for developers to employ cryptographic software, enabled by transparency log technologies, to ...
API Security DevOps

API Security in DevOps: Are We Too Comfortable?

| | agile, API, devops security, security
Postman performed its annual survey of developers, and as this survey and many other surveys have shown, developers are generally comfortable with the level of API security that their organization has implemented ...
DevSecOps Adoption Web Security Myth

DevSecOps Adoption and the Web Security Myth

| | devops, devops security, devsecops, Legacy Security Solutions, security
As DevOps practices have become widespread in the tech community, many people have begun proclaiming the virtues of DevSecOps. As the name implies, DevSecOps is the addition of security into DevOps. Just ...
Traits-Define-DevSecOps

6 Traits That Define DevSecOps

| | agile development, devops security, devsecops, security automation, shift left
How do we define DevSecOps? A combination of DevOps and security is readily apparent, but the philosophy goes much deeper. In a recent eBook, The State of DevSecOps, we asked industry experts ...
The DevOps Security Stack

The DevOps Security Stack

| | app security, application security, automation, cloud-native apps, CWP, devops security, devsecops, Symantec Cloud Workload Protection
The whole idea behind DevOps is automation. DevOps automates the development process by eliminating or minimizing human error. If an error occurs, the applications fail quickly so the errors can be resolved ...
Show More