DevSecOps

The Software Extinction Event That Wasn’t

Jens Eckels | August 2, 2024 | Cybersecurity, github, jfrog, Python

The world may have just avoided a cybersecurity disaster, with potential impact of CrowdStrike x1000. Imagine if the world’s most pervasive programming language, used in the majority of organizations, services, websites and ...

someone typing on a keyboard, DevOps news

Sumo Logic Previews GenAI Tool to Improve DevSecOps Observability

Mike Vizard | May 8, 2024

Sumo Logic this week at the RSA Conference previewed a copilot that leverages generative artificial intelligence (AI) to make it simpler for IT and cybersecurity professionals of varying levels of experience to ...

DevsecOps software supply chain data, pipelines, data lineage

Securing the DevOps Pipeline: Tools and Best Practices

Gilad David Maayan | February 27, 2024 | CI/CD, DevOps pipeline, devsecops, security, supply chain

Because of the critical nature of the DevOps pipeline, security is becoming a top priority. Here's how to integrate DevSecOps ...

devsecops, applications, devops security policy management Virtual DevSecOps Conference Shifting Left

5 Security Threats DevOps Teams Should Know

Gilad David Maayan | January 25, 2024 | application security, code scanning, devops security, devsecops, network filtering

DevOps security (DevSecOps) is about breaking down silos and promoting open collaboration across teams ...

OpenStack, framework, deployment LaunchDarkly OpsMX Microsoft Azure Linux Kernel New Relic GreenLake

Software Deployment Security: Risks and Best Practices

Gilad David Maayan | November 2, 2023 | CI/CD, code tampering, deployment, deployment security, devsecops

In an era where software is at the heart of every business, deploying applications securely and efficiently has never been more critical. ...

The Differences Between DevOps, DevSecOps and SRE

Mariusz Michalowski | August 24, 2023 | best practices, devops, devsecops, software development, SRE

DevOps, DevSecOps and SRE are all quickly gaining traction within the tech world due to their effectiveness and promise of reliability for companies. Each framework provides various levels of safety and scalability—DevOps ...

crowdtesting New Relic testing Applause DevOps DAST Applause testing

Shift Left With DAST: Dynamic Testing in the CI/CD Pipeline

Gilad David Maayan | July 18, 2023 | application security, CI/CD, continuous testing, DAST, pipeline security

By focusing on application security like an attacker would, DAST can discover potential security threats that static testing methods might miss ...

The Role of SBOMs in Software Supply Chain Security

Doug Dooley | May 23, 2023 | APIs, devsecops, SBOMs, software development, Software Supply Chain Security

The software supply chain has become increasingly complex and dynamic with the rise of cloud computing, open source software and third-party software components and APIs. Widespread damage can occur if third-party APIs, ...

A DevOps Guide to the Language of DevSecOps

Gilad David Maayan | April 7, 2023 | code security, devops security, devsecops, SBOMs, source code security

Security is increasingly important for DevOps due to the growing complexity of applications and the accelerated pace of development. As organizations adopt DevOps practices, they face new challenges in securing applications and ...

RBAC, access, JIT, permission, permission management, Just-in-time, access permissions strongDM

Watching the Watchers: Solving the Problem of Meta-Permissions

Or Weis | February 15, 2023 | access control, Authorization, DevSec, permissions, RBAC

The move to the cloud and microservices has introduced new challenges in managing permissions. Software has been broken down into small, independently-deployable microservices, each with its own unique set of permissions. These ...

DevOps Done Right: How to Succeed in DevOps From Day One

Veronica Haggar | February 14, 2023 | DevOps 101, devops adoption, DevOps careers, DevOps done right, DevOps engineers, DevOps event, DevOps Onramp, Upskilling DevOps, virtual summit

Whether you are diving into DevOps for the first time or trying to do it right this time, DevOps Onramp provides all the information you need for a successful DevOps journey. Join ...

A DevSecOps Process for Node.js Projects

Gilad David Maayan | January 23, 2023 | application development, devsecops, JavaScript, node.js, web development

Node.js is an open source development platform for running JavaScript code on the server side. Node is useful for developing applications that require a persistent browser-server connection and is often used for ...