The Wayback Machine - https://web.archive.org/web/20191028192546/https://devops.com/category/blogs/devsecops/

DevOps.com

Where the world meets DevOps

DevSecOps

Mobile App Security

Why Mobile App Security is Like a Rubik’s Cube

| | mobile app security, mobile applications, no-code security
Now more than ever, mobile applications are driving modern business, and developing and launching them are top priorities for companies across industries. As of 2018, more than 194 billion applications had been ...
Kubernetes

Kubernetes and Service Mesh With StackRox

| | container security, kubernetes, service mesh, StackRox
DevOps and Kubernetes enable organizations to "go with security," adding security to the code instead of on top of it. In other words, security is built-in rather than bolted on. This is ...
Applying Secrets Management to DevOps

Applying Secrets Management to DevOps

| | devsecops, PAM, privileged access management, secrets management
DevOps has changed the way enterprises operate, allowing for quick and efficient product development. In order for companies to keep up with market competition, many companies that are not structurally prepared to ...
What Developers Must Know About Threat Modeling

What Developers Must Know About Threat Modeling

| | application security, development team, risk management, threat modeling, threat monitoring
Threat modeling is a process that far few developers seem to pursue, but it is a process that helps you and your team to model all potential threats to your application. Essentially, ...
The New Era of Kubernetes, With StackRox

The New Era of Kubernetes, With StackRox

| | container security, kubernetes, microservices, StackRox
Orchestrators are becoming the operating systems of cloud for the future. Which one do you think has become the dominant one? Ali Golshan, co-founder and CTO of StackRox, placed his bet on ...
Trend Micro

Trend Micro Partners With Snyk to Advance DevSecOps

| | alerting, API, devsecops, shift left, Snyk, Trend Micro, virtual patches
Trend Micro today announced an alliance with Snyk through which alerts about vulnerabilities in open source code will be passed on to the tools Trend Micro makes available to apply virtual patches ...
WhiteSource

WhiteSource Extends DevSecOps Reach

| | CI/CD, continuous integration, devsecops, IDE, security, WhiteSource
WhiteSource has extended its platform that enables developers to more easily address application security issues to provide integrations with GitLab Core and integrated development environments (IDEs) based on the open source Eclipse ...
DevSecOps

ESG Survey Sees Long DevSecOps Road Ahead

| | devops, devsecops, ESG, security, survey
A study published by Enterprise Strategy Group (ESG) in collaboration with Data Theorem, a provider of tools for securing application programming interfaces (APIs) and mobile applications, finds that while a lot of ...
Survey DevSecOps DevOps Security

Survey: DevSecOps Easier Said Than Done

| | circleCI, devsecops, DevSecOps adoption, Puppet, Splunk, survey
While there’s clearly a lot of interest in best DevSecOps processes, a survey of more than 3,000 DevOps practitioners suggests adopting DevSecOps will require a lot of patience and perseverance. The "2019 ...
Implementing DevSecOps Goes Beyond Technology

Implementing DevSecOps Goes Beyond Technology

| | automation, data-driven, devops teams, devsecops, secure code, security scans
While technology is crucial for implementing DevSecOps, it is the people, processes and culture that drive it forward. As recently as last year, a survey found 58% of technology leaders cited existing ...