The last frontier of your security footprint lies in the applications you create. Since the production application is often the most secure state, attacks have focused on applications in development and pre-production application infrastructure. But a DevSecOps approach can help shift security left. As engineers, we are under the gun ... Read More

Site reliability engineering incorporates aspects of software engineering and applies them to infrastructure and operations problems to create scalable and highly reliable software systems. It’s a methodology that in many ways is complementary to DevOps, but are SRE and DevOps on parallel tracks or do they intersect and overlap? The ... Read More

Value stream management (VSM) shares a drive for efficiency with DevOps. Both VSM and DevOps look to identify and remove bottlenecks in software development and delivery to increase operational efficiency and collaboration. However, VSM and DevOps are guided by different metrics. VSM focuses on the efficiency of the flow of ... Read More

The Value Stream Management Consortium released its inaugural State of Value Stream Management Report in July. The research showed how higher-performing organizations are using VSM to accelerate digital transformation ... Read More

As companies embrace cloud native technologies as part of their digital transformation, security is seen as a key factor for success. To successfully secure cloud-native applications, IT teams must rethink, strategize, and transform how to defend against security risks. The motivation of improved software velocity and the improvements within the ... Read More

Cloud native and Kubernetes service ownership enables teams to improve security, accountability, reliability, and make continuous improvements to applications and services because any sufficiently large organization cannot gate keep everything through an Ops team. And with all the talk in security circles about DevSecOps and the need to “shift left”, ... Read More

Infrastructure as Code (IaC) provides a way to automate and manage Kubernetes cluster deployments. But are these IaC deployments secure from hackers? Or, how can security be built into the deployment using IaC? ... Read More

When you use open source components in your applications, you increase the speed of development, but you need to be aware of the risks involved. Addressing vulnerabilities and license compliance with DevSecOps is a scalable way to improve the posture of your applications ... Read More

Businesses are aggressively modernizing their infrastructure to accommodate digital transformation. Much of this has been enabled by migration to the cloud, where services like AWS have made infrastructure available within seconds. To capitalize on this, companies are adopting DevOps practices and culture to increase the speed at which software services ... Read More

Earnin has a small DevOps team - to count them, you don’t even need to use all five fingers. But with an engineering team of over 100, two monolithic applications, 40+ microservices and 80 pipelines, they needed to supersize themselves ... Read More