InfoQ Homepage DevSecOps Content on InfoQ
-
/articles/devops-cloud-security/en/smallimage/iLukXSvI-1650439607166.jpg)
The Role of DevOps in Cloud Security Management
Different areas of cloud security must be examined to strengthen security in the cloud versus security of the cloud. This includes identifying requirements, defining the architecture, analyzing controls, and identifying gaps. Security must be both proactive and reactive, so it needs to be considered in every step of development.
-
/articles/mobile-devsecops/en/smallimage/logo-1633952211346.jpg)
Mobile DevSecOps Is the Road to Mobile Security
In this article, I’ll discuss some of the most common security deficiencies in mobile apps and explain the potential risks to consumers, app developers, and brands, as well how to break the cycle of poor app security, using automated, rapid, continuous, and iterative deployment.
-
/articles/DevSecOps-shiftleft-cybersecurity/en/smallimage/logo-1632922735916.jpg)
Virtual Panel: DevSecOps and Shifting Security Left
Recent attacks, that targeted SolarWinds, Colonial Pipeline, and others, have shown that development environments come ever more frequently on the radar of malicious actors. A virtual panel on the value of shifting left security, how to take responsibility for it, and the time-to-market pitfalls.
-
/articles/devsecops-supply-chain/en/smallimage/devsecops-key-to-securing-your-supply-chain-small-image-1626439698918.jpg)
DevSecOps: the Key to Securing Your Supply Chain in a Multi-Cloud Threatscape
Recent supply chain attacks require businesses to re-evaluate their approach to DevOps, specifically as it relates to security. The DevSecOps focus CI/CD platforms, testing and scanning across the SDLC, and a focus on minimizing manual efforts can not only improve security postures but also improve delivery of business value.
-
/articles/devops-and-cloud-trends-2021/en/smallimage/InfoQ-Trend-Report-logo-small-1626083029076.jpg)
DevOps and Cloud InfoQ Trends Report - July 2021
This article summarizes how we see the "cloud computing and DevOps" space in 2021, which focuses on fundamental infrastructure and operational patterns, the realization of patterns in technology frameworks, and the design processes and skills that a software architect or engineer must cultivate.
-
/articles/danske-bank-devsecops-evolution/en/smallimage/logo-1624376754166.jpg)
Danske Bank’s 360° DevSecOps Evolution at a Glance
This article provides an overview of the ongoing DevSecOps evolution at Danske Bank, positioned within the broader transformation that the firm is performing. The main enablers and motivating factors of the evolution are outlined, with challenges discovered. The high level overview of the DevSecOps operating model, together with anti-patterns discovered and main lessons learned concludes it.
-
/articles/oerhlich-devops-culture/en/smallimage/eveline-oerhlich-on-building-an-effective-devops-culture-small-1621521013730.jpg)
Q&A with Eveline Oerhlich on Building an Effective DevOps Culture
The DevOps Institute recently released their latest report entitled "Upskilling 2021: Enterprise DevOps Skills Report". The report found that automation and security remain vital to business success. A focus on building the human skills of DevOps was also identified as companies with the best learning cultures were most likely to succeed.
-
/articles/conference-recording-recommendations-2019/en/smallimage/infoq-conference-recording-recommendations-2019-small-1575390422291.jpg)
InfoQ Editors' Recommended Talks from 2019
As part of the 2019 end-of-year-summary content, this article collects together a list of recommended presentation recordings from the InfoQ editorial team.
-
/articles/cloud-security-practices-gerg/en/smallimage/Improving-Security-Practices-Cloud-Age-QA-Christopher-Gerg-logo-1569415957274.jpg)
Improving Security Practices in the Cloud Age: Q&A With Christopher Gerg
IT leaders say that security is a top priority. Surveys show that it’s easy to say, and hard to do. InfoQ spoke with Christopher Gerg, CISO at Gillware, about security practices in the cloud age.