OpsMx Blog “Everything about CI/CD is a search away” Search for: Featured Post Mastering ASPM in DevOps: Strategies for Enhancing Application Security In the rapidly evolving landscape of software development, ensuring the security and compliance of applications is paramount. DevOps and SRE engineers are constantly on the lookout for strategies and tools that can bolster their application security posture management (ASPM). The core of ASPM revolves around identifying vulnerabilities, adhering to compliance and regulatory requirements, enhancing the […] Mark LevyMarch 11, 2024 Share Most Recent Post Shift-Left Security Implementation At an event we repeatedly heard from the visitors that the delivery teams are notified of the vulnerabilities just before the production deployment or after the deployment has happened, which is too late. There was a lot of focus on shifting-left security to detect, prioritize and remediate security vulnerabilities early in the application development lifecycle. […] Shashank Srivastava April 29, 2024 Share OpsMx Updates Case Studies Spinnaker Argo CI/CD DevOps Security Flux Transforming AppSec posture with DevSecOps Compliance automation Amidst this growing tension around emerging cyber threats, one of the hottest topics in the software industry is ASPM (Application Security Posture Management). And rightly so, organizations must have a conversation around their ongoing AppSec practices and how to improve their security posture further. Need for a strong AppSec posture According to this report by […] Vardhan NS March 19, 2024 Share Compliance in CI/CD: A Lean Approach to Software Supply Chain Governance In the fast-paced world of DevSecOps, traditional approaches to compliance are fraught with inefficiencies and waste, far beyond the mere inconvenience of manual checks. These outdated methods introduce significant bottlenecks, hindering speed, security, and agility—key pillars in software development. The solution lies in adopting a ‘lean compliance’ model, where compliance is seamlessly automated and integrated […] Mark Levy March 12, 2024 Share Mastering ASPM in DevOps: Strategies for Enhancing Application Security In the rapidly evolving landscape of software development, ensuring the security and compliance of applications is paramount. DevOps and SRE engineers are constantly on the lookout for strategies and tools that can bolster their application security posture management (ASPM). The core of ASPM revolves around identifying vulnerabilities, adhering to compliance and regulatory requirements, enhancing the […] Mark Levy March 11, 2024 Share Announcing OpsMx support for CNCF Flux – an important step for Open CD I’m delighted to share that OpsMx is supporting CNCF Flux. In this blog, I want to share our vision and how we think about supporting Flux and why I believe it is a step in the right direction. We founded OpsMx with a vision of simplifying modern software delivery. Our premise was that delivery systems […] Gopal Dommety February 25, 2024 Share Introducing OpsMx Support for Flux: Powering Seamless GitOps Workflows Today, we are thrilled to announce a significant enhancement to our offerings at OpsMx – support for Flux! This new offering has two goals: Offering best in class support for Flux users, and, By also working with Argo & Spinnaker, giving enterprise customers broad support and choice. In the ever-evolving landscape of DevOps, the importance […] Robert Boule February 24, 2024 Share How a DevSecOps Pipeline addresses the need for integrating SecOps into CI/CD pipelines In this blog, I’ll focus on the need for integrating security in software delivery pipelines and how engineering a DevSecOps Pipeline is the solution. However, If you’d like to take a step back and learn the basics, then I urge you to read my earlier blog explaining what DevSecOps is all about. Introduction – Need for […] Vardhan NS February 22, 2024 Share The Vital Intersection of Site Reliability Engineering and Application Security Posture Management In the ever-evolving landscape of digital infrastructure, two critical domains have emerged as cornerstones of modern technological operations: Site Reliability Engineering (SRE) and Application Security Posture Management (ASPM). While these fields may seem distinct at first glance, their convergence is not only natural but also essential for ensuring the reliability, security, and performance of digital services. In this blog […] Robert Boule February 15, 2024 Share How Can OpsMx assist WeaveWorks Customers Introduction GitOps has emerged as a popular approach for managing and automating deployments in Kubernetes environments. It enables organizations to maintain their infrastructure as code in Git repositories and ensures that the desired state of their applications and infrastructure is automatically synchronized with the actual state. Flux is an prominent tool that gained significant traction […] Robert Boule February 10, 2024 Share Centralized AppSec, SecOps and Compliance Controls for Distributed Engineering Teams Often I have heard that in a large enterprise it becomes difficult for audit, compliance, DevSecOps or DevOps teams to implement these controls centrally in order to monitor and govern in real-time and generate reports on press of a button whenever needed. Technically it is very easy but from a logistics standpoint it is very […] Shashank Srivastava February 5, 2024 Share OpsMX Deploy Shield: Integration Plans for 2024 In the rapidly evolving landscape of software development, maintaining robust security measures while ensuring a smooth developer experience is paramount. Integrating an Application Security Posture product with Backstage integration can significantly streamline both security and development operations. This blog post explores the benefits, processes, and best practices of this integration. Understanding the Integration What is […] Robert Boule February 3, 2024 Share 1 2 3 … 37 Next