Using the CI/CD Process to Achieve NIST 800-53 Compliance
Download Whitepaper Now
MAR 28 2024 REGISTER NOW
1000+ DOWNLOADS GRAB IT NOW
In the fast-paced world of software development, delivering high-quality applications quickly is crucial for staying competitive. One approach that has gained immense popularity in recent years is Continuous Delivery (CD). It’s a software development practice that focuses on automating the delivery process to reduce manual interventions and accelerate the release cycle. While CD is effective […]
February 2, 2024
What is ASPM(Application Security Posture Management)? ASPM stands for Application Security Posture Management. It is a modern approach to unlocking AppSec (Application Security) visibility across the entire continuous development and continuous deployment pipeline. ASPM practices are usually complemented by tools and strategies around security testing and code scanning to create and manage a robust defense […]
January 25, 2024
DevOps and DevSecOps are still relatively new concepts in the field of software engineering. While both are modern day evolution of traditional agile/ SDLC practices, knowing which particular philosophy to embrace depends upon your organization’s goals/ objectives. In this blog, I’ll be decoding the differences between DevOps vs. DevSecOps so that you can decide for […]
November 30, 2023
In this blog, I’m addressing the top 5 benefits of CI/CD in the context of security and compliance. This is a must-read for everyone involved in a DevOps process, but especially AppSec and DevSecOps professionals. But before getting into the benefits of a CI/CD process that any business is set to gain, I would first […]
November 17, 2023
Why prioritize CI/CD pipeline best practices? CI/CD pipeline is the heartbeat of a well-oiled DevOps process. If a CI/CD pipeline breaks, then much of what engineering does comes to a stand still. Because of the CI/CD pipeline’s ability to support automation, cross-collaboration(b/w Dev, QA, Ops, and Sec teams), and prevent serious errors, a broken CI/CD […]
October 19, 2023
This is My #1 Takeaway From DevOps Conclave I had the pleasure of speaking with DevOps, DevSecOps and Engineering leaders at the DevOps Conclave 2023 last week and it was a great learning experience for me to get insights into how they are approaching their Continuous Integration, Continuous Delivery and DevSecOps initiatives. Their key responsibilities […]
October 11, 2023
In today’s fast-paced digital landscape, ensuring the security of software delivery is of paramount importance. In the years gone by, ‘Security in the Pipeline’ was sufficient enough to display a robust security posture. But in recent months and years, security threats have become increasingly sophisticated, targeting CI/CD pipelines, delivery toolchain, and other parts of the […]
October 4, 2023
Thus far in 2023, ‘Security’ has been the theme surrounding any/ all emerging trends in Software Delivery. Be it the emergence of DevSecOps, or ‘Shifting-security to the left’, or ‘software supply chain security’, all of these trends are focussed on ensuring security is not an afterthought in software delivery/ deployment. And rightly so, the astronomical increase in […]
September 14, 2023
In addition to my blog on SDLC Compliance Management With CI/CD Policy Enforcement, I wanted to provide second level details on the available list of compliance rules and policies that can be leveraged using OpsMx Secure Software Delivery. OpsMx Secure Software Delivery is designed to monitor and enforce compliance with a broad range of security and application […]
August 23, 2023
I’ve spoken to quite a few DevSecOps experts and implementers over the past couple of months and there’s been a commonality in terms of their priority initiative – They are looking to implement enterprise-wide compliance for their software delivery life cycle leveraging their existing CI/CD solution. Another way to rephrase this is to collect proof […]
The way we develop, deliver and operate software has changed The evolution in how we develop, deliver, and operate software has led to an increase in the speed and scale of software changes we see daily in many enterprises. Yet, these changes are also introducing new security risks and expanding the attack surface of your […]
May 8, 2023