Using Your Software Delivery Process to Achieve NIST 800-53 Compliance
Download Whitepaper Now
ON DEMAND WEBINAR WATCH NOW
1000+ DOWNLOADS GRAB IT NOW
APR 24 2024 REGISTER NOW
In this blog, I’ll focus on the need for integrating security in software delivery pipelines and how engineering a DevSecOps Pipeline is the solution. However, If you’d like to take a step back and learn the basics, then I urge you to read my earlier blog explaining what DevSecOps is all about. Introduction – Need for […]
February 22, 2024
Often I have heard that in a large enterprise it becomes difficult for audit, compliance, DevSecOps or DevOps teams to implement these controls centrally in order to monitor and govern in real-time and generate reports on press of a button whenever needed. Technically it is very easy but from a logistics standpoint it is very […]
February 5, 2024
What is ASPM(Application Security Posture Management)? ASPM stands for Application Security Posture Management. It is a modern approach to unlocking AppSec (Application Security) visibility across the entire continuous development and continuous deployment pipeline. ASPM practices are usually complemented by tools and strategies around security testing and code scanning to create and manage a robust defense […]
January 25, 2024
DevOps and DevSecOps are still relatively new concepts in the field of software engineering. While both are modern day evolution of traditional agile/ SDLC practices, knowing which particular philosophy to embrace depends upon your organization’s goals/ objectives. In this blog, I’ll be decoding the differences between DevOps vs. DevSecOps so that you can decide for […]
November 30, 2023
In this blog, I’m addressing the top 5 benefits of CI/CD in the context of security and compliance. This is a must-read for everyone involved in a DevOps process, but especially AppSec and DevSecOps professionals. But before getting into the benefits of a CI/CD process that any business is set to gain, I would first […]
November 17, 2023
Just came back after a hectic trip and resumed work. However, this post was something on top of my mind. Met several senior DevOps and DevSecOps executives during the DevOps Conclave 2023. The top 3 things I heard at the event was around: Automation, Compliances, and Security. Automation While different enterprises handle automation differently, it […]
October 10, 2023
In today’s fast-paced digital landscape, ensuring the security of software delivery is of paramount importance. In the years gone by, ‘Security in the Pipeline’ was sufficient enough to display a robust security posture. But in recent months and years, security threats have become increasingly sophisticated, targeting CI/CD pipelines, delivery toolchain, and other parts of the […]
October 4, 2023
DevOps is more than just a technical process; it represents a transformative cultural shift. While we passionately embrace the speed it brings, a fundamental question often keeps us awake at night: “Is it possible to achieve velocity without compromising compliance?” Well, here’s the spoiler: the answer is a resounding “Yes.” Join us on a captivating […]
September 5, 2023
This article by Gopinath Rebala, OpsMx CTO, was previously published in RT Insights on December 27, 2022 Open-source continuous delivery solutions offer the fastest path to DevOps maturity and software development agility. “Adapt or die” has been a business mantra for generations, but it’s no longer a strong enough warning. Businesses must now adapt with […]
December 27, 2022
Today’s integrated DevOps methodology offers businesses the promise of accelerating innovation by providing customers and employees with new application capabilities faster. However, this approach can also increase risks associated with cybercrime and the failure to comply with rapidly evolving privacy regulations. As a result, minimizing security risk during the development process is every bit as […]
December 8, 2022
Today’s thought leaders often say, “All companies are software companies.” This is because a broad range of large and mid-size enterprises have undertaken digital transformation initiatives in the past decade, and these initiatives have had a profound impact on the way these companies develop and deploy software to deliver business value. In the past, applications […]
October 16, 2022