Secops

Shift-Left Security Implementation

At an event we repeatedly heard from the visitors that the delivery teams are notified of the vulnerabilities just before the production deployment or after the deployment has happened, which is too late. There was a lot of focus on shifting-left security to detect, prioritize and remediate security vulnerabilities early in the application development lifecycle. […]

Shashank Srivastava

April 29, 2024

How a DevSecOps Pipeline addresses the need for integrating SecOps into CI/CD pipelines

In this blog, I’ll focus on the need for integrating security in software delivery pipelines and how engineering a DevSecOps Pipeline is the solution. However, If you’d like to take a step back and learn the basics, then I urge you to read my earlier blog explaining what DevSecOps is all about. Introduction – Need for […]

Vardhan NS

February 22, 2024

Centralized AppSec, SecOps and Compliance Controls for Distributed Engineering Teams

Often I have heard that in a large enterprise it becomes difficult for audit, compliance, DevSecOps or DevOps teams to implement these controls centrally in order to monitor and govern in real-time and generate reports on press of a button whenever needed. Technically it is very easy but from a logistics standpoint it is very […]

Shashank Srivastava

February 5, 2024

Getting Started with AppSec and DevSecOps

This article is for engineering leaders who are just getting started with their AppSec and DevSecOps journey. Alternatively, for those who intend to extend DevOps to DevSecOps. The approach mentioned below not only helps the beginners to catch up with the business pace but also helps early starters to up the game and maturity level […]

Shashank Srivastava

January 9, 2024

Ship Secure Faster

Talk to an Expert