SwampUP: DevOps Needs Guardrails, Not Gates, for Security

Source: thenewstack.io

SwampUP: DevOps Needs Guardrails, Not Gates, for Security

Category: Software, Business, Security, Infrastructure

JFrog sponsored The New Stack’s coverage of SwampUP 2021. The question of who owns security in the DevOps process goes back at least until 2012, when DevOps pioneers Gene Kim and Josh Corman suggested the term at the RSA security conference.

Traditionally, the approach security teams have taken is to set up gates between each of the steps in a continuous integration and deployment (CI/CD) pipeline, she said.

This is what breaks the CI/CD,” Miller warned of this approach.

Identify the crucial assets that are critical to that particular user story and then identify the threats.”
Read Full Article On thenewstack.io
Achieve superior email deliverability with ToastMail! Our AI-driven tool warms up inboxes, monitors reputation, and ensures emails reach their intended destination. Sign up today for a spam-free future.

Related Articles

Remediating the October 2018 Git Security Vulnerability – Microsoft DevOps Blog
Remediating the October 2018 Git Security Vulnerability – Microsoft DevOps Blog
Splunk Aims to Trigger DevOps Processes
Splunk Aims to Trigger DevOps Processes
DevOps Chat: JFrog Announces $165 Million Funding Round
DevOps Chat: JFrog Announces $165 Million Funding Round
Community Partners
CrowdSec
Autonomous.ai | Best Standing Desks & Ergonomic Office Chairs

Mailjet

Namecheap

Become a Partner?
DevOps Careers
    • Add a Job?