DevSecOps
Key takeaways from the latest DoD Enterprise DevSecOps Fundamentals update
As the cybersecurity landscape changes and threats evolve, the Department of Defense (DoD) has updated its Enterprise DevSecOps Fundamentals to align development practices with security imperatives further. This is part of a ...
DevSecOps “Friends”, Webinar Series: The One with Platform Engineering (and the Happy Developers)
Join us for a DevSecOps “Friends” webinar series where we explore the ins and outs of DevSecOps. We’ll dive deep into key topics, from platform engineering to the role of AI, all ...
Three ‘Must Solve” Challenges Hindering Cloud-Native Detection and Response
As security teams level up to support the cloud-native transition, three major issues keep impeding detection and response in the cloud ...
Election Security: Here’s What We Should Really Be Worried About
Rather than buying into unfounded claims of how fragile our election technology is, perhaps we should recognize its proven strengths and focus on improving from there ...
Addressing cloud-native app development challenges with scalable security tools
Learn about cloud-native trends, challenges, and security solutions for organizations shifting to cloud-based environments.The post Addressing cloud-native app development challenges with scalable security tools appeared first on Blog ...
Make Deployments Great Again: How to Use Helm with Continuous Deployment (CD)
Learn how to automate Helm deployments with GitOps, using Argo CD for continuous delivery. Seamlessly handle secrets, pod auto-restart, and version propagation in Kubernetes with this production-ready integration ...
ADDO session: Building observability to increase resiliency
As part of the DevOps and DevSecOps track during Sonatype's 9th All Day DevOps (ADDO) event, AWS Senior Developer Advocate Guillermo Ruiz presented his session titled "Building Observability to Increase Resiliency." Well-applied ...
Faster, better, stronger application security for developers in the IDE
New enhancements from Code Sight enable developers to customize security scans, prioritize new issues, and close feedback loops without leaving the IDE.The post Faster, better, stronger application security for developers in the ...
Unmasking the invisible threat: Ilkka Turunen’s keynote at ADDO
Open source components are the building blocks of modern applications. But what happens when these very components are weaponized, silently infiltrating your software supply chain? ...
Key insights from Black Duck’s 2024 Global State of DevSecOps report
Take a deep dive into the findings of Black Duck's 2024 Global State of DevSecOps Report to learn how development, operations, and security teams feel about the application security tools they use.The ...
