DevOps

Top 5 Access Control Challenges

Dec 13, 2022 By Anders Eknert In Styra

Identity and access management (IAM) is an integral part of security systems. Without proper authentication and authorization, it would be impossible to practice cybersecurity principles such as zero trust and least privilege. By now, most organizations have a firm grasp on the identity part of IAM, including concepts like multi-factor and token-based authentication.

Read Post

Styra

Read more about Top 5 Access Control Challenges

Remote Development with Visual Studio Code and Teleport

Dec 13, 2022 By Teleport In Teleport

In this video, we'll look at how to use Visual Studio Code's Remote SSH extension alongside of Teleport. This extension allows users to open any file or folder on a remote machine using SSH along with the ability to utilize VS Code's full feature set. Well use Teleport to generate an OpenSSH config, granting secure, short-lived access, to it's managed servers, via this extension.

View Video

Teleport

Read more about Remote Development with Visual Studio Code and Teleport

How Chime uses Open Policy Agent

Dec 13, 2022 By Styra In Styra

Ed Paget, Decision Platform at Chime

View Video

Styra

Read more about How Chime uses Open Policy Agent

What are CIS Benchmarks and how to use them?

Dec 12, 2022 By John Gates In CalCom

A list of 18 procedures (reduced from 20), or “controls,” recommended by the Center for Internet Security (CIS), must be followed to build an IT infrastructure resistant to cyberattacks. The CIS 4th Control advises to establish and maintain a secure configuration process for enterprise assets (end-user devices, including portable and mobile; non-computing/IoT devices; and servers) and software (operating systems and applications) (4.1).

Read Post

CalCom

Read more about What are CIS Benchmarks and how to use them?

Bootstrapping Terraform Secrets with 1Password CLI

Dec 12, 2022 By 1Password In 1Password

In this presentation for HashiTalks: Deploy, 1Password Sr. Software Engineer Jillian Morgan digs into using 1Password CLI to manage secrets in a Terraform workflow.

View Video

1Password

Read more about Bootstrapping Terraform Secrets with 1Password CLI

In Modern AppSec, DevSecOps Demands Cultural Change

Dec 9, 2022 By Carol Hildebrand In Mend

This is the final of a six-part blog series that highlights findings from a new Mend white paper, Five Principles of Modern Application Security Programs. When thinking of adjectives to describe cyberattackers, it’s doubtful that many people would choose to call them innovative – a term we’re more likely to ascribe to things we enjoy. But the reality is that adversaries are innovative, constantly finding new ways to launch attacks that result in greater rewards for less effort.

Read Post

Mend

Read more about In Modern AppSec, DevSecOps Demands Cultural Change

Customer Office Hours: CI/CD Best Practices

Dec 9, 2022 By Snyk In Snyk

Learn tips and tricks on how to implement, troubleshoot and scale deployments. For example, should you scan in the CICD or in SCM? What implementation methods should you use - plugin, npm, binary…? We will cover this and more. Host: Sebastian Roth, Senior Solutions Engineer Seb brings his expertise as a Principal Software Engineer & Team Lead for over 17 years into the DevSecOps community, where he now focuses on process improvements and shares best-practices to improve security posture.

View Video

Snyk

Read more about Customer Office Hours: CI/CD Best Practices

[NEW] Kubescape now integrates with GitHub Actions

Dec 8, 2022 By ARMO In ARMO

We are happy to announce that Kubescape now integrates with GitHub Actions. This allows users to identify issues as early and as clearly as possible, without ever leaving GitHub. Read all about it 👇

Read Post

ARMO

Read more about [NEW] Kubescape now integrates with GitHub Actions

Renovate Reaches 10K!

Dec 8, 2022 By Carol Hildebrand In Mend

First started as an open-source project in 2018, Mend Renovate automates open source dependency updates in software projects. Renovate has enabled a diverse user base across github.com and gitlab.com, reducing risk by mitigating security vulnerabilities and saving developers’ time. Renovate is now endorsed by OpenSSF and Google as the industry standard tool for dependency updates.

Read Post

Mend

Read more about Renovate Reaches 10K!

Dynamic Authorization with Policy-Based Access Management

Dec 8, 2022 By Jeff Broberg In Styra

Traditional or static authorization methods no longer meet the demands of today’s digital business environment. Data breaches are on the rise (a 23% increase in 2021, as per the Identity Theft Resource Center), forcing organizations to re-evaluate their security and compliance practices.

Read Post

Styra

Read more about Dynamic Authorization with Policy-Based Access Management

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DevOps

Top 5 Access Control Challenges

Remote Development with Visual Studio Code and Teleport

How Chime uses Open Policy Agent

What are CIS Benchmarks and how to use them?

Bootstrapping Terraform Secrets with 1Password CLI

In Modern AppSec, DevSecOps Demands Cultural Change

Customer Office Hours: CI/CD Best Practices

[NEW] Kubescape now integrates with GitHub Actions

Renovate Reaches 10K!

Dynamic Authorization with Policy-Based Access Management

Monthly Archive

Follow Us