DevOps

The Top Tactics to Be Successful at Secure DevOps

Feb 7, 2019 By Tripwire Guest Authors In Tripwire

Today’s increasingly connected world, with access to mobile devices and cloud scale computing, is leading to disruption in business models and processes. To succeed, you have no option but to continuously deliver new value to customers at the increasing speed that they demand.

Read Post

Tripwire

Read more about The Top Tactics to Be Successful at Secure DevOps

Why Security Is Needed to Keep the CI/CD Pipeline Flowing Smoothly

Feb 5, 2019 By David Bisson In Tripwire

Technology has advanced to a state where clients now expect a constant stream of updates for their software and applications. To fulfill this demand, developers commonly turn to what’s known as a CI/CD pipeline. As noted by Synopsys, this practice embraces two important software development concepts of today’s streamlined world.

Read Post

Tripwire

Read more about Why Security Is Needed to Keep the CI/CD Pipeline Flowing Smoothly

State of Modern Applications & DevSecOps in the Cloud - 2018

Feb 4, 2019 By Sumo Logic In Sumo Logic

Sumo Logic's report with data-driven insights, best practices, and year-over-year trends - all by analyzing technology adoption among enterprises who run massive applications on AWS, Azure, and GCP. The report also provides additional visibility into the DevSecOps tools and methodologies used within cloud-first organizations as they “lift and shift” or modernize and migrate existing applications to cloud environments.

View Video

Sumo Logic

Read more about State of Modern Applications & DevSecOps in the Cloud - 2018

OPA policy for Kubernetes memory limits

Jan 14, 2019 By Styra In Styra

Tim Hinrichs, CTO of Styra and Co-founder of Open Policy Agent, live codes an OPA policy that enforces total memory limits on pods in Kubernetes.

View Video

Styra

Read more about OPA policy for Kubernetes memory limits

OPA policy for Kubernetes label management

Jan 14, 2019 By Styra In Styra

Tim Hinrichs, CTO of Styra and Co-founder of Open Policy Agent, live codes an OPA policy for Kubernetes admission control. The policy requires an owner label on every resource and forcibly guarantees imagePullPolicy is set to Always.

View Video

Styra

Read more about OPA policy for Kubernetes label management

Adding CVE scanning to a CI/CD pipeline

Jan 14, 2019 By Luc Juggery In Tigera

A Docker image contains an application and all its dependencies. As it also contains the numerous binaries and libraries of an OS, it’s important to make sure no vulnerabilities exist in its root filesystem, or at least no critical or major ones. Scanning an image within a CI/CD pipeline can ensure this additional level of security.

Read Post

Tigera

Read more about Adding CVE scanning to a CI/CD pipeline

60% of Organizations Suffered a Container Security Incident in 2018, Finds Study

Jan 7, 2019 By Ray Lapena In Tripwire

Many organizations have DevOps on their mind going into 2019. This is a global movement. In fact, Puppet and Splunk received responses for their 2018 State of DevOps Report from organizations on every continent except Antarctica. Those organizations varied in their industry, size and level of DevOps maturity, but they were all interested in learning how they could advance their DevOps evolution going forward.

Read Post

Tripwire

Read more about 60% of Organizations Suffered a Container Security Incident in 2018, Finds Study

Our Recap of AWS re:Invent 2018

Dec 6, 2018 By Chris O'Brien In Devo

Who else had as much fun as we did at re:Invent 2018? I hope everyone is now home, rested, and going through everything they’ve learned while at the show – I know I learned a ton! The best part of being at a conference like re:Invent is hearing firsthand from practitioners how they are using technology to solve their business challenges.

Read Post

Devo

Read more about Our Recap of AWS re:Invent 2018

Achieve CIS Compliance in Cloud, Container and DevOps Environments

Nov 12, 2018 By Ben Layer In Tripwire

If you are embracing DevOps, cloud and containers, you may be at risk if you’re not keeping your security methodologies up to date with these new technologies. New security techniques are required in order to keep up with current technology trends, and the Center for Internet Security (CIS) provides free cybersecurity best practices for many newer platforms.

Read Post

Tripwire

Read more about Achieve CIS Compliance in Cloud, Container and DevOps Environments

Enforce Docker Image CIS Policy Compliance with Tripwire for DevOps

Oct 23, 2018 By Mitch Thomas In Tripwire

We are working hard adding features to our new Tripwire for DevOps service, initially announced at BlackHat 2018. If you are a loyal State of Security follower, last you read we added Auditing for Amazon Machine Images (aka AMIs). Today, we are introducing CIS policy compliance auditing for Docker images. Tripwire for DevOps allows you to evaluate your Docker Images to check for policy compliance at build time.

Read Post

Tripwire

Read more about Enforce Docker Image CIS Policy Compliance with Tripwire for DevOps

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DevOps

The Top Tactics to Be Successful at Secure DevOps

Why Security Is Needed to Keep the CI/CD Pipeline Flowing Smoothly

State of Modern Applications & DevSecOps in the Cloud - 2018

OPA policy for Kubernetes memory limits

OPA policy for Kubernetes label management

Adding CVE scanning to a CI/CD pipeline

60% of Organizations Suffered a Container Security Incident in 2018, Finds Study

Our Recap of AWS re:Invent 2018

Achieve CIS Compliance in Cloud, Container and DevOps Environments

Enforce Docker Image CIS Policy Compliance with Tripwire for DevOps

Monthly Archive

Follow Us