Category List

AppThreat is Joining the ShiftLeft Family

AppThreat is Joining the ShiftLeft Family

As a passionate DevSecOps personnel, I wanted to build a portfolio of security tools that both the DevOps and the security community would love to use. The security tools marketplace is quite ...

Ryan Lockard Names the Seven Deadly Sins of DevSecOps [VIDEO]

Editor's Note: Ryan's story is included in "Epic Failures in DevSecOps, Volume 2", available for free download. "It is said in Roman Catholicism that each of the seven deadly sins is uniquely ...
open source security

DevOps Chats: Open Source Security, With WhiteSource

WhiteSource, one of the leaders in the software composition analysis space, recently released its annual report, “The State of Open Source Security Vulnerabilities.” It is chock full of good data and findings ...
Security Boulevard
Inserting security in Github pull requests! — Part 2 (using Github Actions)

Inserting security in Github pull requests! — Part 2 (using Github Actions)

Inserting security in GitHub pull requests! — Part 2 (using GitHub Actions)This post builds up in a previous post about inserting code analysis into GitHub pull requests, in this post, we will focus on ...
route intelligence

DevOps Chats: Route Intelligence From Contrast Security

Contrast Security has released the first “Route Intelligence” functionality in the latest version of its next-generation security platform. In this DevOps Chats, we speak with Contrast’s CTO/co-founder, Jeff Williams, about what route ...
Security Boulevard
k8sdump blogpost

Kubernetes Security – A Useful Bash One-Liner

Whether you’re an administrator, pentester, devop engineer, programmer, or some other IT person, chances are that you’ve heard of Kubernetes (k8s). If you’re a penetration tester like myself you may sometimes find ...

Department of Defense DevSecOps Journey

Editors Note: We recently discussed why the federal government should adopt DevSecOps. Here, a look at DevSecOps efforts at the Department of Defense presented at All Day DevOps. Sign up now for ...
security

Why Traditional Security Is Failing Us, Part 2

This is the second part of a two-part series that explores the reasons behind the failure of security technologies to protect companies and their data from emerging threats in the age of ...
Security Boulevard
RSAC videos

RSAC 2020 Video Interviews, Part 2

RSA Conference 2020 has come and gone, but the goodness keeps flowing in the form of video interviews the MediaOps team conducted over the course of three days. In case you missed ...
Security Boulevard

Top 6 Reasons the Time is Now for DevSecOps in the Federal Government

Underpinning all modern technology - software and hardware - is a supply chain. However, even as “software eats the world,” or we could argue “ate the world,” there is still too little ...