Myth Busting in DevSecOps

Larry Maccherone leads the DevSecOps efforts at Comcast. In this episode of DevSecOps: The Good, The Bad, and The Ugly, he busts some common DevSecOps myths and shares more about his DevSecOps ...
DevSecOps

The DevSecOps Landscape is Maturing – We Want to Hear About Your Journey

Time is running out to take part in Sonatype’s annual DevSecOps Community Survey. Share your stories with others in the space. The race to out-innovate one’s competition has led to high-performing organizations ...
Security Boulevard

Sonatype Partners with All Day DevOps to Deliver the Largest DevOps Conference for 36,000

Four years ago, my colleague Mark Miller and I founded the All Day DevOps conference with seven friends from around the community. We planned the conference in 90 days and expected 1,000 ...
Project Code Rush - The Beginnings of Netscape / Mozilla Documentary

Tara Hernandez Talks Code Rush, Google, DevOps

Shortly after watching the documentary, Code Rush, I met with Tara Hernandez, the hockey stick carrying lead of the Netscape project that was being documented ...

DevOps-as-a-Service: Overcoming Challenges in Large Organizations

DevOps transformation can require a major shift in organizational culture and “the way things are done.” This can be difficult in any organization, but gets incrementally more difficult as the size of ...

Success Requires Reflection on DevSecOps Failures

It was just over a year ago on an extremely hot and humid day in Singapore when a group of DevSecOps nomads gathered to share our stories at DevSecOps Days. We represented ...

How to Become an OSS Champion

Open source software components yield a competitive marketplace advantage. So why do some development teams resist and rebel? ...

Tools, Not Rules

Over the past couple of years, American Express has gone through a DevOps journey. A transformation that Tim Klever was kind enough to share with us at this year's Nexus User Conference ...
Shifting to DevSecOps, with Software Security Testing Built In

Shifting to DevSecOps, with Software Security Testing Built In

Many organizations today are in the process of transitioning to a DevOps-centric approach, but don’t want to leave security behind. In order to build security in from the beginning of their software ...