DevSecOps news stories

The use of DevSecOps practices is growing, as it is increasingly seen as the best way to produce high-quality and secure code. So what are the current trends?

Thales' CipherTrust Platform Community Edition enables DevSecOps teams to deploy data protection controls into multi-cloud applications faster.

Ask a typical software developer to name their top priority when writing code, and the answer is likely to be ‘creating new features’. Security is simply not on the radar screen for most developers.

Entrust has strengthened its enterprise security and control for multi-cloud deployments, a move set to help DevSecOps and security administrators maintain a better security posture in cloud environments.

CyberRes has acquired Debricked, enabling customers to accelerate the speed of DevSecOps while ensuring the resilience of their software supply chain.

Sysdig and Snyk have announced the integration of Sysdig Secure with Snyk Container to cover container security from development through operations.

More than 75% of running containers have vulnerabilities, partly as a result of ignoring security and operational best practices.

When development, security and operations teams collaborate, they can deliver system reliability and exceed customer expectations.

VMware has made it easier for AWS customers to purchase and deploy VMware Cross-Cloud services.

Auldhouse set to become one of New Zealand's leading cybersecurity training providers, gaining official rights to the world's top cybersecurity certifications.

Public cloud represents a significant shift for many organisations, and it’s vital to have senior leadership backing for the migration process.

The Linux Foundation and the Continuous Delivery Foundation have announced a new DevOps Bootcamp.

"The Satori team completely re-thought security for the modern data infrastructure and created an entirely new way to secure, manage, and operationalise data access in a frictionless manner.”

State of Kubernetes Security: Concerns remain - and are slowing down innovation.

Research from Dynatrace found 71% of CISOs say they’re not confident code is free of vulnerabilities before going into live production.

Threats to applications go beyond exploiting code and logic vulnerabilities which are already more than enough to analyse and cope with.

Bridgecrew recognised IaC early on as one of the best ways for modern teams to delegate security ownership to individual contributors while distributing it across existing frameworks within CI/CD pipelines. This attribute meant that IaC was invaluable in securing cloud-native environments.

Digital innovation has always been a key to staying relevant and ahead of the pack. Enterprise developers are pushed to the brink, straining resources against business expectations and time constraints.

Dynatrace is pushing further into the cloud application security space this month, as the company launches a new module as part of its offering across the Software Intelligence Platform.

The rise of DevSecOps comes at a time when IT leaders are faced with an increasingly active cyber threat landscape, coupled with higher consumer expectations of digital offerings and application usage due to a sharp increase in online activities.

“We are in an ultra-hybrid world with multi-everything, and in order to successfully navigate this landscape, ITOps, DevOps, and SecOps teams need to more closely align."

New SaaS solution aims to prevent breaches by automating dynamic threat analysis for docker containers.

Two major financial institutions in New Zealand have refreshed their application security measures with the help of security specialist Checkmarx.

Teams must understand how the role of the developer is changing, and how it affects security, operations, and test teams.