FORGOT YOUR DETAILS?

Best Practices for Secure Software Development

Integrated development environments, in short hereinafter IDE, refer to software applications that facilitate the development of other applications. IDE is designed originally for software programmers and developers to do their job. As such, it encompass all programming tasks in one application, as you can imagine it develop to deliver the main benefits of offer a

GitLab is evolving, where constant research are carried out to improve GitLab into powerful DevOps platform of the future. June-22, 2022 GitLab is moving forward and running on their journey towards the future of DevOps. Thereafter, GitLab announces the release of GitLab 15. Excited and obligated, E-SPIN dedicated this ‘ GitLab 15 Releases and Updates’

Rise of Docker and Application Container Security Platform - App Container vs VM, Protecting Your Supply Chain: Security and Risk Management

All the new enterprise application development will adapt the modern best practice of DevSecOps and shift away from legacy virtual machines (VM) and toward much more cloud native containers and Kubernetes container orchestration. It is the mega trends, where one wave of technology nurtures a better one. History repeats it over and over again. The

Today’s post let’s talk about Future of Application security testing (AST). As background information for those who are new to the topic, application security testing (AST) is a domain with a variety of approaches. For those focus on static application security testing (SAST), dynamic application security testing (DAST), interactive application security testing (IAST), mobile application

We all know the rise of the project economy, But no many everyone knows what it is about and what it means for the future of work. It impacts the future workforce and way for the workforce management. The world transit toward project economy, organization get dynamic teams and assign them into various projects to

We decided to dedicate one post to talk about what is source code management (SCM), and what it benefits as part of the range of source code management (SCM) theme topics. SCM always talks about software development lifecycle (SDLC) context, it is developed and designed for help software development, team lead software development, application development

From DevOps Shift Left Testing to DevSecOps Shift Left Security

GitLab 14 as the Future of DevOps Over the years, GitLab had served the world with a complete DevOps platform and stood strongly in several market reports through enhancements across the software development lifecycle. In June 2021, GitLab proudly announced the released of GitLab 14 or the future of GitLab. Also viewed as the future

Benefit of network based software defined wan (sd-wan)

Most enterprises journey to DevSecOps (or secure DevOps, or still using traditional DevOps for the context) beginning with Source Code Management (SCM), or source control or version control. Without that, where the Continuous Integration (CI) and Continuous Delivery (CD) take place for the seamless automation and CI/CD pipeline time to be saved. In general to

For global corporations, it does not lack the management framework and standard for best practice.  In the last few years we have seen the digital transformation initiative where most of the great enterprises and their chief have put DT first in their top priority. Simply go cloud computing where you do not make your enterprise

People are starting to question whether the tech giant is worth the perceived stock value and their future worth with the change in the computing and technology landscape. Metaverse stock recently falling creates a new momentum for the devaluation trend. Just like other sectors and industry got the life cycle, so did the technology and

In today’s business environment, staying ahead is what determine an agile and resilient organisation. It is crucial for organisation to stay alert on every strategic technology trend that can help empower their business growth. Organisations that adopt digital transformation, new technologies, approaches or practices such as DevSecOps earlier than their competitors will have bigger chances

Value Stream management is the next evolution in software development. Along with DevOps, these two key transformation are complementary forces with high potential in driving efficient software delivery, thus providing value to the customers. From organisations to every role in the development team, they are many benefits that can be reaped from the amalmagation of

In software development, it is important to deliver high quality applications and services rapidly. On top of that, software delivery should align with business objectives in order to optimise customer experience or business value delivery. The key transformations are the adoption of Agile, DevOps and Value Stream Management. Why Value Stream Management with GitLab? The

More and more customers adopt the DevSecOps to achieve seamless integration and automation benefits, so do adopt the same best practice for the bigger context toward Value Stream Management (VSM). If you zoom out and you will notice this is fit in the fourth industrial revolution (4IR) or known as Industry 4.0 framework. The world

Trends disrupting the Application Security Testing Market, a couple years will see dynamic changes once it reaches the market acceptance for certain technology, and depend on the existing market player and new player entering into the market that create new waves of change, in particular the disruptive technologies that obsolete conventional or legacy practises. Since

DevOps approach allows the team to build a product that meet the customer demands at fast speed. However, the approach isolates security in its cycle which results in a vulnerable products. GitLab.inc understood this crucial drawback and solve it by providing easy integration of security into its DevOps Platform by emphasising GitLab as the DevOps

Having a successful service virtualization requires experience. In this post, we will share four tips for a successful service virtualization. Keep reading and apply the tips into your existing organization practice. → Service Virtualization is not for tester’s only To deliver high quality software, all members should contribute in the process of testing. As a

Server-and-Software/Application-Layers on-Data-Center-and-Orchestration, Why do you need File Integrity Monitoring

Why should you use service virtualization? Simply, because It’s hard to stop testing because there is one component not available. As a consequence you will either not test until the component becomes available. Or you will start testing without this component. In both cases you will have issues, in the first case you will waste

When a company started to embrace DevOps, they will begin to realize the need and benefits of adopting site reliability engineering (SRE) into the practice. SRE has no clear definition, but, Ben Treynor Sloss, a Google’s VP of engineering or specifically the man behind the introduction of SRE coined the term as “It is what

When more companies are using a certain approach, it is an evident that the approach is profitable or beneficial to organisation. In the recent years, there is rise in the number of adoption of Site reliability engineering (SRE) in companies as an added value to DevOps approach. SRE refers to the use of software engineering

Meeting customer demands had always been every organisation important mission in business. Nowadays, due to the never ending invention of various technologies, IoT devices in particular, as well as the introduction to Internet of Behaviour (IoB), the mission has become more crucial than ever. Ergo, organisations have to adopt approaches that enable them to succeed

Take Care in Handling the Results of Your Web Application Testing

This post is about How threat model can reduce cost and time of security. Threat Modeling can be an effective way to reduce cost and time of security. But what makes it effective is how it is implemented. The more effective way you implement it the more effective result you get. In this post we

Continuous Integration/Continuous Delivery (CI/CD) and DevOps are two terms that a lot of people think it’s the same thing or they are synonyms. In fact CI/CD and DevOps are different. In this post we will talk about the difference between CI/CD and DevOps and how they are related. Before starting with the difference we would

DefenseCode for DevSecOps, this is a special event E-SPIN organize for business partner and end customer how DefenseCode ThunderScan SAST and WebStrike DAST can be deploy together to gain triple productive for the customer who have the two products, and how to use it accelerate your DevSecOps, secure DevOps or agile development lifecycle you are

Nowadays, due to customer’s demand and requirements, software development company has to keep up by at least adopting DevOps approach in their software development methodology. DevOps changes the game through iterative and rapid code development hence building, testing, and deploying software become faster and easier. Nevertheless, as the value of safe and secure delivery code

Today, in the modern software development market demand, the implementation of Continuous integration/continuous delivery (CI/CD) pipelines is no longer an exception. This is because CI/CD pipelines are capable in improving the workflow of software delivery through a fully-automated process efficiently. However, these capabilities do not eliminate the vulnerabilities that exists in the CI/CD pipelines that

5 Things Your ISMS Needs to Be Effective

In software engineering, pipeline refers to a set of automated processes that allow developers and operation professionals to work together to build and deploy codes to a production compute platform. Through this post, we will further understand DevOps pipeline and why DevOps security matters? DevOps is a term adopted from the combination of the word

There are a lot of CI/CD Tools, each of them has their own special features. E-SPIN compile the list for those who in the CI/CD tools chain journey or in pursue for the DevSecOps in single integrated platform in 2021 below: Jenkins Brief: Jenkins is an open source automation server. It can automate tasks such

Knowing the benefits of CI/CD tools can let you know how important it is. Implementing CI and CD in your projects can provide your software with a lot of benefits that are indispensable. To know more about those benefits keep reading.   Code Quality Using CI/CD tools enhances the code quality. Working separately to fix

CI/CD Tools Instead of working separately in developing a software, CI/CD tools provides a shared environment that allows developers to work together so the software can be delivered in high quality and more secure in a short time. CI/CD tools allow the developers to see the changes made by other developers, so all of them

  What is GitLab commercial tier? GitLab Commercial Tier refers to the paid tier which are GitLab Premium and GitLab Ultimate. What is offered in both tiers? GitLab Premium Ideal for scaling organisations and for multi team usage. Adds enterprise level support with priority support, live upgrade assistance and a technical account manager and enterprise

TOP