What is DevSecOps? How is it different from DevOps, secure DevOps? This is the first question in most people’s minds, when they come with the term. DevSecOps is actually referring to three words and combining them together, it comes from Development (Dev) – Security (Sec) – Operations (Ops). Another slightly old term is secure DevOps,
Today’s post let’s talk about Future of Application security testing (AST). As background information for those who are new to the topic, application security testing (AST) is a domain with a variety of approaches. For those focus on static application security testing (SAST), dynamic application security testing (DAST), interactive application security testing (IAST), mobile application
We decided to dedicate one post to talk about what is source code management (SCM), and what it benefits as part of the range of source code management (SCM) theme topics. SCM always talks about software development lifecycle (SDLC) context, it is developed and designed for help software development, team lead software development, application development
Most enterprises journey to DevSecOps (or secure DevOps, or still using traditional DevOps for the context) beginning with Source Code Management (SCM), or source control or version control. Without that, where the Continuous Integration (CI) and Continuous Delivery (CD) take place for the seamless automation and CI/CD pipeline time to be saved. In general to
For global corporations, it does not lack the management framework and standard for best practice. In the last few years we have seen the digital transformation initiative where most of the great enterprises and their chief have put DT first in their top priority. Simply go cloud computing where you do not make your enterprise
Why should you use service virtualization? Simply, because It’s hard to stop testing because there is one component not available. As a consequence you will either not test until the component becomes available. Or you will start testing without this component. In both cases you will have issues, in the first case you will waste
Continuous Integration/Continuous Delivery (CI/CD) and DevOps are two terms that a lot of people think it’s the same thing or they are synonyms. In fact CI/CD and DevOps are different. In this post we will talk about the difference between CI/CD and DevOps and how they are related. Before starting with the difference we would
The CI/CD pipeline security cannot be compromised as it is the core component within a development process. The following describes four best practices to secure your CI/CD pipeline. First, tighten the access control. Access control is viewed as the first layer of protection of the CI/CD pipeline, thus the access to the CI/CD pipeline should
Nowadays, due to customer’s demand and requirements, software development company has to keep up by at least adopting DevOps approach in their software development methodology. DevOps changes the game through iterative and rapid code development hence building, testing, and deploying software become faster and easier. Nevertheless, as the value of safe and secure delivery code
- 1
- 2