May 06, 2021
Tim Perry

When adopting DevOps, it's essential to take a mindful and strategic approach to change management. Investing this care and attention at the outset of DevOps initiatives can help ensure they proceed quickly and seamlessly, accelerating the business's progress and speeding time to value. Do you need to accelerate DevOps adoption in your organization? These five tips will help you get started today ...

May 04, 2021
Jon Edvald

Working with microservices and Kubernetes often means solving the same solved problems over and over, without having the time to focus on what really brings value to the business. Garden recently commissioned research to gather insights from software professionals to find out where time is being spent, what tasks often cause frustration, and how this time could be better spent. Some of what we learned reinforced my own experiences but there were some other surprising insights. And when we set out to quantify the impact of time spent on "solved problems" that respondents shared with us, the data was truly eye popping ...

May 03, 2021
Jayne Groll

The demand for DevOps talent has grown, with recruiting now or in the future a top priority. It was heartening to see that 49 percent of respondents — in the Upskilling 2021: Enterprise DevOps Skills Report — first look internally for hiring with 25 percent preferring to hire and train internal staff. Upskilling is a great opportunity for IT professionals to advance their careers inside their organization now and in the future ...

April 29, 2021
Hillel Solow

The DevOps revolution of the past decade has been driven by an increasingly fast-moving world. Where once the release of new software and applications was an event that happened every few months, it's now a constant, ongoing process with new code rolled out continually. DevOps teams have embraced this challenge by breaking free of the traditional siloed approach, and owning more of the development cycle themselves, including quality testing, integration and deployment. However, there's a major component that DevOps is still failing to take responsibility for: security ...

April 28, 2021
Odysseas Lamtzidis

There are a few best practices that DevOps teams should keep in mind to ensure they are not lost in the weeds when incorporating visibility and troubleshooting programs into their systems, containers, and infrastructures. Let's dive into these best practices ...

April 27, 2021
Jason Beres

Low code tools on the market focus on going from idea to app, by skipping the designer and much of the developer. That's a good way to get a concept out of your head and come up with a prototype, but to create a mission-critical business app with a good user experience, low-code apps on their own won't cut it ...

April 26, 2021
Christian van den Branden

Regardless of where your organization sits in the journey towards better application security (AppSec), the reality of what drives future success remains the same. From emerging to maturing to optimizing, all AppSec programs will eventually need to lock down the gold ring of security — otherwise known as visibility ...

April 22, 2021
Chris Wysopal

Retail may never be the same as it was pre-COVID and the pace of digital transformation keeps pushing faster. Because of the major uptick in volume in ecommerce, retailers' digital presence needs to be responsive and secure. Web applications need to meet customer demands for speed and a simple interface, but with 43% of all breaches occurring as a result of a vulnerable application layer, the security of these applications is critical ...

April 20, 2021
Dan Pupius

When I was asked to step up and take lead of the engineering team, I saw my role as an organizational problem solver. The goal was to empower individuals and set teams up to work in ways that fit them best, while also streamlining processes to reduce stress and confusion. As we grew the team and evolved our processes, I questioned the status quo and evaluated processes from first principles. Here are some of the things I learned along the way ...

April 19, 2021
James Brotsos

While it may seem counterintuitive to add another component to developers' workloads, organizations can meet the needs of today's developers by prioritizing effective AppSec training. But what exactly makes AppSec training effective, and how does this differ from the traditional types of educational resources developers are currently exposed to? Let's explore ...

April 15, 2021
Marco Palladino

Teams have made great strides to support the shift toward digital-focused solutions and capabilities, but the clock is ticking for those companies that are lagging in their digital innovation efforts. In Kong Inc.'s second annual Digital Innovation Benchmark, 51% of the 400 IT leaders surveyed in the US and Europe believe that their organization can only survive up to three years before going out of business or being absorbed by a competitor if they are unable to keep up with digital innovation ...

April 13, 2021
Leonid Belkind

Working in concert with industry partners is a critical step in the software development lifecycle. Collaboration with partners is just as important as analysis and design, but often gets short shrift. Without industry partnerships, both at the technical and business level, the platform will never achieve the necessary velocity and adoption. To help organizations meet their goals, I'd like to highlight three strategies that software teams should consider to strengthen partnerships in the development cycle ...

April 12, 2021
Richard Whitehead

We're all familiar with the process of QA within the software development cycle. Developers build a product and send it to QA engineers, who test and bless it before pushing it into the world. After release, a different team of SREs with their own toolset then monitor for issues and bugs. Now, a new level of customer expectations for speed and reliability have pushed businesses further toward delivering rapid product iterations and innovations to keep up with customer demands. This leaves little time to run the traditional development process. QA can no longer act as a major, individual step ...

April 08, 2021
Nick Lippis

The increase in public cloud consumption means an inevitable growth in the volume of security alerts, notifications and events. And with no common protocol among cloud service providers for handling security events, cloud consumers are burdened with increased spending on tools, equipment and talent needed to maintain at least a minimum amount of security across their assets. Because of these alert disparities, the ONUG Collaborative is developing the Cloud Security Notification Framework, or CSNF, to provide consistency among providers ...

April 07, 2021
David McKenna

Organizations need to show agility in the face of ever-changing economic, social, governmental, regulatory, and technology disruptions. Today, in the near post-COVID world, we can work, learn, and socialize from anywhere. The enterprise boundary has been extended beyond the DMZ to the cloud and to your home. This means we can't have a network perimeter-centric view of security anymore; instead, we need to securely enable access for the various users regardless of their location, device, or network ...

BIZDEVOPS Blog