A new report from observability data platform provider Mezmo and Enterprise Strategy Group (ESG) shows that the current adoption of DevSecOps is low but it's poised for future growth. Based on a survey of 200 DevOps and IT/information security professionals, only 22% of organizations have a formal DevSecOps strategy, but 62% are evaluating use cases or have a plan to implement it ...
Vendor Forum
August 30, 2022
Tucker Callaway
Mezmo
August 24, 2022
Michael Stahnke
CircleCI
In software delivery, there is no question that speed is important. When software teams move fast, good things happen and business value is delivered more frequently. But, speed comes with a tradeoff: complexity. As this complexity grows, how can engineering teams succeed? After analyzing millions of workflows from more than 50,000 organizations across the world, I've outlined some ways teams can start optimizing their software delivery for high performance ...
August 23, 2022
Dustin Milberg
InterVision
How do government agencies remedy the need for efficient, multi-cloud communications with existing on-prem solutions? And how do they do so without neglecting cybersecurity, which remains a priority for organizations handling confidential data? The answer is simple: They don't ...
August 22, 2022
David Torgerson
Lucid Software
Developers have been more productive than ever during the past couple of years due largely to the shift to remote work, as they often thrive in isolated workspaces and need long periods of uninterrupted focus. Though, regardless of how much developer teams may want to stay remote forever, 74% of US companies are using or planning a permanent hybrid work model. So what does this mean for developer teams in today's work environment? ...
August 17, 2022
Christian Brink Frederiksen
Leapwork
There has long been a significant disconnect between CEOs and testers regarding the sufficiency of software testing prior to its release. A new report from Leapwork, in collaboration with market-research firm Censuswide, surveyed approximately 500 CEOs and software testers to determine current attitudes towards, and perceptions of, software testing within large organizations. The study found that 85% of US CEOs could be leaving their businesses open to reputational and financial risks by releasing insufficiently tested software ...
August 16, 2022
Ratan Tipirneni
Tigera
As digitalization continues pushing applications and services to the cloud, many companies discover that traditional security, compliance and observability approaches do not transfer directly to cloud-native architectures. This is the primary takeaway from Tigera's recent The State of Cloud-Native Security report ...
August 15, 2022
Archie Agarwal
ThreatModeler
Threat modeling has become an integral part of the software development process, providing developers with an opportunity to identify security threats and vulnerabilities and create logical remediation methods ... Let's look more at threat modeling, how the practice started and how it continues to flourish today ...
August 11, 2022
Erik Frieberg
Solo.io
The broad adoption of containers and the emergence of Kubernetes as a de facto standard have pushed the boundaries of cloud native development's impact even further. Containers, though not a prerequisite for microservices, provide the right packaging for the mass adoption of microservices. As with all new tech, however, when one problem is solved, another often emerges ...
August 10, 2022
Manish Gupta
ShiftLeft
In order to move the needle on secure programming, there needs to be a shared understanding of the goals of an improvement program and what it will take to get there. There are four rules we found when we analyzed results from millions of scans ...
August 09, 2022
Chris Wysopal
Veracode
In the last six months, organizations from Microsoft to the Red Cross have been hit by cybersecurity breaches. Widespread open-source vulnerabilities, such as Log4j and Spring4shell, have also shaken the software industry, reminding us just how entwined source code has become. These recurring incidents raise the question, are we making progress in securing our software? ...
August 03, 2022
Anthony Abdulla
Pega
The last two years have accelerated massive changes in how we work, do business, and engage with customers. According to Pega research, nearly three out of four employees (71%) feel their job complexity continues to rise as customer demands increase, and employees at all levels feel overloaded with information, systems, and processes that make it difficult to adapt to these new challenges and meet their customers' growing needs ...
August 02, 2022
Benjamin Brial
Cycloid
Pinpointing gaps within an organization and acquiring people with the skills to drive a digital revolution is difficult. And ongoing labor shortages, the impact of automation on job roles, and continuously evolving technology doesn't make it any easier ... What can be done to help organizations not just survive, but also thrive in this new, rapidly changing reality? ...
August 01, 2022
Alisha Mittal
Everest Group
The low-code platform market offers enterprises a large selection of options with players of varying sizes and capabilities co-existing. However, the market's complexity is also one of the key reasons the technology has not realized its full potential. To find out what the future holds for this industry and the different scenarios that may unfold, read on ...
July 26, 2022
Loren Goodman
InRule Technology
Looking at the world of emerging technologies, artificial intelligence (AI) appears to be the next technology on the cusp of breaking into the mainstream, thanks to the development and growing proliferation of no-code AI. A code-free technology that enables non-AI experts to implement and test their ideas without any need for a data scientist, no-code AI will prove to be a democratizing force within the AI industry enabling greater accessibility and use by businesses outside of the Fortune 100 ...
July 25, 2022
Dima Lazerka
VictoriaMetrics
Open source security is increasingly in the headlines, with a staggering 650% rise in open source supply chain attacks last year. New forms of attack, like "dependency confusion" are hurting organizations with alarming regularity. Given how widespread open source is within enterprise tech, one insecure package can cause a ripple effect around the globe ...
Pages
