I don't know if you had a chance to log on to the live webinar, ‘ The True State of Security in DevOps and Expert Advice on How to Bridge the Gap’ , where HPE Security Strategist, Stan Wisseman, spoke to Coveros CEO and Founder, Jeff Payne about his thoughts on DevOps and how to fit security into the process. I thought It was a great conversation, and one (I believe) that any company thinking of adopting DevOps should hear.Highlights of the conversation:
Jeff's definition of DevOps - “a philosophy for how we build, test, deploy, and operate our software. It believes that everyone involved in that supply chain needs to collaborate constantly if we are going to deliver more value to our customers, quicker.”
Jeff believes that:DevOps is driving agile adoption, rather than the opposite. Companies who are adopting DevOps are realizing “in order to do the deployment process properly, you need to build software in a more incremental manner, and that’s what agile gives you”. The biggest challenge to DevOps is cultural. There is measurable ROI in DevOps. Security is no longer a gate it’s spread through the process. (or at least, that’s how it should be)
He goes on to saythat, though it is a very important part of the software development process, the feedback loop is not being done - results are piling up. Fixingissues needs to be a priority.
He also has practical advice on how you can fit security into your DevOps process, including my favorite line: “Security happens every day. It’s part of the process.”
If you weren't able to view the live webcast, no worries. The full webinar is available on demand .