DevSecOps (13)

Introduction to Configuration Management

Every company owns a variety of hardware components, devices, and software solutions that run on them. While it is advantageous to acquire and develop complex systems or technology that can aid in the accomplishment of critical business functions, it is equally important to properly configure and maintain them. If these systems or software are not properly managed and changes to them are not accurately tracked, then it becomes difficult to respond to security incidents effectively. Configuration management lays the groundwork for an organization’s effective security management program. This article discusses the fundamentals of configuration management, its significance, various elements, its benefits, and various tools to aid in its implementation.

Common Application Security Testing (AST) Tools in DevSecOps

You may incorporate numerous technologies into DevSecOps pipelines to detect security flaws at different phases. Application security testing (AST) tools are one example of these technologies. This blog page will provide you various tools that you can utilize for your different analysis needs in DevSecOps.

AppSec Pipeline and Shift-left

As we have learned, in the DevSecOps Methodologies article, DevSecOps offers the incorporation of security products as part of the continuous integration and deployment processes. Let’s take a step further and discover how to achieve security right from the start.

The 6 components of DevSecOps

When you are doing security in DevOps, the first challenge waiting for you is how to be as quick as possible. In this blog post we will discuss why we should implement DevSecOps to ensure that security can keep up with the pace of our project and what are it’s components.

An Introduction to DevSecOps

DevSecOps is the abbreviation for development, security and operations and is both the theoretical and practical implementation of automated integration of security at every step of the software development lifecycle. It is known as a mixture of software development and information technology’s operational management to provide continuous delivery of applications and services. In order to properly understand DevSecOps, one should have a good grasp of what is involved in the software development lifecycle.

Introduction to the DevSecOps Environment

Let’s learn about what a DevSecOps is.

Securing Data in the Cloud with Cryptographic Appliances

In this blog, we will go through the various forms of encryption, where they are utilized, and how they are employed in the cloud.

Securing Computing Resources

In this blog post, we will deep dive into components of computing resources and their security implications. Before learning how to secure a compute architecture, we need to learn its building blocks. Let’s start by understanding the importance and components of compute resources.

Cloud-Based Key Control

How safe are your cloud-stored keys? Where and how secret keys are kept can have a substantial impact on the overall security of the data.

Deploy Your First Project on Terraform with Basic HCL

Welcome to your very first Terraform project! In this blog post, we will create our first project with Terraform using HCL.

What is Infrastructure as Code (IAC) and its Benefits?

Infrastructure as code (IAC) is a management tool and mindset for controlling your framework like it is software. You can build, update, destroy, and control all elements of operations by writing code instead of clicking on a GUI. This article will give an introduction to Infrastructure as Code and its benefits.

Introduction to DevOps: Culture and Practices

DevOps is a set of practices that combine software development (Dev) and information technology operations (Ops) to shorten the software delivery life cycle. The main goal of DevOps is to increase efficiency and improve communication between these two silos. DevOps culture is about trust, collaboration, and automation.

Model, provision and manage AWS using CloudFormation

CloudFormation may seem intimidating to someone who is learning AWS. But gaining this skill is very useful for automating your development environment quickly and efficiently. I’ll give you a simple understanding of why CloudFormation is essential for your infrastructure.