Pete Cheslock's Latest Blogs

29 total posts.

3 Min Read
How to Apply DevOps Culture to Security & Why You Should Do It

Pete Cheslock

June 17, 2016

Unless you’ve been living under a rock (or don’t work in the tech industry), you’ve probably heard the term DevOps thrown around. A mashup of ...

7 Min Read
The Top 7 AWS Security Issues: What You Need to Know

Pete Cheslock

June 15, 2016

Despite the rapidly increasing need for cloud-native visibility into behavior and activity across AWS environments, companies are still learning ...

4 Min Read
What to Do When You Can’t Fix a Security Vulnerability

Pete Cheslock

June 2, 2016

When you discover a security vulnerability affecting your environment, you want to fix it. Quick. ...

4 Min Read
No Magick Here: How to Detect ImageTragick (CVE-2016–3714) With Threat Stack

Pete Cheslock

May 5, 2016

On May 3rd the ImageMagick security team posted on their blog a possible remote code execution vulnerability involving specially crafted images. For ...

3 Min Read
Why Security is No Longer Just the Domain of Security Experts

Pete Cheslock

April 22, 2016

We had a great time at the co-hosted PagerDuty/Threat Stack workshop in Seattle last Wednesday: “Incident Management in the 21st Century.” The ...

4 Min Read
4 Steps To Effectively Integrate DevOps Workflows With Cloud Security Practices

Pete Cheslock

November 24, 2014

I’ve spent most of my career in Operations, and the last 5 years at various organizations advocating and instilling DevOps principles in the teams ...

5 Min Read
Bringing Infosec Into The DevOps Tribe: Q&A With Gene Kim

Pete Cheslock

October 8, 2014

Last week, I had a call with Gene Kim, founding CTO of Tripwire and author of The Phoenix Project (see end of post for more details). ...

4 Min Read
The Case for Continuous Security

Pete Cheslock

July 16, 2014

This is the second post in our new series of weekly blog posts that dives into the role of SecDevOps. This series looks into why we need it in our ...