DevOpsDays Chicago 2016: Dev, Ops, & the Role of Security

Last week I spent two great days at DevOpsDays Chicago. Usually, I attend conferences to listen to the talks, but in Chicago I was representing Threat Stack (one of the event’s Gold Sponsors), so my job was mostly listening to engineers discuss their organization’s security stance and requirements. I learned a lot from the conference — especially about the integration of Security into a DevOps world.

Read more “DevOpsDays Chicago 2016: Dev, Ops, & the Role of Security”

A Glimpse Into Boston Secure World 2016

I attended day two of Secure World Boston on Wednesday.  I find that taking notes during sessions helps me learn more — plus, it means I can put together a short blog post to more easily share with you what I learned about PCI compliance, cyber assurance, and using the public cloud for enterprise security. Here are some of the highlights… Read more “A Glimpse Into Boston Secure World 2016”

Bringing Infosec Into The DevOps Tribe: Q&A With Gene Kim

Last week, I had a call with Gene Kim, founding CTO of Tripwire and author of The Phoenix Project (see end of post for more details). I’ve known Gene from the DevOps community for awhile now, so we took this time to dive into all things DevOps and Security, in the end resulting in this great Q&A to share with you all on what bringing Security into DevOps means for us all.

Read more “Bringing Infosec Into The DevOps Tribe: Q&A With Gene Kim”