The Weekly Security and DevOps News Brief

A lot happened in the world of security and DevOps this week. Here are the top posts we saw:

CIOs Get Clever About Finding Needed Skills as IT Talent Shortage Grows

A recent article in The Wall Street Journal by Kim Nash about the shortage of qualified IT talent highlighted the challenges that face CIOs trying to respond to the tech demands of business. A recent report by the Harvey Nash Group and KPMG LLP reported that 59 percent of CIOs and other IT executives face a skills shortage.

Read the full piece here.

 

Is DevOps good or bad for security?

CIO published a piece by Mary Branscombe on the pros and cons of DevOps as it relates to security. The article noted that while DevOps is often associated with speed, which may be linked to cutting corners and skipping steps – DevOps can provide better visibility and speed, which can actually strengthen security.

Read the full piece here.

 

Process as code: Security ops orchestration for a brave new world

According to an article by Sandeep Bhadra in TechCrunch, there’s a massive shortfall in the number of trained security experts to man a typical Security Operations Center (SOC) monitoring the health and safety of a corporation’s digital footprint. The good news is that there appears to be a solution to deal with this massive human shortfall and empower SOC teams. Serious efforts are afoot to record process as code — or simply put, to use software to automate repetitive but time-consuming tasks while increasing the productivity of individual security experts. Much of this is so-called SecOps orchestration.

Read the full piece here.

 

Why cloud security should be a part of software development

Cloud security needs to be part of the software development lifecycle, reported an article in BetaNews by Nazar Tymoshyk. According to the piece, there are two approaches to security: reactive and proactive. Taking the proactive approach means putting security controls in place to avoid the possibility of situations arising. In this situation, it’s important to get everything up and running again, which is the reactive approach of Incident Forensics and Response.

Read the full piece here.

 

8 ways DevOps and automation bolster security

An article by Anders Wallgren in ITProPortal reported that DevOps bridges the gap between Development and Operations to accelerate software delivery and increase business agility and time-to-market. With its roots in the Agile movement, DevOps fosters collaboration between teams and streamlines processes, with the goal of breaking silos in order to ‘go fast’.

Read the full piece here.

 

What interesting security and DevOps news did you read out there this week? Let us know in the comments.