A Day in the Life of a DevSecOps Manager

A Day in the Life of a DevSecOps Manager

Ari Kalfus is DevSecOps manager at digital health company Rally Health. He leads the application security direction for the enterprise and coordinates its internal and external penetration testing programs. Dark Reading: What are some of the first...
Why a Unified Enterprise DevOps Platform is Necessary

Why a Unified Enterprise DevOps Platform is Necessary

As a senior DevOps consultant working with large organizations over many years, I have been involved in more than 70 digital transformation projects, with hundreds of applications. While many things have changed over time, one thing has been a consistent source of...
Managing Business Risk in a DevOps Context

Managing Business Risk in a DevOps Context

We hear a lot in the industry about the importance of automation in DevOps to enable speed. However, there is another element that is often missing in the discussion – risk, compliance, and security. Traditionally we have a zero-sum approach,...
Forget Left or Right… It’s Time to Shift Everywhere

Forget Left or Right… It’s Time to Shift Everywhere

The “Building Security In Maturity Model” observational study, or BSIMM, tells you everything in its name. After studying hundreds of companies for over a decade, BSIMM seeks to understand what organizations are actually doing to build security initiatives into their...
Why Application Testing Must Evolve Within the DevOps Pipeline

Why Application Testing Must Evolve Within the DevOps Pipeline

As the practice of DevOps evolves, so do the supporting tasks; hopefully in such a way that they introduce increased efficiency and automation to accelerate development and deployment pipelines. However, one specific process still remains a speed bump on the road to...