If you remember, I (@wickett) said I would be doing more blogging for Signal Sciences in the new year. We still are in January, but I am glad to say that so far so good. Here are a couple highlights from recent posts:
What security experts need to know about DevOps and continuous delivery < This post made it on DevOps Weekly (which of course you should subscribe to) which is awesome! The article takes a few topics and breaks them down for what they mean to InfoSec. Unfortunately to many security people, devops is still Ops 2.0 and is mainly about chef/puppet or that systemic madness called Continuous Delivery. This article attempts to show how security can fit in the new world of devops.
Security Visibility: If You Can’t See ’Em, You Won’t Stop ‘Em! by @txs breaks down the three questions that should keep you up at night if you care about security. This article lays the groundwork of bridging devops and security by focusing on three pragmatic questions. This is a must read.
- Rugged Software Engineering video with Nick Galbreath at GOTO London is a recording of Nick’s excellent talk at GOTO London. The GOTO London videos just got uploaded a few weeks back so they are fresh off the presses and ready for your viewing pleasure. I think this talk along with Dan North’s talk on the history of Agile were the highlights of the conference. I will be adding in more links and talks from the conference over the coming weeks and even the one yours truly did.
That’s all for now. Happy Friday everyone!