Lean Security Assessment 2018-02-27T14:39:01+00:00

LEAN SECURITY ASSESSMENT

Lean Security Assessment Service brings Agile, Lean, Security and DevOps together into one practice.

Learn More About Lean Security Assessment Service

We help you build sustainable and secure coding practices.

LEAN SECURITY

Lean Security is designed to measure your teams abilities to automate and secure the deployment of infrastructure and software. To perform the assessment we rely upon direct staff interviews, architecture and documentation reviews and pair programming with your engineers. All of the collected data will be entered into the LS/IQ platform to enable stakeholders to visually understand the maturity of the team and review the roadmap for the team to improve.

Our methodology is the combination of several disciplines to ensure a holistic view of an organization’s online software and infrastructure. This holistic view strengthens the company’s IT architecture. This service brings Agile, Lean, Security and DevOps together into one practice. This is accomplished through implementation of four core principles to each practice.

Lean Security Assessment Process

The Lean Security Assessment is broken into 4 main categories of vision, collection analysis and reporting. The New Context LS/IQ team begins our on-boarding process by sitting down with your team to understand your vision, strategy and mission. Next follows an iterative and cyclical process of collecting data, analyzing and generating a final report.

As part of the support process and use of LS/IQ, the customer key stakeholders or management will establish desired time and effort based objectives.

The objectives typically include:

  • Software delivery pipeline time to market objectives.
  • Software delivery of applications and infrastructure readiness for development staff.
  • The use of automation and instrumentation.
  • Adherence to information security compliance objectives.

Findings are delivered within the LS/IQ interactive platform inclusive of a roadmap showing a path to reach the client’s goals.

Four Core Principles of Lean Security

  • Awareness

  • Measurement

  • Simplification

  • Automation

Lean Security Manifesto

LS/IQ

The Lean Security Assessment and our software product LS/IQ Platform assesses a customer’s processes, people, culture and tools with respect to DevSecOps, Lean and Agile.

LS/IQ supports and displays the Lean Security Assessment and the additional quarterly check-ins.

“Working with numerous customers from various industries, New Context often discovers an organization is working with a broken incentive model and their priorities are misaligned.”

Each of the four core principles is equally applicable to the use of Agile development methodologies, adherence to DevOps principles, and successful implementation and understanding of security or compliance. Successful implementation of the outlined principles and components has been shown to effectively reduce risk. These components are the primary basis around DevOps and Lean Security services and have been shown to build stronger and more secure businesses, deliver product to market faster, and efficiently scale products.