22 03, 2017

Upcoming Talk: The Heart of DevOps is Cooperation

By | March 22nd, 2017|Events|

Ben Tomhave to speak at MISTI InfoSec World Saturday, April 1, 2017 Omni Orlando Resort at ChampionsGate, FL 4:15 PM – 5:00 PM Closing Keynote - The Heart of DevOps is Cooperation Ben Tomhave If you’ve ever performed a root cause analysis on security incidents, then you’ll have readily seen [...]

1 03, 2017

Automate Web App Security Scanning Using Arachni

By | March 1st, 2017|Uncategorized|

In this post I'm going to share with you how our teams implement automated vulnerability scanning for our web apps using Arachni and integrating that in to our Continuous Delivery pipeline. In this example we're going to show how we can do this using a Jenkins server, but theoretically anything [...]

28 02, 2017

RSA 2017: My DevOps Panel Takeaways

By | February 28th, 2017|Events|

Last week, nearly 43,000 of my closest security friends and I gathered at the RSA Conference at San Francisco’s Moscone Center. Per usual, the event didn’t disappoint. As a member of the DevSecOps speaking panel, here are a few of my key RSA takeaways from that discussion for organizations implementing [...]

10 02, 2017

How to Build DevOps Momentum

By | February 10th, 2017|Articles, Tips & Tricks|

For all of its challenges, 2016 was a year of inspiring innovation. SpaceX proved we can have reusable rockets by taking a page from a science fiction book and launching a rocket then landing it vertically on a moving boat. Enter a new era of space travel. Tesla sent all [...]

26 01, 2017

DevOps and Separation of Duties

By | January 26th, 2017|Blog|

Despite the rapid growth of DevOps practices throughout various industries, there still seems to be a fair amount of trepidation, particularly among security practitioners and auditors. One of the first concerns that pops up is a blurted out “You can’t do DevOps here! It violates separation of duties!” Interestingly, this [...]

Load More Posts