my thoughts on devops
Some interesting new or repurposed cloud vendors Centrify: https://www.centrify.com/ — Zero-Trust Security. Identity as a Service. IAM, Privileged Access, Endpoint Authentication/Authorization CloudCheckr: https://cloudcheckr.com/ — Security & Compliance in AWS, GCP, …
Automation is as central to DevOps as the ball is to soccer. IT automation is the use of instructions to create a repeatable process that replaces an IT professional’s manual …
What is a Microservice? Microservices are small, autonomous programs that function as both data producers and data consumers, particularly between service boundaries within a virtualized cloud environment. 100-200 individual microservices might …
A modified version of this article first appeared in DZone. I was recently browsing through the 20 latest DevSecOps reference architectures for 2018 and was struck by several things: each has a …
Note: A modified version of this article was first published in DZone. It has been sometime since I’ve seen an updated SonarQube tutorial here on DZone, so I thought that …
Note: A modified version of this article was first published in DZone. Welcome back! If you missed Part 2, check it out here. Securing Data at Rest Data at rest includes inactive …
Introduction NOTE: A modified version of this article was first published on DZone. Two weeks ago, I presented the first of a three-part examination of security concepts and controls in AWS. We …
The Shared Responsibility Model Note: A modified version of this article was first published on DZone. When you begin working in AWS, the most important security (and, to a …
Goal: Have an automated, auditable secure CI/CD environment where security controls are transparent to developers and users. To this end, I propose the following: Ensure development, QA, and production servers …
How many times have you been working with multiple containers & there is that one *simple* problem that takes you two days to figure out? You can go get kubernetes …
