DevSecOps

Open Policy Agent as a Control Engine - DevSecOps Conf 2022 Recap

Feb 28, 2024 By David Melamed In Jit

JIT’s own CTO & Co-founder, David Melamed, had the opportunity to participate in KubeDaily’s DevSecOps Conf 2022 this weekend in partnership with Docker Bangalore and the CNCF, with a really great talk on Open Policy Agent as a Control Engine.

Read Post

Jit

Read more about Open Policy Agent as a Control Engine - DevSecOps Conf 2022 Recap

DataTrails - Chain of Custody for Nuclear Waste Disposal

Feb 26, 2024 By DataTrails In DataTrails

This demo is an example of how DataTrails is used to collect information from different databases and different suppliers to form a single source of truth for the full life cycle of an asset. The video shows how multiple parties can track disposable containers for nuclear waste on the DataTrails transparent platform.

View Video

DataTrails

Read more about DataTrails - Chain of Custody for Nuclear Waste Disposal

How to build a modern DevSecOps culture: Lessons from Jaguar Land Rover and Asda

Feb 21, 2024 By Brian Piper In Snyk

People, processes, and tooling all impact an organization’s ability to maintain a strong AppSec program. In a recent panel at Black Hat Europe, Snyk spoke with two customers — Jaguar Land Rover (JLR) and Asda — about the unique challenges they face managing development teams, onboarding new security tools, and building a modern DevSecOps program throughout their organizations.

Read Post

Snyk

Read more about How to build a modern DevSecOps culture: Lessons from Jaguar Land Rover and Asda

DataTrails US DOD Explainable AI Trust Demo

Feb 20, 2024 By DataTrails In DataTrails

DataTrails revolutionizes data integrity and transparency by enabling control over data flows, validating data sources, and constructing mutually accountable records. This approach not only meets the immediate need for secure and trusted data exchange but also lays the groundwork for AI systems to automate sensitive workflows confidently. DataTrails' patented distributed ledger technology underpins AI-driven decision-making, ensuring resilience, explainability, and regulatory compliance.

View Video

DataTrails

Read more about DataTrails US DOD Explainable AI Trust Demo

What is the DevSecOps Maturity Model (DSOMM)?

Feb 15, 2024 By Eyal Katz In Spectral

High-velocity software development today is close to impossible (and most certainly not sustainable) without DevOps. The migration to the public cloud, along with increasing regulatory demands, and other factors made application and code security as vital as DevOps. Thus were born the practices and frameworks of DevSecOps. The value of DevSecOps is evident and clearly understood by technologists.

Read Post

Spectral

Read more about What is the DevSecOps Maturity Model (DSOMM)?

DevSecOps best practices

Feb 13, 2024 By Steven Zimmerman In Synopsys

There is a need for a new approach to AppSec—one that handles business risk without obstructing company growth, eliminates the tradeoff between speed and security, and fulfills the DevSecOps promise. Here are four DevSecOps best practices to help your organization realize this vision with an efficient, effective DevSecOps strategy.

Read Post

Synopsys

Read more about DevSecOps best practices

7 DevSecOps Principals Every Developer Must Know

Feb 7, 2024 By Eyal Katz In Spectral

DevSecOps – for many, it feels like a magical black box where code and sensitive digital assets go in one end, and a working piece of software comes out the other. Security practices within the development and operational phases can often get lost. Organizations that haven’t adopted DevSecOps see half of their apps at risk of attacks, while those with a DevSecOps-first approach have only 22% at risk. That’s why the core principles of DevSecOps are important.

Read Post

Spectral

Read more about 7 DevSecOps Principals Every Developer Must Know

Creating DataTrails for Supply Chain Artifacts

Feb 7, 2024 By Steve Lasker In DataTrails

In a world where software is produced, distributed, and re-distributed, how do you ensure the software you consume is authentic and safe for your environment? How do you know the software you deployed yesterday is safe today? Most software exploits are discovered after the software has been deployed, which raises the question: It’s not just about getting software updates, as the majority of exploits are distributed as updates. Staying updated isn’t the most secure.

Read Post

DataTrails

Read more about Creating DataTrails for Supply Chain Artifacts

Customize your Access Policies with DataTrails

Feb 1, 2024 By DataTrails Team In DataTrails

Signing up with DataTrails comes with the ability to share your audit trails with your business partners, other applications, and your internal team. Access policies control users, apps & organizations’ read & write privileges to provenance data in DataTrails. If you’re using an integration, access policies offer a way to fine-tune these integrations, giving specific permissions to add to and read your records.

Read Post

DataTrails

Read more about Customize your Access Policies with DataTrails

DevSecOps Security Best Practices

Feb 1, 2024 By JFrog In JFrog

Carmine Acanfora, Solutions Architect at JFrog in the EMEA region, leads this security best practices webinar. In this webinar, we discuss the advanced features of the JFrog Advanced Security solution, now available in self-hosted mode. We will take the time to address your questions, particularly on topics crucial for all developers, such as: Don't miss this opportunity to explore JFrog's latest security solution and learn how to accelerate and secure your software supply chain with the first DevOps-oriented security solution on the market.

View Video