DevSecOps – the perfect marriage between DevOps and Security

Security_Guest Frequent Contributor.
Frequent Contributor.
2 0 2,101

By Nick Lim, Managing Director, Southeast Asia and Korea, Micro Focus

Throughout the years of my career, it has always been a rewarding and eye-opening experience to witness organisations make the shift from legacy IT to process automation and witness the benefits first-hand. From its conception a decade ago, DevOps has indeed evolved to become a critical tool for companies looking to stand out in today’s digital economy in terms of quality and speed of service.

And this is nowhere more prevalent than in the media industry. Intense competition for consumers’ attention is in full swing, and media houses need to apply a nimble and digital-first approach to every aspect of their operations to ensure sustainable growth.

The Micro Focus team was excited to jointly organise with Singapore Press Holdings (SPH), Singapore’s media organisation, a mini hackathon last week and discuss the importance of DevSecOps – the perfect marriage between DevOps and Security. As Glen Francis – CTO at SPH – has highlighted, the digital push and the need to deliver applications faster, has introduced increased automation into the app development process. However, the need for speed and agility should not compromise the quality of applications, especially their security. We had a fruitful and informative session with the team of developers and engineers on the importance of continuous quality and security at the very beginning of application development process.

The intense business pressure of pushing out new products to the market has led to the trend of code reuse – where developers might overlook vulnerabilities in codes written by third-parties, which can compromise the security of the end-product. This aspect of DevSecOps was the key focus of our Hackathon where we’ve worked together with developers to identify potential vulnerabilities in already written codes. SPH is definitely setting the right example to enterprise organisations in terms of zooming in into the right IT practices.

DevSecOps is the perfect marriage between DevOps and Security.png

 

I cannot stress enough the importance of ongoing testing of new software during the development stage, and DevSecOps is the IT philosophy that can significantly enhance operational performance within an organisation. By facilitating more opportunities for close collaboration at every stage of innovation between the engineers and security specialists, DevSecOps ensures that security is easily incorporated into every aspect of the product portfolio at scale.

An agile organisation is one that can act fast, both in terms of time-to-market and its ability to nimbly recognise, block, and alert specialists to threat agents. As the global threat landscape constantly evolves, I am confident that DevSecOps will quickly gain traction amongst organisations looking to make secure business environments a priority.

The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.