Is DevOps just a glorified tools team?

DevOps: Culture? Technology? Fad? The Future.

As development methodology shifts from Waterfall to Agile, and CI/CD systems such as Jenkins and Travis are deployed, Security teams and their tooling become “outsiders” to the DevOps collaboration culture.

Scaling Out Isn’t The Answer

A scale-out approach works extremely well for most infrastructure architectures and applications, but it is completely ineffective in terms of additional security tools and hiring more Security Engineers. This shifts the Security team even farther away from the Development and Delivery process and it doesn’t embrace the core tenets of the DevOps culture — Collaboration, Automation, Measurement, and Sharing.

There is no effective way to automate the manual testing processes, nor is there are way to correlate the disparate output and get a true measurement of security resiliency.

Platform is the New Black

Enterprise Platform CI/CD solutions such as GitHub, Jenkins, and Travis have greatly helped with automating Application Development, Build, and Deliver functions; there needs to be a similar solution for Cyber Security that brings the Security Team back in-line with those processes. At Cybric, we believe this approach is what truly creates the “DevSecOps” culture and environment that reduces the need for a large number of tools.



0 answers

#organizational structure,#devops
Mike D. Kail

Mike D. Kail, CTO

DevOps: Culture? Technology? Fad? The Future.

As development methodology shifts from Waterfall to Agile, and CI/CD systems such as Jenkins and Travis are deployed, Security teams and their tooling become “outsiders” to the DevOps collaboration culture.

Scaling Out Isn’t The Answer

A scale-out approach works extremely well for most infrastructure architectures and applications, but it is completely ineffective in terms of additional security tools and hiring more Security Engineers. This shifts the Security team even farther away from the Development and Delivery process and it doesn’t embrace the core tenets of the DevOps culture — Collaboration, Automation, Measurement, and Sharing.

There is no effective way to automate the manual testing processes, nor is there are way to correlate the disparate output and get a true measurement of security resiliency.

Platform is the New Black

Enterprise Platform CI/CD solutions such as GitHub, Jenkins, and Travis have greatly helped with automating Application Development, Build, and Deliver functions; there needs to be a similar solution for Cyber Security that brings the Security Team back in-line with those processes. At Cybric, we believe this approach is what truly creates the “DevSecOps” culture and environment that reduces the need for a large number of tools.