DevSecOps: The Broken or Blurred Lines of Defense

DevSecOps: The Broken or Blurred Lines of Defense

With the modern patterns and practices of DevOps and DevSecOps it’s not clear who the front-line owners are anymore. Today, most organizations’ internal audit processes have lots of toil and low efficacy. This is something John has referred to in previous presentations as “Security and Compliance Theater.” In this talk, filmed at *Exploring DevOps, Security, Audit compliance and Thriving in the Digital Age,John takes a deep dive into DevSecOps and what effective governance will look like as regulation and automation continue to have competing impacts on the way software is delivered.



LATEST ARTICLES

How to Use the AWS Lambda Function in Python

Amazon Web Services (AWS) Lambda and Python democratize access to code development by reducing the complexity involved when developing and deploying it. The serverless service, AWS Lambda, allows you …

How to create and manage functions in Lambda with AWS CLI

AWS Lambda has been a game changer for the serverless industry ever since its inception in 2014. It allows you to deploy serverless applications in NodeJS, Python, Java, Go, PowerShell, C#, and Ruby. …

Kosli Changelog - February 2023

Hello, and welcome to this month’s edition of the change log. We have events filter for environments, commit evidence, GitLab support, and doc updates to share with you, so let’s get straight into it. …

How to strangle old code using Python decorators

The Strangler Pattern is a pattern for safely and carefully retiring old code. The idea is simple - you run the old code and new code live, in production, side-by-side, checking that the new code …

A Deep Dive into fmt Printf in Golang

Go is a simple but versatile programming language developed by Robert Griesemer at Google. It is one of the most sought-after programming languages and continues to grow in popularity. Critical to its …

What is AWS Lambda? An Introduction and Guide with Examples

Serverless computing enables you to build and run applications and services without the need to manage infrastructure. With serverless computing, you can focus on writing and deploying your code …


FEATURES

DevSecOps: The Broken or Blurred Lines of Defense

With the modern patterns and practices of DevOps and DevSecOps it’s not clear who the front-line owners are anymore. Today, most organizations’ internal audit processes have lots of toil and low …

Help, we’re doing ISO27001! Why, what, and how?

At Stacc, Espen Thomassen Sæverud (CTO) & Øyvind Fanebust (Partner) have extensive experience in banking and finance with particular expertise in the area of Continuous Compliance. In this talk …

Regulations v DevSecOps: Requiem

In this 15 minute lightning talk, Diptesh “Dips” Mishra, CTO for Shoal (a Standard Chartered Venture) talks about the governance challenges that financial services organizations face when they look to …


NEWS

Why I joined Kosli - a story about DevOps and modern governance

Maybe I’m crazy, but I’ve just joined my 12th startup at the age of 63. Kosli is the product I’ve been looking for since I started talking about this idea five years ago, but until recently I …

Kosli Changelog - November 2022

A lot is happening at Kosli headquarters and satellite offices (or homes! How sweet working for a remote first company can be). In this post we’d like to share some of the latest additions that …

“Did I break prod?” Part 2. Introducing the Kosli Search command

A few months ago, I shared the Eureka moment! I had when I realized how much easier (and less stressful) my earlier career as a developer would have been if I’d had Kosli. Tl;dr - I thought I’d …


TECHNOLOGY

How to Use the AWS Lambda Function in Python

Amazon Web Services (AWS) Lambda and Python democratize access to code development by reducing the complexity involved when developing and deploying it. The serverless service, AWS Lambda, allows you …

How to create and manage functions in Lambda with AWS CLI

AWS Lambda has been a game changer for the serverless industry ever since its inception in 2014. It allows you to deploy serverless applications in NodeJS, Python, Java, Go, PowerShell, C#, and Ruby. …

How to run your Python Flask server inside a readonly Docker container

In a previous blog we showed you how to strangle old code using Python decorators. This 5 minute blog post shows you how to run a Python Flask server in a readonly Docker container. The steps are …