True Cross-Functional Collaboration

How to Create Cross-Functional Collaboration

Organizations seeking to improve performance and their bottom line need look no further than improving their DevOps implementation. Based on survey results from more than 27,000 respondents over a six-year period, organizational performance is directly correlated to how well the organization implements a DevOps culture.[1] DevOps yields efficiency and productivity gains which go beyond simple[…]

ThreatModeler JIRA Plugin

Introducing the ThreatModeler JIRA Plugin

SecDevOps is all about pushing security left with tools that automate the integration between security and DevOps teams working in an agile environment. Ideally, that left-shift will go as far as integrating security considerations into the architect’s white boarding stage. Implementing this left-shift with ThreatModeler is rather easy. ThreatModeler’s diagramming canvas works from an architectural[…]

Implement Enterprise DevSecOps

How to Implement Enterprise DevSecOps

Enterprise DevSecOps is the union of Agile development, security, and operations. Organizations have experienced some notable success in integrating two of the three pillars of long-term competitive advantage and strategy, alternately benefitting from DevSec, SecOps, and DevOps with each of their hybrid emphasis. However, the real benefit to organization’s bottom line and market advantage is[…]

DevSecOps is Security at Scale

Enterprise DevSecOps is Security at Scale

Enterprise DevSecOps comes from enterprise threat modeling across the comprehensive attack surface. Both seek to infuse security’s perspective end-to-end throughout the enterprise DevOps environment. In our previous article on implementing DevSecOps through rolling out an enterprise threat modeling process, we examined the intersection of SecDev’s focus on end-to-end security and SecOps’ focus on processes and[…]