Cloud Security Alliance, SAFECode Announce DevSecOps Working Group Launch
Working group to focus on ensuring enterprises employ proper security throughout application deployment
Seattle, WA – Nov. 20, 2018 – The Cloud Security Alliance (CSA) and the Software Assurance Forum for Excellence in Code (SAFECode) today announced the launch and call for participants for the DevSecOps Working Group. The working group will work to create a transparent and full circle management lifecycle that leverages all the components of DevSecOps to ensure timely and full functioning application deployment that includes proper security steps through every process.
The new working group will focus on two areas of research and development with an emphasis on DevSecOps models for:
- establishing a successful Continuous Integration/Continuous Delivery (CI/CD) pipeline, which includes framework development and pipeline tools; and
- secure automation, focusing on secure techniques for automation and the automation deployment, monitoring, etc.
The scope of the Working Group will include establishing top DevOps approaches for Dev(Sec)Ops; identifying top techniques and development tools such as immutable architectures, self-healing infrastructure, “air-gapping” IaaS, automation, monitoring; and identifying successes and challenges, covering training and tools, legacy, lift-and-shift, digital transformation, and cloud migration.
Rich Mogull, analyst and CEO, Securosis, and Ronald Tse, founder and CEO of Ribose, will serve as co-chairs of the working group. Individuals interested in becoming involved in future research and initiatives are invited to visit the DevSecOps Working Group join page.
The Working Group’s next event will be held on November 28 at 11 am EST/8 am PST. Click to register.
The Software Assurance Forum for Excellence in Code (SAFECode) is a non-profit organization exclusively dedicated to increasing trust in information and communications technology products and services through the advancement of effective software assurance methods. SAFECode is a global, industry-led effort to identify and promote best practices for developing and delivering more secure and reliable software, hardware and services. Learn more.
About Cloud Security Alliance
The Cloud Security Alliance (CSA) is the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment. CSA harnesses the subject matter expertise of industry practitioners, associations, governments, and its corporate and individual members to offer cloud security-specific research, education, training, certification, events, and products. CSA's activities, knowledge, and extensive network benefit the entire community impacted by cloud — from providers and customers to governments, entrepreneurs, and the assurance industry — and provide a forum through which different parties can work together to create and maintain a trusted cloud ecosystem. For further information, visit us at www.cloudsecurityalliance.org, and follow us on Twitter @cloudsa.
Kari Walker for the CSA
Share this content on your favorite social network today!