Category:
DevSecOps
Streamline Compliance Audits with Waivers
Chef InSpec simplifies the entire compliance audit process through code, making it possible to automate the process. This blog focuses on some advanced features of Chef InSpec, such as waivers, that help streamline compliance audits.
Read moreSecure your Cloud Native Environments Holistically
Enterprises need CSPM tools to power the source of truth for your cloud infrastructure, to report whether the configuration of your resources meets the best practices prescribed by various industry groups.
Read moreInfrastructure as Code (IaC) Security Best Practices
Any organization looking to secure their IaC should consider these 5 best practices for securing infrastructure as code.
Read moreGitOps Approach to Continuous Security to Harden your CI/CD Pipeline
Learn how to use a GitOps approach for continuous security to harden your CI/CD pipeline. See how Chef helps accomplish secure GitOps.
Read more7 Benefits of Policy as Code
DevSecOps accelerates the pace of digital transformation. In practice, DevSecOps is meant to be a collaboration between development, security, and operations; it aims to automate the integration of security into every phase of the software development lifecycle. Policy as Code benefits organizations from Accuracy to Validation and how it can successfully be implemented, and how to reduce cost and save time by minimizing the need to repeat a process to address security issues after the fact.
Read more12 Common DevSecOps Definitions
DevSecOps accelerates the pace of digital transformation. But what is DevSecOps? Developers + Security + Operations. It’s a big deal because it directly impacts speed and security. Your development teams adopting the DevSecOps philosophy secure code faster, more secure, cheaper, and better.
Read moreA Practical Guide to Make DevSecOps an Automated Reality
DevSecOps accelerates the pace of digital transformation. In practice, DevSecOps is meant to be a collaboration between development, security, and operations; it aims to automate the integration of security into every phase of the software development lifecycle. This blog reviews what DevSecOps is, how it can successfully be implemented, and how to reduce cost and save time by minimizing the need to repeat a process to address security issues after the fact.
Read moreThe Secret Is Out: Chef & Akeyless Join Forces To Accelerate DevSecOps
Chef recently joined industry-leading speakers from Progress Software and Akeyless at ChefConf '21. They discussed the importance and complexities of Secrets Management and Zero Trust access in large enterprise environments. The session "Secrets Management in Complex Environments at Scale" is now available on-demand.
Read moreSurvey Results: DevSecOps Drives Efficiency, Security, and Agility
Recently, Chef commissioned a survey of security professionals in order to provide greater insight into what security leaders are most concerned with and how collaboration with I&O (Infrastructure & Operations) is needed within enterprise-sized organizations.
Read moreEmpowering DevSecOps on Google Cloud
By Nick Rycar
October’s nearly over, and for many of us that means an evening full of cobwebs, costumes, candy, tricks, and treats as we prepare for Halloween night. It also means that today is the final day of National Cybersecurity Awareness Month!
Read more