In today’s digital landscape, IT security is a top priority for organizations of all sizes. One effective way to improve IT security is by implementing a single pane of glass, also known as a unified security management system. By integrating multiple security tools and systems into a single interface, a single pane of glass allows …
Sharpening the axe before chopping down the tree is an essential part of software engineering. All too often, organizations miss their opportunity to optimize their processes because of unfamiliarity with automation. Nonetheless, it is important to optimize your CI/CD pipelines, for example with automated testing, automated change and automated compliance to speed up the delivery …
IT in organizations that are part of the vital infrastructure of a country – for example, banking – revolves around safe and secure practices. No longer is it enough to be able to show regulatory authorities that you can pass their audits, it is about taking responsibility for the financial ecosystem. It is about security …
Trying some new media: Security Talks podcast! https://rss.com/podcasts/securitytalks1/480628/
Now that we are in full transition from ‘Dev’ and ‘Ops’ as separate entities to the BizSecDevOps way of working, we will be able to empower platform and product teams to create a better IT experience. But with power comes responsibility. What we really need, is an engineering mindset focused on code as the basis …
Security in IT utilises the concept of “assume that you have been breached”. This means that applications and their related infrastructure should be setup in such a way that the impact of a real breach is minimised by making life difficult once an attacker has broken through the defences. Earlier, enablement of infrastructure had months …
Multi-cloud, combined with Kubernetes (K8s) container technology offers an interesting approach for financials to accelerate innovation. Best practices for solutions of this kind can be found in other industries. A cross-platform approach when building a self-service environment for product teams ensures long-term flexibility. Another pointer is that it may be important that standardization is encouraged …
Accelerate: The Science of DevOps – Building and Scaling High Performing Technology Organizations (2018) had a huge impact in the technology industry. The book describes models of DevOps capabilities and culture, and how organizations can drive improvement in software delivery and reliability. What most people remember from the book, and the largest impact it’s had on …
Quite a few organizations ‘preach’ agile. To be fair, results that have been achieved with agile – also at ING – speak for themselves. However, dogmatically sticking to agile rituals can backfire if it results in less flexibility. This is why we should occasionally ask ourselves the following question: why do we actually work agile? …
Why we ‘shift-left’ with SecDevOps How safe is my bank? With cybercrime on the rise, financial consumers are – rightfully – concerned about the security systems of the organizations they put their trust in. The way we build our core banking systems should reflect these concerns. In fact: we should always strive to be named …