When IT Worlds Collide: DevOps and Security

Secure DevOps removes outcome barriers and helps IT build and deliver better software.

In the development world, it’s all about speed and time to market. Push, Push, Push. Organizations and teams putting apps and code through the development cycle as quickly as possible to drive innovation—but at what cost?

DevOps and security often are at odds with their goals: One wants to be fast and the other wants to be secure. Even though the two disparate practices seem to be in complete conflict—they are, in reality, completely aligned.

Companies rely on speed for a competitive edge—but what happens when speed compromises security? Organizations are faced with the threat of vulnerabilities and the associated increased cost of having to revert back to the starting line to address the potential risks introduced early on when they are already in production.

DevOps is all about speed and agility—driving business processes quickly to propel innovation and growth. Applications support the most strategic IT business processes, so it’s critically important to secure and manage apps as they interact with the most sensitive customer, partner, shareholder and employee data.

Ultimately, it’s all about ‘removing barriers to outcomes’ and helping customers more easily build on what they already have to meet new needs and respond quickly—by reducing the roadblocks.
— Ayman Sayed, President and Chief Product Officer, CA Technologies

DevOps and Security: Not Mutually Exclusive

The Department of Homeland Security reports that application security is arguably the biggest cyber threat, responsible for 90 percent of security incidents. So not only do you need to develop apps quickly in the new digital economy, you also need to make your apps secure.

As a result, the emergence of Secure DevOps is one of the hottest new growth areas that addresses business pain points of driving app development quickly and securely.

To get a better understanding of how an organization could be impacted if vulnerabilities were introduced in the development process, IT security directors would need to evaluate the overall security risk for each application versus the impact to the business. This assessment would offer a more complete picture of the maximum vulnerability the organization could be exposed to if an app were compromised.

One best practice approach for businesses to meet this challenge is to incorporate application security testing as part of the development process. In doing so, IT organizations will uncover unknown applications, risk profile changes and new vulnerabilities.

Ultimately, it’s all about “removing barriers to outcomes” and helping customers more easily build on what they already have to meet new needs and respond quickly—by reducing the roadblocks.

As organizations focus on delivering greater value to their customers, they need to remain committed to securing and improving their application development processes with Secure DevOps solutions to protect their IT investments.

Ayman Sayed
By Ayman Sayed | July 01, 2017

Make security a competitive advantage.

We’ll show you how to give users better, safer experiences.

See how >

Subscribe to The Blueprint

Share the wealth and suggest a friend to subscribe to The Blueprint:

At CA, your time and privacy are as important to us as they are to you. We use the information you provide under our legitimate interests to make sure you view topics of interest to you. If we got it wrong, please update your preferences. Read our privacy statement to learn more on how we use your personal information.

Please fill out all required fields

You are now subscribed to The Blueprint.