DevOps Enterprise Review #2
What Gene Kim is tweeting, DevOps resources, industry news, & more
Hello, DevOps Enterprise Summit (DOES) Community!
Today, we introduce the second-ever edition of the DevOps Enterprise Review! Thanks for joining us as we embark upon a journey together into the world of DevOps and IT in the Enterprise.
As a continuation of our new bi-monthly periodical, our goal is to help keep everyone up-to-date on the happenings in, and around, the industry. This edition features many insights covering a broad spectrum of the domains we all care about most, but one particular topic that rears its worrisome head the most is IT security.
Below, you will discover links to industry studies, informational resources and what to be on the lookout for next. Additionally, we recap some recent updates for the next DevOps Enterprise Summit in London this June.
Finally, we hope it goes without saying just how much we appreciate the community’s feedback and suggestions — we are fortunate to be part of one of the most inspiring movements of our time. If you have any ideas as to what can make this periodical “high performing” we want to know! In addition, please feel free to submit your suggested content in the comments section with a link to the original resource, for reference. We’d be glad to take a look and try to add it to an upcoming edition of the DevOps Enterprise Review.
So, without further ado, happy reading and we look forward to hearing from you!
Don’t want to miss any conference or publishing updates from IT Revolution? Subscribe to the newsletter here>>>
What’s Gene Tweeting?
(Note: all stories sourced from Gene’s Twitter feed, @RealGeneKim)
Your DevOps Priorities in 2019 — Please support this fantastic work!
Slashdot: Doomsday Docker Security Hole Uncovered “One of the great security fears about containers is that an attacker could infect a container w/a malicious program, which could escape & attack the host system. Well, it’s here: RunC container breakout”
Gartner Says Global IT Spending to Reach $3.8 Trillion in 2019, courtesy of @ValaAfshar
If you’re interested to hear the story of DORA — from the first customer to joining Google Cloud — @jezhumble wrote it up! /cc @nicolefv @soosiechoi @xavrv
DevOps Resources — Learn and Grow, Together
Want more frequent updates on DevOps Resources? Be sure to check the IT Revolution DevOps Blog for weekly updates!
How Finding & Fixing Faults Is The Path To Perfection
This is an excerpt from a presentation by Dr. Steve Spear, Principal, HVE LLC, titled “Discovering Your Way to Greatness: How Finding and Fixing Faults is the Path to Perfection.”
You can watch the video of the presentation, which was originally delivered at the 2018 DevOps Enterprise Summit in Las Vegas.
An Unlikely Union: DevOps and Audit
Many organizations often get stymied when dealing with information security, compliance, and audit requirements. There seems to be a misconception that DevOps practices won’t work in organizations which are under SOX or PCI regulations. In this paper, seven experts provide high-level guidance on three major concerns about DevOps Practices: DevOps and Change Control, DevOps and Security, DevOps and Separation of Duties.
It’s not enough to say that the CIO is the geek who wears the suit, IT leaders must, now more than ever, take a seat at the table. In A Seat at the Table, former CIO Mark Schwartz explores the role of IT leadership as it is now and opens the door to reveal IT leadership as it should be — an integral part of the value creation engine. With wit and an easy style, Schwartz reveals that the only way to become an Agile IT leader is to be courageous — to throw off the attitude and assumptions that have kept CIOs from taking their rightful seat at the table. CIOs, step on up, your seat at the table is waiting for you.
Industry News — Read All About It!
eWEEK Data Points: Five Trends Impacting the Future of DevOps — From a focus on improving software delivery to discussing the metrics teams need to keep track of during periods of elevated traffic, the world of enterprise IT has been abuzz with exploring questions around DevOps, as it has been for the past few years. The idea of more frequent deployments, thereby getting to business value faster, is simply too appealing for enterprises to ignore. (Source: Chris Preimesberger, eWEEK)
In-demand programming language Java scores another win as DevOps turn to its Groovy spin-off — Yet more good news for Java programmers as spin-off language Groovy soars in popularity in the lucrative field of DevOps. Not only is Java consistently reported to be highly-paid and in demand, but Groovy is increasingly popular for automating the deployment and management of systems infrastructure, according to the February 2019 TIOBE Index report. (Source: Nick Heath, TechRepublic)
Study: CISOs Need to Take Charge of DevOps Security — As digital transformation is pushing more enterprises to adopt DevOps to address their needs for better software delivered faster and more frequently, a huge issue lingers over this strategic business shift: security.
While businesses pay a good deal of lip service to cybersecurity, the rush to churn out new software and update those applications means that security is often skipped in the name of speed and innovation. At the same time, InfoSec is seen as a cumbersome barrier to what the DevOps team is trying to achieve.
Despite these attitudes, it’s imperative that security is part of DevOps conversations, and it’s the company CISO who needs to lead that charge. (Source: Scott Ferguson, DevOps.com)
4 ways to build a better security culture — While the vast majority of security professionals believe a stronger cybersecurity culture would improve their business, nearly all companies — 95% — have a gap between their desired culture and reality, according to new research.
The 2018 Cybersecurity Culture Study, conducted by ISACA (formerly the Information Systems Audit and Control Association), found that 88% of companies believe they can transform their cybersecurity culture for the better. The organizations with the most mature cybersecurity processes were those that invested in their employees, said Rob Clyde, chair of ISACA’s board. (Source: Robert Lemos, TechBeacon)
Reminders — What Not to Forget
New developments with DevOps Enterprise Summit London 2019 are now a weekly occurrence as the programming committee has officially closed its call for presentations. The review of hundreds of new submissions is fully underway. That being said, the first round of speakers have just been announced and we couldn’t be more thrilled with the list! For the full update, read the news here>>>.
2019 Early Bird Registration
Early bird registration is now available until 11 March 2019 for £950 + VAT, a savings of more than 30 percent off the full registration price.
2019 Book Publishing Update
Who likes books? WE DO! And 2019 is setting up to be a big year for tech publishing. We’re seeing new authors emerge and experienced writers like DevOps for Dummies author Emily Freeman ‘yogurt’ her way through her new book writing process, and it couldn’t be more relatable.
The next up on IT Revolution’s docket? Coming this Spring (and now available for pre-order ), the iconoclastic CIO Mark Schwartz is releasing his latest work, War and Peace and IT: Business Leadership, Technology, and Success in the Digital Age. The premise? The big obstacle to a successful business transformation within a company is neither culture, nor bureaucracy, nor even the ever-changing technology landscape. It is the relationship between the business and its IT organization. In Schwartz’s latest book, find out why and how executives and business leaders must create a shared strategy with their IT organizations to drive innovation, enhance their competitive positioning, increase revenue, and delight customers.
Thank you for reading the second edition of the DevOps Enterprise Review (DOER)! We look forward to reading your suggestions and comments. And as a biweekly reminder, don’t be shy — Get Together and Go Faster!
Don’t want to miss any conference or publishing updates from IT Revolution? Subscribe to the newsletter here>>>
