Devsecops

Why DevSecOps? • DevSecOps brings security closer to IT and business objectives by minimizing vulnerabilities earlier in the application development life cycle. • Keeping this in mind, our team automated security to secure the broader environment and data, as well as the CI/CD process. • Integrating security measures with minimal disruption to…

This blog is authored by Sandesh Mysore Anand and Libin. Both of them are part of team Security @ Razorpay tl;dr No single tool or technique can identify all security defects in an application. Part of building a mature Security program is to use a number of techniques to find security…

Hello everyone, in this article I will be talking about the project we developed for Continuos Security. Project Purpose: When new features are added to our applications, ensuring that the application passes a vulnerability scan for security and sending the report to the Security Team for control. In this way, when a…

최근에 당근마켓 인프라실은 새로운 비전을 만들었습니다. 기존과는 조금 다른 방향의 인프라실을 만들기 위한 발걸음을 준비 중인데요. 그래서 오늘은 당근마켓의 인프라실이 어떤 방향으로 나아가려고 하는지, 그리고 어떤 도전을 하려고 하는지 이야기해 보려고 합니다. 이를 통해서 같은 고민을 하고 계신 분들 혹은 이미 …

How to prevent data exfiltration via DNS tunneling — AWS makes several features and services available so that the customer can effectively construct layered security in their environment. However, a few years ago, it was not possible to control DNS queries originating from the VPC natively, so the customer needed to plan the security of their network architecture with…

As organizations, accelerate the adoption of Cloud and Container platforms, it opens up a challenge to ensure a compliant environment across a plethora of new, esoteric tools that get introduced. While cloud platforms have made it incredibly easy to define and scale environments on-demand, with those capabilities come new challenges…

In this short and concise article I will explain how to create your DevOps/DevSecOps dashboards using the infamous Snowflake Before going through the needed steps, I’d like to point out that Sigma Computing and Metabase are meant to be used in different visualization fields. Metabase is more of business intelligence…

By Marc Masri, DTCC Executive Director, IT Product Management | 3 minute read DTCC continues its DevSecOps (Development, Security & Operations) journey to enable faster delivery of solutions while reducing risk, strengthening security, and improving quality. Related: Thwarting the Log4j Cyber Threat with DevSecOps Building code to support a business…

In this article, I will demonstrate how to apply mutual TLS connection between a client and a kubernetes endpoint exposed through nginx ingress controller. Mutual TLS concept lies under the umbrella of Zero Trust Policy where strict identity verification is required for any client/person/device trying to access any resources in…