Take the Time to Automate Everything
Automate Security Testing
To include security testing in your software build pipeline, automation is key. In order to keep up with nightly builds, Dynamic App Security Testing is often a requirement as it can find vulnerabilities in real time while your app is running. DAST vendors include Contrast Security, Sonatype, Checkmarx, Splunk, Tanium, InSpec, FireEye, and Metasploit.
Document & Understand Dependencies
Understanding open-source libraries and how they are used is key to wider adoption of DevSecOps practices. Migrating from third party to Open Source often increases security. A basic requirement which is all too often skipped, is testing if your open-source/third party component usage is causing contextual and other vulnerabilities in your code, and what impact vulnerabilities have on dependent code. This step is often skipped by busy development teams
Break Down Big Tasks
Start with one or two security checks to get your development team use to the idea of security rules built into the software build process & workflow. Don’t expect developers to regularly utilize manual tools. Automate every process. Open source tools like Jenkins help with various automation of tasks and online tools like Travis CI and Circle CI are also easy to manage.
Choose Tools Wisely
Emerging security tools for DevOps are constantly improving but integration is critical. Security products need to be able to integrate into the development pipeline smoothly.
Invest in Training
Find ways to model threats as a learning exercise and train development teams on secure coding practices.
How Jentu Can Help
Jentu provides a unique value in terms of security by building instant breech mitigation into your infrastructure. Every reboot restores a golden image. Which means a clean and pristine infrastructure every day.
Jentu Reduces
OS Decay, Workstation HDD failures, IT troubleshooting and support, Data Sprawl, Malware, Zeroday, Cryptolocker and more.
Jentu Provides
Desktop Endpoint Security, Unified performance and stability, SSD equivalent performance, Roll-Back, Roll-Forward, Group and Machine Management, Non-Persistent Golden Image deployment tool, Advanced adaptive performance and application delivery system to workstations.