Join the meetup on Secure Service Mesh !

Join the meetup on Secure Service Mesh !

On December 10, ABN AMRO Bank N.V. Is hosting the DevSecOps meetup on Secure Service Mesh. We’ve line up some great speakers, including Erik Veld from HashiCorp.

Not familiar with Service Mesh or why your Kubernetes workload needs an infrastructure layer to manage service to service communication? Then this is a meetup to attend!

Araido proud to deliver to Amsterdam Business School

Araido proud to deliver to Amsterdam Business School

In the Executive Programme of Digital Auditing at Amsterdam Business School, as part of the ICT Projects curriculum, we have included DevSecOps fundamentals. Professional students learn the key concepts of embedding security into DevOps SDLCs. One major challenge for them is to recognize the level of maturity of SDLC automation in order to properly advise on DevSecOps. Another challenge is the thorough understanding of the changes required in people, culture, processes, and the technology that accompany it.

DevSecOps-NL meetup @ Microsoft

DevSecOps-NL meetup @ Microsoft

Very comfortably hosted by Microsoft we had a very interactive meetup on MultiCloud and Azure at Microsoft @ Schiphol airport October 3rd. Please find the slides enclosed here ! They were used by excellent speakers Stefan Simenon (ABN AMRO’s Head of Centre of Expertise Software Development and Tooling) and Wouter de Kort (Principal Consultant Microsoft).
Will we see you at the next meetup ? Please enter a 1 minute survey to provide us your preferences !

DevSecOpsNL Meetup August 8th on Secrets Management

DevSecOpsNL Meetup August 8th on Secrets Management

It was great to see so many enthusiastic DevSecOps’ers at our breakout session on Secrets Management in Utrecht last week. Frank, from Coolblue, and Ronald, from ABN AMRO, presented several cases from with differences and similarities in approach, governance, and solutions. The ‘fishbowl’ discussion engaged everyone in a very useful and interesting dialogue about Secrets Management best practices.

SecurityWeek : The Fundamentals of Developing Effective DevSecOps

SecurityWeek : The Fundamentals of Developing Effective DevSecOps

“The security risks inherent in today’s intricate interactions between multiple technology layers, coupled with the globally interconnected and always-on nature of today’s applications, have been compounded by vulnerabilities lying dormant in systems, software, and hardware,” says John Yeoh, VP of research for the Cloud Security Alliance (CSA). “The result is a field ripe for picking by malicious parties across the world.”

The solution is to expand from DevOps to DevSecOps; but achieving a genuine DevSecOps environment is not easy. Speed in code generation (DevOps) is a different requirement to security in code generation, and one can hinder the other. Simply bolting security on to DevOps without full integration is little more than keeping security in its own separate silo.