For many CIOs, the realization that they can’t visualize how value flows across the software delivery process is a “eureka!” moment. Abandoning a hit and hope mentality, CIOs are taking a sledgehammer to the black box that conceals the mechanics of how software is planned, built and delivered at scale. Once inside, they’re analyzing how value flows from customer request to software in operation. They’re becoming ‘value stream thinkers.
The core problem with software security today is not that far removed from the problem Veracode was trying to solve 10 years ago. In State of Software Security v1, the company concluded that “Most software is indeed very insecure.” We could use that same statement in Volume 10. However, it is seeing some positive AppSec signs in 2019. Organizations are increasingly focused on not just finding security vulnerabilities, but fixing them, and prioritizing the flaws that put them most at risk. The data suggests that finding and fixing vulnerabilities is becoming just as much a part of the software development process as improving functionality.
How can organizations cut the risk of downtime? The answer: break your systems on purpose. Find out their weaknesses and fix them before they break when least expected.
It’s called chaos engineering, and it’s being adopted by leading financial institutions, internet companies, and manufacturing firms throughout the world.
You’ve been hacked. A developer leveraged a 3rd party library with unsanitized input that a SCA tool can’t flag. This containerized application goes into production – making your entire cloud infrastructure vulnerable to severe security incidents. Does this sound familiar?
Recorded Webinar
Learn the latest tips from the experts!
Gary Gruver’s latest book Engineering the Digital Transformation provides systematic approaches for improving how software is developed for a broad range of applications. This webinar will provide an overview of the key takeaways from Gary’s newest book.
In this webinar we will talk about the last year in value stream management and value stream integration. We will try to answer questions like what is next for value stream and what is the real problem we are solving with value stream management and value stream integration. Also why value stream optimization is so important to agile DevOps and shift left initiatives.
Join us to see how making the move to NoSQL is easier than you think, getting higher value from your applications today and going beyond what you can achieve with legacy relational database technology.
Recorded Event:
The open source world is maturing and with that maturity comes the expectation that you can trust the open source used in software solutions. Studies show that a large percentage of mainstream IT organizations and manufacturers leverage open source in applications, libraries, containers, etc. Open source software license compliance and vulnerability management have never been more important, and trends are taking us down the path of enhanced clarity and tighter controls. The place to start in the software supply chain is with the open source Bill of Materials (BOM).
Recorded Event:
Downtime caused by application performance issues hurts. From lost revenue to eroding customer experience, there are many ramifications when development teams are unable to quickly identify and fix the root cause. Understanding the high stakes of downtime, ExaVault needed to adopt a new application monitoring strategy that improved system-wide performance, reliability and provided visibility into user-level performance.
Many companies have agile product teams that are trapped inside a non-agile organization. Those teams find it nearly impossible to change the culture and working processes of the larger organization. One way to get other parts of the organization to operate more effectively is by surfacing data, so they can see what is impeding customer value.
In June of 2019, Tidelift and The New Stack jointly fielded a survey of professional software developers. Almost 400 people responded with thoughts about how they use open source software today, what holds them back, and what tools and strategies would help them use it even more effectively.
Learn about:
The one last place where proprietary software is still seen as (slightly) better than open source
The three most important obstacles standing in the way of developers using open source even more
The most important factors developers consider when choosing open source packages
And more!
