Sign In Register
2G/3G/4G
5G & Beyond
6G
AI/Automation
Broadband
Fixed Wireless Access FTTX Wi-Fi
Cable Tech
10G DOCSIS CCAP Cable Business Services The Bauminator
Climate Change
Digital Divide
Digital Infrastructure
Any Haul/X-Haul DCI
IoT
Open RAN
Optical/IP
Routing/Switching
OSS/BSS/CX
Private Networks
Regulatory/Politics
Satellite
SD-WAN
Security
Semiconductors/Network platforms
Service Provider Cloud
Services
Test & Measurement
The Core
The Edge
Video/Media
Regions
Asia Africa Europe India Middle East
Industry Show News
MWC Insider Guide Big 5G Event
Events
5G Orchestration & Service Assurance Digital SymposiumCable Next-Gen Europe Digital SymposiumNext-Gen PON Digital SymposiumOpenRAN North America
Events Archives
Digital Event Archives Big 5G Event The Programmable Telco Digital Symposium APAC Digital Symposium
Microsites
White Papers
Leaders In:
Leaders In Edge Leaders In Pluggable Optics Leaders In Cloud Leaders In 5G Orchestration
Heavy Reading Analysts
Market Leader Programs
5G Transport - A 2023 Heavy Reading Survey 2023 Open RAN Operator Survey Coherent Optics at 100G, 400G, and Beyond Open RAN Platforms and Architectures Operator Survey Cloud Native 5G Core Operator Survey Bridging the Digital Divide 5G Network Slicing Operator Survey Open, Automated & Programmable Transport The Journey to Cloud Native
Webinars
Upcoming Webinars Archived Webinars 5G Webinars Live Learning Webinars
Light Reading Video
Telecom Innovators Showcase
Light Reading Audio
Light Reading Podcast Executive Spotlight Q&A
Communities
The 5G Exchange LR Asia Broadband World News Connecting Africa Telecoms.com Women In Comms
News & Views Events Leading Lights Awards About Us Advertise With Us Newsletter Signup
x
Newsletter Signup Sign In Register
Service Provider Cloud

Enterprises Look to Bake Security Into DevOps – Study

Scott Ferguson

While DevOps is still a fairly new concept to most enterprises and their development teams, security has been ingrained into the DNA of IT for some time. Now, some are trying to combine the two.

In a study conducted by DigiCert, which makes encryption and identity tools for Internet of Things (IoT) devices, the company found that nearly 98% of respondents are trying to integrate members of their security and DevOps teams.

Of the 300 senior IT, DevOps and security managers interviewed for the report, about half reported that they are in the process of integrating security and DevOps, and the other half claim that they have already completed combining the two.

Working toward a DevOps models that allows for continuous development of applications is not easy to start with, and many enterprises struggle with integrating the development side of the house with the operations side. Adding security into the mix further complicates the process, although respondents believe it's worth changing the culture.

"Going faster introduces security risks, while maximizing security often slows things down," Dan Timpson, CTO of DigiCert, wrote in the July 19 report. "The market is at a tipping point and enterprises are looking for solutions to minimize the time that it takes to integrate and to help security better fit within DevOps workflows."

In the era of increased use of cloud computing, DevOps is considered essential to the application development process, especially as companies eye digital transformation as the next big step. In order to get there, apps need to be developed, tested, sent to production and updated as quickly as possible.

Keep up with the latest enterprise cloud news and insights. Sign up for the weekly Enterprise Cloud News newsletter.

However, speeding up the process leaves security holes. About 71% of those surveyed by DigiCert believe there is an increased security risk by not combining DevOps and the security team.

In the study, once DevOps and security are integrated, there are tangible benefits:

  • 22% of respondents report that development is better with security
  • 21% reported that the team is still meeting delivery deadlines
  • And 21% also believe that a combined DevOps and security team lowers risks to applications

It should also be noted that this type of project is not a quick solution. Those IT departments that have combined security and DevOps reported it took at least two years to complete.

The report also offers practical tips for integration, including appointing a "social leader" to help bridge the gap between IT, security and DevOps, as well as making investments in automation.

Related posts:

— Scott Ferguson, Editor, Enterprise Cloud News. Follow him on Twitter @sferguson_LR.

EDUCATIONAL RESOURCES
sponsor supplied content
Simplifying Operations with Multi-Layer Network Control
The eSIM consumer pulse 2022 report
eSIM is a critical digital transformation journey for Mobile Network Operators but they can’t do it alone
L.E.A.D.E.R eSIM Adoption Opportunities & Benchmarking
Ensure the security of IP-based real-time communications
Identify and STOP DDoS attacks on VoIP services and infrastructure
Achieve cloud-native economic benefits for Session Border Controllers
IDC Whitepaper: Key Considerations When Operationalizing Artificial Intelligence Strategy
Design Guide: best-in-class hybrid IT infrastructure with AWS Outposts
Blueprint: optimize data exchange with AWS Outposts
Educational Resources Archive
More Blogs from Scott Ferguson
Podcast: Agile IT & the Rush Toward Digital Transformation - Sponsored by SAP

For the last several years, CIOs and IT professionals have been wrestling with two specific issues as they work toward a cloud-centric future: Agile IT and the rush toward digital transformation. While enterprises want to keep innovating, finding a starting point and knowing which projects to tackle first remain a major obstacle.

To get a better handle on Agile IT and digital transformation, Light Reading Managing Editor Scott Ferguson recently spoke to two experts in these fields: Dan Kearnan, senior director of marketing for cloud at SAP, and Roy Illsley, a distinguished analyst with Ovum.

John Deere Bets the Farm on AI, IoT

From its roots in industrial farm machinery and other equipment, John Deere has always looked for a technological edge. About 20 years ago, it was GPS and then 4G LTE. Now it's turning its attention to AI, machine learning and IoT.

Oracle's Hurd: 90% of Apps Will Integrate AI in 2 Years

Artificial intelligence and automation will become more integral to the enterprise, and 90% of all apps will have integrated AI capabilities by 2020, according to Oracle CEO Mark Hurd.

IBM Cloud Taps Into Nvidia GPUs for AI & HPC

IBM is now offering access to Nvidia's Tesla V100 GPUs through its cloud offerings to help accelerate AI, HPC and other high-throughput workloads.

Stanley Black & Decker CIO Drills Down Into Industrial IoT

CIO Rhonda Gass is spearheading an effort to bring more automation and IoT to the factories making Stanley Black & Decker tools and other equipment.

More
FEATURED VIDEO
UPCOMING LIVE EVENTS
5G Orchestration & Service Assurance Digital Symposium
June 6-8, 2023, Digital Symposium
Cable Next-Gen Europe Digital Symposium
June 21, 2023, Digital Symposium
Next-Gen PON Digital Symposium
June 22, 2023, Digital symposium
OpenRAN North America
December 6-7, 2023, New York City
All Upcoming Live Events
UPCOMING WEBINARS
June 6, 2023 5G Orchestration & Service Assurance Digital Symposium - Day 1
June 8, 2023 5G Orchestration & Service Assurance Digital Symposium - Day 2
June 13, 2023 Enhance Subscriber Growth with a Modern Approach to Network Planning
June 14, 2023 How do We Capture the 6G Experience?
June 14, 2023 The Power of Wholesale Order Automation: How New Advancements in Intercarrier Commerce Can Transform Your Business.
June 15, 2023 SCTE® LiveLearning for Professionals Webinar™ Series: Cranking Up the Upstream
June 20, 2023 5G standalone for breakout growth and efficiency
June 20, 2023 Optimizing Network Experience: Best Practices in IP Network Security
June 21, 2023 Cable Next-Gen Europe Digital Symposium
June 22, 2023 Next-Gen PON Digital Symposium
June 27, 2023 5G Network Analytics and Automation Operator Survey 2023 Results and Update
Webinar Archive
PARTNER PERSPECTIVES - content from our sponsors
Huawei iMaster NCE T-AUTO, New Vision for Quality Evolution of All-Optical Transport Network By Huawei
Huawei Wins the “Market Leadership” Award at NGON 2023 By Huawei
Victor Zhou from Huawei: T.U.R.B.O All-Optical Target Network Helps Operators Achieve New Business Growth in the Cloud Era By Huawei
China Mobile Completes China's First 5GC Resource-Pool Switchover with Huawei's Core Network O&M Solution By Huawei
ZTE reaffirms its commitment to ITU's Partner2Connect Digital Coalition By ZTE
All Partner Perspectives
HOME
Sign In
SEARCH
CLOSE
MORE
CLOSE