Security News > 2022 > August > How CISOs can safeguard security in CI/CD environments
DevOps does not mesh well with traditional security protocols, and this creates a sticky situation for CISOs to counter.
How can CISOs facilitate this integration and create an agile security mechanism that complements agile development?
Some examples of such initiatives are code templates pre-validated for security, coding standards that enforce security from the ground up, and automated testing tools that run sanity tests on pre-release code.
Security teams can also examine and pre-validate dev environments to ensure code portability doesn't introduce any potential breach risks.
The tool also helps security teams establish environments for development, whether sandbox or QA. By automating most of these tasks, CISOs reduce the clerical burden on their teams and boost efficiency.
By adopting DevOps principles when designing security protocols, CISOs can create a security posture that integrates seamlessly with development.
News URL
https://www.helpnetsecurity.com/2022/08/25/how-cisos-can-safeguard-security-in-ci-cd-environments/
Related news
- CISOs don’t invest enough in code security (source)
- GitHub CISO on security strategy and collaborating with the open-source community (source)
- CISOs are juggling security, responsibility, and burnout (source)
- Zscaler CISO on balancing security and user convenience in hybrid work environments (source)
- How CISOs can balance security and business agility in the cloud (source)
- Trump’s DoD CISO pick previously faced security clearance suspension (source)