Download - Why SecDevOps Will Save The Cloud
![Page 1: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/1.jpg)
WHY SECDEVOPS WILL SAVE THE CLOUD
By Bill Young, Sr. Infrastructure Engineer for Threat Stack
![Page 2: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/2.jpg)
THE WORLD HAS CHANGED !
!
!
!
!
!
!
It’s in the Earth. It’s in the packet loss.
![Page 3: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/3.jpg)
This is the age of the cloud.
![Page 4: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/4.jpg)
We were not without our skeptics,
but we knew what was happening.
![Page 5: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/5.jpg)
A revolution was on our doorstep. !
!
!
!
!
!
!
!
We wanted it all!
![Page 6: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/6.jpg)
We wanted it yesterday.
![Page 7: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/7.jpg)
Configuration Management
Automation Orchestration
Continuous Integration Delivery
![Page 8: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/8.jpg)
New concepts were born… !
Titles were given… !
!
and philosophies of win floated around the web like confetti.
![Page 9: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/9.jpg)
…we weren’t sure where we were going, but we knew where we didn’t want to be…
![Page 10: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/10.jpg)
Configuration drift!
Tedious provisioning of systems!
Lack of acceptance!
Unit tests!
![Page 11: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/11.jpg)
Our fears were real, so we sought answers.
![Page 12: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/12.jpg)
DevOps is born.
![Page 13: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/13.jpg)
“This is the solution we’ve been
searching for!”
![Page 14: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/14.jpg)
So, what is a “DevOp”?
We’ve all heard the jargon, the marketing pitches,
!
but what is it really?
![Page 15: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/15.jpg)
def·i·ni·tion !
!
DevOps is not a team, nor an organizational role. !
It is a philosophy of collaboration.
![Page 16: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/16.jpg)
“In the long history of humankind (and animal kind, too) those who learned to collaborate and improvise most
effectively have prevailed.” - Charles Darwin
![Page 17: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/17.jpg)
For years, we’ve sectioned off teams
Developers to the left Operations to the right
Security teams…where did they go? Who knows, really…
![Page 18: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/18.jpg)
!
Applications and services were developed and passed over the wall to Operations
where they pieced things together to create a working environment.
![Page 19: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/19.jpg)
It was how we “got shit done.”
![Page 20: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/20.jpg)
Yet, something had always been missing.
![Page 21: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/21.jpg)
Where was the bottleneck? How do we optimize our development and deployment pipelines?”
!
!
Things need to be faster! Mush! Mush! Fellow Engineers!
![Page 22: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/22.jpg)
DevOps, unite!
![Page 23: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/23.jpg)
!
Configuration Management solutions became available! !
Code was written! !
Progress was made!
Infrastructure as Code Took the Community By STORM!
![Page 24: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/24.jpg)
…but something was still missing. !
Something of incredible value!
![Page 25: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/25.jpg)
SECURITY!
![Page 26: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/26.jpg)
![Page 27: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/27.jpg)
Were we really foolish enough to believe that these progressive methodologies would save us from something
so integral to our success? !
!
Security, why have we forsaken you?
![Page 28: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/28.jpg)
Who has access? What are the controls? What services are publicly available? Which are safely kept behind “locked” doors? What is our risk? How efficiently was it assessed?
The cloud has left us questioning our surroundings
![Page 29: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/29.jpg)
If you have yet to ask yourself those questions,
it will only be a matter of time before you are
one of the Lost.
![Page 30: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/30.jpg)
What is it?! !
Where did it come from?! !
Is it just another silly buzzword?
Suddenly, the SecDevOps Methodology appeared
![Page 31: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/31.jpg)
It is natural progression.
![Page 32: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/32.jpg)
Without complete ownership of our systems and their supporting environments,
we need to protect ourselves.
![Page 33: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/33.jpg)
That’s why SecDevOps, or SecOps, is a natural extension of DevOps
![Page 34: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/34.jpg)
The rate of change leaves little room for Security teams to properly assess risk in applications and infrastructure code.
!
!
Without bringing Security into the fold, we will continue to be at risk of ever-looming threats.
![Page 35: Why SecDevOps Will Save The Cloud](https://reader033.vdocuments.us/reader033/viewer/2022051817/5491edbab4795969178b5334/html5/thumbnails/35.jpg)
By integrating our Security tool-chains into our DevOps pipeline,
we can effectively mitigate our risks and continue our journey
towards a secure, automated infrastructure.
The Solution.