MacStadium announced that it has obtained Cloud Security Alliance (CSA) Security, Trust & Assurance Registry (STAR) Level 1, meaning that MacStadium has publicly documented its compliance with CSA’s Cloud Controls Matrix (CCM), and that it joined the Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining and raising awareness of best practices to help ensure a secure cloud computing environment.
To better understand why everyone — including IT Operations — needs to care about DevOps, CA Technologies interviewed four DevOps luminaries and thought leaders. Their deep insights make a compelling case for Agile Operations and provide immediate practical guidance on how to get started. Here are some excerpts from the interviews:
Do you foresee a change in the culture of operations teams?
"IT operations were involved too late in the cycle and not given a seat at the table to begin with, so it felt as though they were putting on the brakes or pushing back on initiatives late in the day. Better and earlier engagement with IT operations could have avoided this situation and led to better service transition all along. Fortunately, I am seeing this dynamic between IT operations and the rest of IT change. The need for reduced cycle times means that the relationship simply has to become more collaborative to meet the speed and quality standards required. Trends such as cloud and infrastructure as code are also pulling operations concerns left in the delivery lifecycle. From the other side, developers also need to take more interest in their full stack, and the production environment, as their application stacks become more complex. All of these trends are naturally changing the culture of IT operations teams and the way they interact with development."
Benjamin Wootton, Co-founder and Principal Consultant at Contino, a UK based consultancy
With IT traditionally organized via technology function, what changes do you view as necessary to support a more "lean" and systems way of thinking?
"In DevOps organizations you end up with much smaller teams, where typically you will have dev and ops working side by side, and if not integrated into the same team, at least working far more closely together, collaborating to not just facilitate getting the feature done but making sure that it’s safely and continuously integrated and deployed into the production environment. You end up with a different looking organization."
Gene Kim, Co-Author of The Phoenix Project, founder and former CTO of Tripwire
What in particular can IT operations teams do differently to facilitate right to left feedback from ops to dev?
"Break down the silo between dev and ops and ensure that technical operations staff are involved in the product design from day one — and then keep them constantly involved in sprint planning, stand-ups, retrospectives and all the other phases of (scrum-based) agile delivery. This provides a constant right to left feedback loop from ops to dev."
Steve Thair, Co-founder of DevOpsGuys
Should IT operations teams be embracing the "Continual Experimentation"?
"A culture of learning and guided experimentation within IT operations teams is essential if they are to provide real value to organizations. A strong sense of driving continual service improvement should inform priorities: the IT operations team sees itself as building and improving key parts of the software systems. The experimentation and improvement therefore needs to be joined up with those of the development teams."
Matthew Skelton, Co-founder and Principal Consultant at Skelton Thatcher Consulting
Industry News
The Cloud Native Computing Foundation® (CNCF®) released the two-day schedule for CloudNativeSecurityCon North America 2024 happening in Seattle, Washington from June 26-27, 2024.
Sumo Logic announced new AI and security analytics capabilities that allow security and development teams to align around a single source of truth and collect and act on data insights more quickly.
Red Hat is announcing an optional additional 12-month EUS term for OpenShift 4.14 and subsequent even-numbered Red Hat OpenShift releases in the 4.x series.
HAProxy Technologies announced the launch of HAProxy Enterprise 2.9.
ArmorCode announced the general availability of AI Correlation in the ArmorCode ASPM Platform.
Octopus Deploy launched new features to help simplify Kubernetes CD at scale for enterprises.
Cequence announced multiple ML-powered advancements to its Unified API Protection (UAP) platform.
Oracle announced plans for Oracle Code Assist, an AI code companion, to help developers boost velocity and enhance code consistency.
New Relic launched Secure Developer Alliance.
Dynatrace is enhancing its platform with new Kubernetes Security Posture Management (KSPM) capabilities for observability-driven security, configuration, and compliance monitoring.
Red Hat announced advances in Red Hat OpenShift AI, an open hybrid artificial intelligence (AI) and machine learning (ML) platform built on Red Hat OpenShift that enables enterprises to create and deliver AI-enabled applications at scale across hybrid clouds.
ServiceNow is introducing new capabilities to help teams create apps and scale workflows faster on the Now Platform and to boost developer and admin productivity.
Red Hat and Oracle announced the general availability of Red Hat OpenShift on Oracle Cloud Infrastructure (OCI) Compute Virtual Machines (VMs).
The Software Engineering Institute at Carnegie Mellon University announced the release of a tool to give a comprehensive visualization of the complete DevSecOps pipeline.