Sonrai Security Releases Industry-First Risk Insights Engine πŸ‘‰
Learn More
  • Solutions
      • Cloud Security Platform
      • Workload / CWPP
      • Platform / CSPM
      • Identity / CIEM
      • Data / Cloud DLP
      • Workflow & Automation
      • Sonrai Identity Graph
      • Use Cases
      • Least Privilege
      • Least Access
      • Cloud Misconfiguration
      • Vulnerability Management
      • Executive Reporting
      • Compliance
      • Cloud Environments
      • AWS
      • Microsoft Azure
      • Google Cloud
      • Oracle Cloud
      • User Roles
      • Cloud Teams
      • DevSecOps
      • Security Teams
  • Partners
      • Partner Alliances
      • Ecosystem Partners & Integrations
      • Global System Integrators (GSI)
      • Solution Providers (VARS, MSP, MSSP, CSP)
      • Cloud Alliances
      • Microsoft Azure
      • AWS
      • Google Cloud
      • Oracle Cloud
      • Register A Deal
  • Resources
    • Resource Library
    • Blog
    • Customer Stories
    • Events
    • Webinars
  • Company
    • Our Story & Leadership
    • Work With Us
    • Newsroom
    • Awards & Recognition
    • Contact Us
  • Login
  • Request Demo
  • Solutions
      • Cloud Security Platform
      • Workload / CWPP
      • Platform / CSPM
      • Identity / CIEM
      • Data / Cloud DLP
      • Workflow & Automation
      • Sonrai Identity Graph
      • Use Cases
      • Least Privilege
      • Least Access
      • Cloud Misconfiguration
      • Vulnerability Management
      • Executive Reporting
      • Compliance
      • Cloud Environments
      • AWS
      • Microsoft Azure
      • Google Cloud
      • Oracle Cloud
      • User Roles
      • Cloud Teams
      • DevSecOps
      • Security Teams
  • Partners
      • Partner Alliances
      • Ecosystem Partners & Integrations
      • Global System Integrators (GSI)
      • Solution Providers (VARS, MSP, MSSP, CSP)
      • Cloud Alliances
      • Microsoft Azure
      • AWS
      • Google Cloud
      • Oracle Cloud
      • Register A Deal
  • Resources
    • Resource Library
    • Blog
    • Customer Stories
    • Events
    • Webinars
  • Company
    • Our Story & Leadership
    • Work With Us
    • Newsroom
    • Awards & Recognition
    • Contact Us
  • Login
  • Request Demo
Back to News
News
09.02.2020

Sonrai CEO: Next Phase of DevSecOps Starts Now

By Sonrai Marketing
DevSecOps

View article in it’s entirety on securityboulevard.com

From Michael Vizard at SecurityBoulevard: “The first phase of DevSecOps was marked by getting more cybersecurity tools into the hands of developers. This next phase will be defined by integrated DevSecOps workflows created to address the unique attributes of cloud-native applications built microservices, Hannigan said.

As each microservice is constructed it becomes instantly possible to understand the security implications using a set of graph-based tools that not only discover the microservices but also surface all the potential security issues an organization consciously needs to approve. The core issue cybersecurity teams are contending with today is that given all the dependencies that exist between microservices, it’s not possible to know whether a microservice that has just been deployed has implicitly given any existing microservices permission to access data in ways that no one in the IT organization can easily see or comprehend.

Much of the current focus on DevSecOps is being driven by incidents involving, for example, S3 buckets on the Amazon Web Services (AWS) public cloud involving ports that have been left open due to misconfigurations that occurred when developers employed tools such as Terraform to automate the provisioning of infrastructure. When most application workloads were deployed in an on-premises IT environment, most infrastructure security issues were addressed by an internal cybersecurity team. Now that infrastructure is managed as code in the cloud by the developer, that review process has been effectively eliminated.”

Share this entry
  • Share on Facebook
  • Share on Twitter
  • Share on Linkedin
Previous Post Next Post
Sonrai logo FC icon
Request a Demo Login
  • Twitter
  • Linkedin
  • Solutions
  • Cloud Security Platform
    • Workload / CWPP
    • Platform / CSPM
    • Identity / CIEM
    • Data / Cloud DLP
    • Workflow & Automation
    • Sonrai Identity Graph
  • By Use Case
    • Least Privilege
    • Least Access
    • Cloud Misconfiguration
    • Vulnerability Management
    • Executive Reporting
    • Compliance
  • Cloud Environments
    • AWS
    • Microsoft Azure
    • Google Cloud
  • User Roles
    • Cloud Teams
    • DevSecOps
    • Security Teams
  • Partners
    • Partner Alliances
      • Ecosystem Partners & Integrations
      • Global System Integrators (GSI)
      • Solution Providers (VARS, MSP, MSSP, CSP)
    • Cloud Alliances
      • Microsoft Azure
      • AWS
      • Google Cloud
      • Oracle Cloud
  • Resources
    • Resource Library
    • Blog
    • Events
    • Webinar
  • Company
    • Our Story & Leadership
    • Careers
    • News
    • Awards & Recognition
    • Contact Us
  • Twitter
  • Linkedin

Β© 2022 Sonrai Security. All rights reserved

SitemapΒ  Β |Β  Β Privacy Policy

Sonrai cloud security platform, products and services are covered by U.S. Patent Nos. 10,728,307 and 11,134,085, together with other domestic and international patents pending. All rights reserved.

Scroll to top