Perforce expands its DevOps portfolio with Puppet acquisition

Perforce is expanding its portfolio of DevOps tools with the acquisition of Puppet, an infrastructure-as-code pioneer.

“This acquisition expands our product offering by adding new capabilities for enterprise DevOps teams to manage and secure their critical infrastructure,” said Mark Ties, CEO of Perforce.

“With Puppet, we will be providing our customers with access to a product portfolio that enables them to drive innovation on a global scale.

“We look...

Software supply chain attacks increased over 300% in 2021

We all knew there was an increase in software supply chain attacks in 2021, but a new study has quantified just how bad things got.

Argon Security – recently acquired by Aqua Security – published the latest edition of its annual Software Supply Chain Security Review this week.

The headline stat from Argon’s report that software supply chain attacks grew by more than 300 percent in 2021 compared to 2020.

Eran Orzel, Senior Director of Argon Customer...

In-built infrastructure security advantage with policy as code

It is impossible to discuss where DevOps trends are heading without mentioning policy as code, the writing of code in a high-level language to manage and automate policies in the developmental process.

In an ever-evolving regulatory landscape, organisations simply don't have the right technology or resources to scale their security and compliance efforts. Policy as code provides the much-needed agility to address regulations or standards as they emerge. This means that new...

Ram Chakravarti, CTO, BMC Software: On breaking the DevOps plateau and using automation to improve security

The majority of organisations are stuck in a "plateau" in their DevOps evolution and are struggling to advance into the higher stages of adoption.

BMC Software knows a thing or two about the subject and recently sponsored Puppet's 2021 State of DevOps report.

Developer spoke with Ram Chakravarti, CTO of BMC Software, to gain some insights into how to break the DevOps plateau and how automation can be used to bolster security.

Developer: Puppet’s 2021...

Boris Cipot, Synopsys Software Integrity: On the cybersecurity landscape and countering threats

Following a year of high-profile cyberattacks, developers are understandably concerned their software could be the next to be compromised.

Developer caught up with Boris Cipot, Senior Sales Engineer at Synopsys Software Integrity, to discuss the cybersecurity landscape and how developers can secure their software.

Cipot came to Synopsys following the company’s acquisition of Black Duck Software. Prior to those companies, Cipot held senior roles at anti-malware...

2021 State of DevOps report highlights factors that lead to success

Puppet’s latest State of DevOps report arrives ten years after the first edition and highlights that successful DevOps is dependent on a number of factors.

The first State of DevOps report was released when DevOps was only discussed by some cutting-edge decision-makers. A decade on, 83 percent now report their organisations are implementing DevOps practices.

Michael Stahnke, VP of Platform at CircleCI, said:

“In ten years, we've gone from hype to practice...

Report: Sec and DevOps split on who is responsible for software security

Solar Eclipse

IT security and development teams are divided over who is and who should be responsible for securing software, a new report from cybersecurity company Venafi has shown.

When asked who is responsible for software security at their organisations, the sample of 1,000 DevOps and Sec professionals were equally split, with 48% saying development were and 48% saying IT security were.

Of far greater concern is the divide over who should be responsible for software security. Only...

GitLab: 2020 was a ‘catalyst for DevOps maturation’

GitLab’s fifth annual DevSecOps survey reveals that last year was pivotal for the maturation of DevOps.

The only silver lining from the disaster of a year that was 2020 is that it helped to highlight inefficiencies with legacy processes and technologies. As the world looks to "build back better" from the pandemic, the work of DevOps teams should provide some inspiration.

Eric Johnson, CTO at GitLab, said:

“This year’s Global DevSecOps Survey shows that...

IWD 2021: Putting the spotlight on tech’s gender imbalance

On International Women’s Day, Developer puts a spotlight on the gender imbalance in software development and the wider technology industry.

Kicking off with salaries, Puppet’s latest annual DevOps Salary Report highlights the continued pay gap between genders.

25 percent of female respondents reported earning between $100,000 and $125,000. In comparison, 18 percent of male respondents reported salaries in this salary bracket.

However, moving up to top...

How to secure your application’s migration to the cloud: A guide

To compete in today's competitive and digital business environment, organisations need to embrace the cloud. The rise of infrastructure as a service (IaaS) firms has meant that enterprises have been able to focus on their core capabilities while leveraging their IaaS partners’ expertise.

As a result, the maintenance and running costs of infrastructure have reduced, and companies are far more efficient in how they deploy resources.

While a move to the cloud brings a lot...