While a lot of companies talk about the integration of all three branches of software development and deployment, the challenge is how to bring them together effectively.
Braunstedter understands the challenges and talked about what IT Security can offer to the DevOps process. He talked about the type of tests and how they should be brought into the DevOps pipeline. This is an area that people often overlook. Many DevOps teams forget that the pipeline is adaptable, that they can add to or extend it. This is ideal for security. They can quickly build test requirements and just splice them into an existing pipeline.
The conversation also looked at the issue of delivery cadence. Testing is often seen as a blocker as it takes time. For organisations who want to deliver updates monthly, weekly or even daily, security has to adapt to that demand.
To hear what else Braunstedter had to say listen to the podcast
Where can I get it?
obtain it, for Android devices from play.google.com/music/podcasts
use the Enterprise Times page on Stitcher
listen to the Enterprise Times channel on Soundcloud
listen to the podcast (below) or download the podcast to your local device and then listen there