Featured Resource: DevOps and Audit

Leading up to DevOps Enterprise Summit 2017 San Francisco, we’ll be releasing our most valuable DevOps resources to our community on a weekly basis.

Each of these resources come to you straight from the DevOps Enterprise Forum, where more than 50 technology leaders and thinkers gather for three days to create written guidance on the best-known methods for overcoming the top obstacles in the DevOps Enterprise community.

Many organizations who are adopting DevOps patterns and practices, are enjoying the benefits that come from that adoption: More speed. Higher quality. Better value.

However, many organizations often get stymied when dealing with information security, compliance, and audit requirements. There seems to be a misconception that DevOps practices won’t work in organizations which are under SOX or PCI regulations.

Therefore, we will be providing some high-level guidance on three major concerns about DevOps Practices:

1. DevOps and Change Control: DevOps practices offer better risk management processes. In section one, see how they can help you achieve harmony in a world that demands continuous delivery.
2. DevOps and Security: While most organizations undertake a good amount of IT spending in the areas of infrastructure and network security, in section two we address why it is also imperative to focus on software security in today’s IT organizations.
3. DevOps and Separation of Duties: Finally, in section three, we describe best practices for implementing Separation of Duties for your organization, and bust the myth that a Separation of Duties requires separate personnel with completely separate functional roles in order to achieve compliance.

The authors on each of these resources will be prominent figures in the industry, and on this particular one, we have 9 industry leaders working together. They include:

• Adil Hussein, Vice President, Technical Operations (Service Delivery) Ticketmaster
• James DeLuccia, Director, and Leader for Certification Services, EY CertifyPoint
• Paul Duvall, Chairman, and CTO at Stelligent, a division of Hosting
• Mustafa Kapadia, DevOps Service Line Leader, IBM
• Gene Kim, Author and Researcher
• Dave Mangot, Director of Operations, Librato, Inc.
• Tapabrata “Topo” Pal, Director, Next Generation Infrastructure, Capital One
• James Wickett, Head of Research at Signal Sciences
• Julie Yoo, Vice President, Information Security Compliance at Live Nation

Here are two amazing presentations from authors on this week’s resource.

Tapabrata “Topo” Pal

 Dave Mangot with Reena Mathew

If you’re eager to continue learning about these topics and more, come see how you can be a part of DevOps Enterprise Summit 2017 San Francisco. We spend three days talking with the leaders of large, complex organizations implementing DevOps principles and practices, with the goal to give leaders (like you) the tools and practices they need to develop and deploy software faster and to win in the marketplace.

- About The Authors

IT Revolution

Trusted by technology leaders worldwide. Since publishing The Phoenix Project in 2013, and launching DevOps Enterprise Summit in 2014, we’ve been assembling guidance from industry experts and top practitioners.

Follow IT Revolution on Social Media

• 
• 
•