Is DevOps bad for security?

December 18, 2020 DZone Daily Picks Want to learn more about securing your applications? This is the digest for you! From the relationship between DevOps and security; to security basics, and even some best practices. [Introduction to Data Security as a Service (DSaaS)]( Risk to Accelerate Innovation]( [Download the Refcard >]( Daily Picks [Is DevOps Bad for Security?]( [Yaniv Yehuda DevOps Zone]( Devops is allowing teams to deliver faster than ever before, but is that at the cost of secure applications? [The Basics of Application Security]( [Mike Milner Security Zone]( App security isn't black magic - developers just need to take the time to understand what's involved in attacks and how to protect from them. [5 Best Practices for Automated Security Testing]( [Hiren Tanna Security Zone]( DevSecOps is an increasingly popular process for security teams. Find out how to work automated security testing into your development process. [Securing IoT]( [Tom Smith IoT Zone]( Security is paramount in all IoT device designs and deployments. [Security Is No Excuse for Bad Performance]( [Craig Lowell Security Zone]( Here here! Well said and said well! In this post, we take a quick look at what sec teams can do to ensure they don't disrupt UI, UX, and CX. [Secure Spring REST With Spring Security and OAuth2]( [Adam Zaręba Security Zone]( In this post, we'll look at how to use Spring Security + OAuth2 to secure our REST API endpoints, and demonstrate using an example Spring Boot project. [Demystifying Security on AWS Cloud]( [Avinash Goyal Cloud Zone]( As the largest commercial cloud provider, AWS Cloud has a number of measures in place to ensure security according to the Shared Responsibility model. New Downloads from DZone [Refcard] [Identity and Access Management]( In today's security climate, if you’re not keeping up, then you’re putting your company at risk of experiencing breaches, losing productivity, and falling behind the competition. DZone's Identity and Access Management (IAM) Refcard explores IAM key concepts, rising challenges, and core practices to securing digital identities. [Free Download >]( [Trend Report] [Kubernetes and the Enterprise]( This report will explore key developments in myriad technical areas related to the omnipresent container management platform, plus expert contributor articles highlighting key research findings like scaling a microservices architecture, cluster management, deployment strategies, and much more! [Free Download >]( [Refcard] [Getting Started With Container Registries]( Container registries serve as libraries to store and access third-party container images required during the build phase of the SDLC and the images produced for deployment to test, staging, and production environments. While public container registries are accessible and convenient, private registries can better integrate into existing CI/CD workflows, offer greater control over access and security, as well as help ensure build repeatability and reliability. This Refcard covers key container concepts and terminology; common use cases; and guidelines for container registry configuration, operation, security, and storage. [Free Download >]( [Help](mailto:support@dzone.com) | [Manage Preferences]( DZone, 600 Park Offices Dr, Research Triangle Park, NC 27709 © DZone 2020