Story image

CA Technologies fosters stronger culture for DevSecOps processes

21 Nov 17

CA Technologies is taking security to the early stages of software development with an expanded portfolio that concentrates on DevSecOps.

Gartner says DevSecOps has the ultimate goal of improving the overall security process by designing integrated controls. These controls do not undermine the agility and collaboration associated with DevOps.

“Simply layering standard security tools and processes onto the DevOps cycle won't work. Security checks, controls and testing need to be applied as automatically and transparently as feasible throughout the development, delivery and operation of applications.”

CA’s move into the DevSecOps process was made possible through the company’s acquisitions of Automic and Veracode.

CA Continuous Delivery SaaS brings complete visibility into DevOps planning and troubleshooting. It also provides a way for DevOps teams to remove manual processes in release planning and management.

CA’s integration with Veracode enables application security testing as part of the development process as it initiates checks through the development pipeline.

CA Automic Application Release Automation also speeds up deployment through an automated and agile back end that delivers more reliable code releases.

Companies that embrace DevSecOps deliver better and more-secure software because of the focus on collaboration and alignment across disciplines,” comments CA Technologies president Ayman Sayed.

The company says modern software factories should strive towards building better apps faster. Part of that means developers need the right tools and processes across the entire software development lifecycle.

It believes that DevSecOps can integrate tools and processes that foster better culture between development, security and operations teams, resulting in security that is a natural part of development and operations.

“In today’s security environment, it is critically important for security to be integrated seamlessly throughout the whole software development lifecycle. We are pleased to be able to provide CA customers with new tools that do just that across our CA Automic, CA Veracode, and Continuous Delivery portfolios," Sayed continues.

The company has also boosted its general DevOps portfolio to deliver on its promise of faster software development and delivery.

The company’s Continuous Delivery portfolio and CA Digital Experience Monitoring have both delivered new released that accelerate and automate development and release, improve testing and provide visibility into digital experiences.

“As companies increasingly conduct business through their APIs, web and mobile applications, their ability to grow and keep pace with the competitive rate of change of their markets depends on implementing modern DevOps practices and tools to ensure velocity, quality and efficiency across the entire software development lifecycle,” explains CA’s general manager of Continuous Delivery, Jeff Scheaffer.

CA has enhanced its testing solution CA BlazeMeter to include a lightweight SaaS-based API testing solution that is able to auto-generate and execute hundreds of test types concurrently.

CA Digital Experience Insights is a new SaaS-based digital experience monitoring and analytics solution that provides a holistic view of user experience, application performance and infrastructure management.

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Verifi takes spot in Deloitte Asia Pacific Fast 500
"An increasing amount of companies captured by New Zealand’s Anti-Money laundering legislation are realising that an electronic identity verification solution can streamline their customer onboarding."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.
What disaster recovery will look like in 2019
“With nearly half of all businesses experiencing an unrecoverable data event in the last three years, current backup solutions are no longer fit for purpose."
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.
Symantec and Fortinet partner for integration
The partnership will deliver essential security controls across endpoint, network, and cloud environments.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.