There are many security benefits of immutable infrastructure. In the previous article, we took a high-level look at some of the potential advantages for software...

In recent years, there has been a dramatic increase in the number of high-profile software supply chain attacks. Vulnerabilities like Log4Shell left engineering teams across...

In the cloud-first world, infrastructure as code (IaC) has become a key part of software development and deployment. IaC allows engineering teams to manage their...

As cloud-based CI/CD pipelines become more popular, organizations are increasingly looking for ways to secure these critical systems. Often the central pillar of automation for...

As DevOps has become mainstream, many organizations are going further and adopting DevSecOps, and integrating security into their SDLC. This often raises many practical issues,...

In a previous article, Using DevSecOps to Strengthen Security on Microsoft Azure, we covered the fundamentals of DevSecOps security and how to use them to...