In this customer-only online meetup, we will show you how the XebiaLabs DevOps Platform automatically captures software chain of custody evidence to prove the end-to-end compliance of your software pipelines. You'll learn how you can:
-Provide comprehensive auditability for every release with a click of a button
-Generate and export the release audit report for a single release or multiple releases at once
-Use the reporting dashboard and create custom reports
2. 2
Meet your presenters
Rick Broker
Solutions Architect
rbroker@xebialabs.com
Brian Foster
Sales Engineer
bfoster@xebialabs.com
3. 3
The software chain of custody
▪ The software chain of custody proves what happened, when it
happened, where it happened, how it happened, and who made it
happen
▪ Without this information, it’s impossible to meet compliance and
security requirements as you develop and deliver software at scale
4. 4
Today, organizations are...
✘ Wasting resources—DevOps teams sacrifice thousands of hours a
year to meet audit requirements and create reports
✘ Wasting time—Teams can’t produce reports fast, so the audit,
security, and finance groups don’t get the data they need
✘ Wasting money—Enterprises spend a ton of money and time creating
audit reports
6. 6
Corporate image
Risk rating: impact on revenue
Risk rating: impact on freedom to operate
Embrace, embed, and automate IT auditing
7. 7
Corporate image
Risk rating: impact on revenue
Risk rating: impact on freedom to operate
IT risk
Embrace, embed, and automate IT auditing
8. 8
Corporate image
Risk rating: impact on revenue
Risk rating: impact on freedom to operate
IT risk
Control framework
Controls
focused on
CHANGE
Controls
focused on
RUN
Embrace, embed, and automate IT auditing
9. 9
Corporate image
Risk rating: impact on revenue
Risk rating: impact on freedom to operate
IT risk
Control framework
Controls
focused on
CHANGE
Controls
focused on
RUN
Pipeline automation
Embrace, embed, and automate IT auditing
10. 10
Corporate image
Risk rating: impact on revenue
Risk rating: impact on freedom to operate
IT risk
Control framework
Controls
focused on
CHANGE
Controls
focused on
RUN
Pipeline automation
Automated evidence
collection and processing
Embrace, embed, and automate IT auditing
11. 11
Corporate image
Risk rating: impact on revenue
Risk rating: impact on freedom to operate
IT risk
Control framework
Controls
focused on
CHANGE
Controls
focused on
RUN
Pipeline automation
Automated evidence
collection and processing
Simplification of your
framework is key
Embrace, embed, and automate IT auditing
12. 12
Corporate image
Risk rating: impact on revenue
Risk rating: impact on freedom to operate
IT risk
Control framework
Controls
focused on
CHANGE
Controls
focused on
RUN
Pipeline automation
Automated evidence
collection and processing
Simplification of your
framework is key
Design a process that is
compliant by default
Embrace, embed, and automate IT auditing
13. 13
Corporate image
Risk rating: impact on revenue
Risk rating: impact on freedom to operate
IT risk
Control framework
Controls
focused on
CHANGE
Controls
focused on
RUN
Pipeline automation
Automated evidence
collection and processing
Simplification of your
framework is key
Design a process that is
compliant by default
Automate as much as possible
in your delivery process
Embrace, embed, and automate IT auditing
16. 16
Dashboards
XebiaLabs’ custom dashboards and intelligent analytics provide
visibility and reporting to highlight release status and risk. Your
entire team, regardless of their technical level, can get everything
from chain of custody reports to release forecasts to value stream
maps, in one place.
18. 18
Custom Dashboards
▪ Allow you to create custom dashboards with the most relevant
data for your team and share them with others in your
organization
▪ Gives you the flexibility to focus on a small dataset or a specific
topic such as security
▪ Includes the ability to create and add custom tiles to your
dashboard