Securing Your Enterprise Continuous Delivery Pipelines with CA Automation Solutions (Formerly Automic) and CA Privileged Access Manager
For more information on DevSecOps, please visit: http://ow.ly/u2pN50g63tN
Strategic Direction Session: Deliver Next-Gen IT Ops with CA Mainframe Operat...CA Technologies
In this roadmap session, join us to explore how bleeding-edge data science algorithms are now being incorporated in real life into CA Mainframe Operational Intelligence to better predict performance issues and prevent costly downtime and capacity spikes across the IT landscape. See how you can get real-time insight to what may happen sooner and in-depth guidance on what you should do about it. And, learn how to use open tools that can pull in data feeders from other systems, to improve results. Whether you’re a mainframe novice or a seasoned operations expert, you'll find new tools can improve your SLA performance, MTTR and more.
For more information on Mainframe, please visit: http://ow.ly/pbDM50g68zT
Strategic Direction Session: Enhancing Data Privacy with Data-Centric Securit...CA Technologies
With great power comes great responsibility. Mainframes have both: the power of data and transactions that run the application economy, and the responsibility to keep that data protected. Join this roadmap session to learn from CA data privacy leaders and see the future of the data-centric security strategy, covering key products such as CA Data Content Discovery for z/OS, CA Compliance Event Manager and more. Learn how to enhance your data privacy and simplify regulatory compliance, plus get a view into the roadmap of what's to come in the mainframe security and compliance portfolio.
For more information on Mainframe, please visit: http://ow.ly/Ik2H50g66cN
Application Experience Analytics Services: The Strategic Digital Transformati...CA Technologies
Join this session for a taste of mainframe excellence deconstructed, with Jean Louis Vignaud, VP of Product Management, sharing the CA Technologies vision for how mainframe as a service breaks silos through a unified, enterprise-grade toolset deployed mobile to mainframe. Learn how a menu of IBM z Systems® services can be intelligently configured and provisioned to deliver at scale delight for the entire IT team—reduced TCO and flawless SLA delivery for CIOs, unparalleled security and compliance management for CISOs, and greater accessibility to mainframe code and data through a redesigned, “cloud-like experience” for enterprise architects and developers.
Stay connected at: http://ow.ly/d0f350g68Bq Thank you.
Pre-Con Ed: Privileged Identity Governance: Are You Certifying Privileged Use...CA Technologies
Many organizations have a solution to control the actions of privileged users. But that’s not enough for a complete privileged user management solution—you must also govern access to make sure that only the correct users have elevated privileges, and that they have only the privileges that they need. In this session, you will get an in-depth understanding of how you can reduce your risk through this capability unique to CA.
For more information on Security, please visit: http://cainc.to/CAW17-Security
Making Security Work—Implementing a Transformational Security ProgramCA Technologies
Recent newsworthy data breaches have business and IT leaders asking, “Are we learning from the mistakes of others?” In an ever-increasing threat environment, security leaders face mounting pressures to deliver effective security capabilities that protect business assets while balancing budgets, security risks and regulatory issues.
For more information on Security, please visit: http://cainc.to/CAW17-Security
Case Study: How SGN Used Attack Path Mapping to Control Privileged Access in ...CA Technologies
As one of the most forward thinking critical infrastructure companies in the UK, SGN is blazing a trail by becoming the first UK critical infrastructure company to run 100% in the cloud and using innovative IoT technologies to revolutionize the management of gas pipelines. To manage the risk, SGN embarked on a mission to shape the attack path of intruders. In this session, Mo Ahddoud, CISO at SGN will share how he used a technique called attack path mapping to put privileged access at the center of SGN's digital transformation.
For more information on Security, please visit: http://cainc.to/CAW17-Security
The Unmet Demand for Premium Cloud Monitoring Services—and How Service Provid...CA Technologies
The Unmet Demand for Premium Cloud Monitoring Services—and How Service Providers Can Capitalize
For more information on MSP, please visit: http://ow.ly/CrAA50gbyfJ
Case Study: Privileged Access in a World on TimeCA Technologies
Today there are more privileged users than ever before. Providing access is not optional it is a business necessity. But how do you avoid excessive access? Providing the right access at the right time is the formula for reducing your risk and securing a world of data. At FedEx empowering the right people at the right time is not only good business, but it's also good security.
For more information on Security, please visit: http://cainc.to/CAW17-Security
Strategic Direction Session: Deliver Next-Gen IT Ops with CA Mainframe Operat...CA Technologies
In this roadmap session, join us to explore how bleeding-edge data science algorithms are now being incorporated in real life into CA Mainframe Operational Intelligence to better predict performance issues and prevent costly downtime and capacity spikes across the IT landscape. See how you can get real-time insight to what may happen sooner and in-depth guidance on what you should do about it. And, learn how to use open tools that can pull in data feeders from other systems, to improve results. Whether you’re a mainframe novice or a seasoned operations expert, you'll find new tools can improve your SLA performance, MTTR and more.
For more information on Mainframe, please visit: http://ow.ly/pbDM50g68zT
Strategic Direction Session: Enhancing Data Privacy with Data-Centric Securit...CA Technologies
With great power comes great responsibility. Mainframes have both: the power of data and transactions that run the application economy, and the responsibility to keep that data protected. Join this roadmap session to learn from CA data privacy leaders and see the future of the data-centric security strategy, covering key products such as CA Data Content Discovery for z/OS, CA Compliance Event Manager and more. Learn how to enhance your data privacy and simplify regulatory compliance, plus get a view into the roadmap of what's to come in the mainframe security and compliance portfolio.
For more information on Mainframe, please visit: http://ow.ly/Ik2H50g66cN
Application Experience Analytics Services: The Strategic Digital Transformati...CA Technologies
Join this session for a taste of mainframe excellence deconstructed, with Jean Louis Vignaud, VP of Product Management, sharing the CA Technologies vision for how mainframe as a service breaks silos through a unified, enterprise-grade toolset deployed mobile to mainframe. Learn how a menu of IBM z Systems® services can be intelligently configured and provisioned to deliver at scale delight for the entire IT team—reduced TCO and flawless SLA delivery for CIOs, unparalleled security and compliance management for CISOs, and greater accessibility to mainframe code and data through a redesigned, “cloud-like experience” for enterprise architects and developers.
Stay connected at: http://ow.ly/d0f350g68Bq Thank you.
Pre-Con Ed: Privileged Identity Governance: Are You Certifying Privileged Use...CA Technologies
Many organizations have a solution to control the actions of privileged users. But that’s not enough for a complete privileged user management solution—you must also govern access to make sure that only the correct users have elevated privileges, and that they have only the privileges that they need. In this session, you will get an in-depth understanding of how you can reduce your risk through this capability unique to CA.
For more information on Security, please visit: http://cainc.to/CAW17-Security
Making Security Work—Implementing a Transformational Security ProgramCA Technologies
Recent newsworthy data breaches have business and IT leaders asking, “Are we learning from the mistakes of others?” In an ever-increasing threat environment, security leaders face mounting pressures to deliver effective security capabilities that protect business assets while balancing budgets, security risks and regulatory issues.
For more information on Security, please visit: http://cainc.to/CAW17-Security
Case Study: How SGN Used Attack Path Mapping to Control Privileged Access in ...CA Technologies
As one of the most forward thinking critical infrastructure companies in the UK, SGN is blazing a trail by becoming the first UK critical infrastructure company to run 100% in the cloud and using innovative IoT technologies to revolutionize the management of gas pipelines. To manage the risk, SGN embarked on a mission to shape the attack path of intruders. In this session, Mo Ahddoud, CISO at SGN will share how he used a technique called attack path mapping to put privileged access at the center of SGN's digital transformation.
For more information on Security, please visit: http://cainc.to/CAW17-Security
The Unmet Demand for Premium Cloud Monitoring Services—and How Service Provid...CA Technologies
The Unmet Demand for Premium Cloud Monitoring Services—and How Service Providers Can Capitalize
For more information on MSP, please visit: http://ow.ly/CrAA50gbyfJ
Case Study: Privileged Access in a World on TimeCA Technologies
Today there are more privileged users than ever before. Providing access is not optional it is a business necessity. But how do you avoid excessive access? Providing the right access at the right time is the formula for reducing your risk and securing a world of data. At FedEx empowering the right people at the right time is not only good business, but it's also good security.
For more information on Security, please visit: http://cainc.to/CAW17-Security
The Next Big Service Provider Opportunity—Beyond Infrastructure: Architecting...CA Technologies
The Next Big Service Provider Opportunity—Beyond Infrastructure: Architecting Your Customer’s Modern Software Factory
For more information on MSP, please visit: http://ow.ly/kWsH50gbxYh
Secure Data Sharing in OpenShift EnvironmentsDevOps.com
Red Hat OpenShift is enabling quicker adoption of DevOps practices. Containers are an essential component of DevOps and the OpenShift Kubernetes Container Platform is integral for orchestration within these environments. Data security is now challenged to keep pace with the size and scope of container usage. The migration from legacy in-house deployments to hybrid-cloud installations has created new attack surfaces as data is shared more freely in Kubernetes deployments.
Protecting data at rest and in motions is a necessity. Learn how you can keep data protected and securely share data in OpenShift environments with real-time data protection solutions.
Preparing Your Customer's Network for the Work from Home TransitionQOS Networks
With the mass transition to at-home workers, customers are forced to quickly adjust or even overhaul their network policies and technology to prepare. With many remote staff that will likely continue to stay working at home, how do you talk about the short and long term network strategy?
Modernizing on IBM Z Made Easier With Open Source SoftwareDevOps.com
In the past decade, IDC has seen IBM Z evolve first from a siloed platform to what they call a "connected" platform, and then to a "transformative" platform. This transition has been driven by IBM, by the IBM Z software vendors, like Rocket Software, and by businesses themselves.
IDC research shows that businesses that choose to modernize IBM Z achieve higher satisfaction than re-platformers and many are using open source software (OSS) in their modernization initiatives. Employing OSS makes it possible to crack the platform open and enable it to connect to the rest of the datacenter and the outside world. Join IDC guest speaker, Al Gillen and Peter Fandel as they take a deeper look at the value proposition associated with using commercially supported OSS in mission-critical environments, like IBM Z. In this webinar we’ll discuss:
How OSS can neutralize the disparity between seasoned IBM Z and emerging developers
The modernization initiatives that involve OSS
What to consider before bringing OSS to IBM Z
How Rocket Software is delivering commercially supported OSS to IBM Z
Webinar: Maximizing the ROI of IT by Simplifying Technology ComplexityFlexera
View this webinar with Forrester analyst Charlie Betz and Forrester consultant Stephen Odell, as they present the detailed findings of their study. After the webinar, you will have a better understanding of the benefits of Flexera Data Platform.
Security Across the Cloud Native Continuum with ESG and Palo Alto NetworksDevOps.com
Today’s enterprises have more compute options than ever before across the cloud native continuum. This continuum, spanning VMs, containers, managed Kubernetes, PaaS and serverless, provides users trade-offs and advantages when it comes to building and running their modern workloads and applications.
Recently, Enterprise Strategy Group conducted a survey titled “Leveraging DevSecOps to Secure Cloud Native Applications.” This research, covers the latest adoption numbers, trends and security concerns across all of the categories in the cloud native continuum—with insights into how organizations are successfully building and securing these technologies.
Join ESG, Senior Analyst and Group Practice Director Doug Cahill and Palo Alto Networks VP of Product John Morello to unpack the latest survey findings and discuss how security plays a vital role in securing cloud native applications.
More Than Monitoring: How Observability Takes You From Firefighting to Fire P...DevOps.com
For some, observability is just a hollow rebranding of monitoring, for others it’s monitoring on steroids. But what if we told you observability is the new way to find out why—not just if—your distributed system or application isn’t working as expected? Today, we see that traditional monitoring approaches can fall short if a system or application doesn’t adequately externalize its state.
This is truer as workloads move into the cloud and leverage ephemeral technologies, such as microservices and containers. To reach observability, IT and DevOps teams need to correlate different sources from logs, metrics, traces, events and more. This becomes even more challenging when defining the online revenue impact of a failed container—after all, this is what really matters to the business.
This webinar will cover:
The differences between observability and monitoring
Why it is a bigger challenge in a multicloud and containerized world
How observability results in less firefighting and more fire prevention
How new platforms can help gain observability (on premises and in the cloud) for containers, microservices and even SAP or mainframes
Security Opening Keynote Address: Security Drives DIGITAL TRANSFORMATION in...CA Technologies
Without security, Digital Transformation cannot be successful. Opening organizational boundaries and providing crucial information to the right people at the right time requires the right controls and a new security model is needed. Identities are at the heart of this transformation. In this presentation, Steve Firestone (GM, CA Security) will show how security is an essential component to the CA strategy for Digital Transformation and how organizations can use the power of Identities to drive their business forward.
For more information, please visit http://cainc.to/Nv2VOe
Navigating the Unknowable: Resilience through Security Chaos Engineering
When applied to Cyber Security, Chaos Engineering is advancing our ability to reveal objective information about the effectiveness of operational security measures proactively through empirical experimentation. In this session we will introduce the core concepts behind this new technique and how you can get started in building and applying it.
Building an Adoption Plan: Think Outside the Box (Part 1 of 2)Cisco Canada
You have made the leap…invested in collaboration solutions…the boxes have arrived and software secured. Now the question is how do I roll it out to my organization and my different line of business users to meet their unique needs?
Our collaboration portfolio has never been more flexible to accommodate the needs of a diverse and ever changing workforce. Whether you are an HR leader, field worker, sales executive or individual contributor, you can leverage the same collaboration investment to meet your distinct requirements. In this session, we will review these distinct requirements and showcase the appropriate collaboration use cases from both a horizontal line of business lens and a vertical lens.
Digital Experience Management—The Key to Delivering Exceptional Digital Exper...Riverbed Technology
Digital Transformation (DX) is driving organizations to adopt Digital Experience Management (DEM) best practices. Companies hoping to provide the best digital experiences to their end users are often met with challenges arising from disjointed point solutions and a lack of unified insights and management tools across all infrastructure types.
With problematic application lifecycles, ineffective tools, and complex application delivery architectures, enterprises must rethink their existing tools and methodologies to ensure their digital channels, applications, and services are optimized for business and end-user success.
This Riverbed presentation covers the following topics:
- What is Digital Experience Management (DEM)?
- Why DEM is important to organizations?
- What roadblocks and hurdles exist?
- How Riverbed's unified DEM solution is different
- What are some next steps you can take to achieve success with DEM?
Find out more about Digital Experience Management with Riverbed here http://rvbd.ly/2y0MHpt
Redington Value is the Value Added Distribution division of Redington Gulf, the largest distributor of IT products in Middle East and Africa. Redington Value helps it’s partners in the channel deliver the most optimal IT solution to their customers in Middle East and Africa. These solutions span across technology domains such as Networking, Voice, Servers, Storage, Software, Security and Infrastructure.
The CA Technologies | Veracode Platform: A 360-Degree View of Your Applicatio...CA Technologies
The CA Technologies | Veracode Platform: A 360-Degree View of Your Application's Security
For more information on DevSecOps, please visit: http://ow.ly/LcyX50g63fO
When You Test Matters: Why Testing Early in the SDLC is ImportantCA Technologies
"This is the second presentation in the series on building application security programs. DevSecOps is starting to ease the tension between security professionals and developers. The more collaborative approach to software development means supporting developers in their responsibility to create functional, high-quality code securing applications no longer sits solely in the realm of security professionals. Developers are responsible for creating secure code as part of creating functional, high-quality code. While the positive impact on developers' and security professionals’ relationships cannot be understated, it does mean that conducting security tests needs to happen earlier in the software development lifecycle (SDLC) than ever before.
Join this presentation to understand why testing early results in higher-quality, secure code and how your organization can bring testing into the earliest phase of the SDLC—all while improving the relationship between developers and security professionals.
Attendees will also get a first-hand look at the tools developers can use to conduct these security tests.
For more information on DevSecOps, please visit: http://ow.ly/s26T50g63eQ
The Next Big Service Provider Opportunity—Beyond Infrastructure: Architecting...CA Technologies
The Next Big Service Provider Opportunity—Beyond Infrastructure: Architecting Your Customer’s Modern Software Factory
For more information on MSP, please visit: http://ow.ly/kWsH50gbxYh
Secure Data Sharing in OpenShift EnvironmentsDevOps.com
Red Hat OpenShift is enabling quicker adoption of DevOps practices. Containers are an essential component of DevOps and the OpenShift Kubernetes Container Platform is integral for orchestration within these environments. Data security is now challenged to keep pace with the size and scope of container usage. The migration from legacy in-house deployments to hybrid-cloud installations has created new attack surfaces as data is shared more freely in Kubernetes deployments.
Protecting data at rest and in motions is a necessity. Learn how you can keep data protected and securely share data in OpenShift environments with real-time data protection solutions.
Preparing Your Customer's Network for the Work from Home TransitionQOS Networks
With the mass transition to at-home workers, customers are forced to quickly adjust or even overhaul their network policies and technology to prepare. With many remote staff that will likely continue to stay working at home, how do you talk about the short and long term network strategy?
Modernizing on IBM Z Made Easier With Open Source SoftwareDevOps.com
In the past decade, IDC has seen IBM Z evolve first from a siloed platform to what they call a "connected" platform, and then to a "transformative" platform. This transition has been driven by IBM, by the IBM Z software vendors, like Rocket Software, and by businesses themselves.
IDC research shows that businesses that choose to modernize IBM Z achieve higher satisfaction than re-platformers and many are using open source software (OSS) in their modernization initiatives. Employing OSS makes it possible to crack the platform open and enable it to connect to the rest of the datacenter and the outside world. Join IDC guest speaker, Al Gillen and Peter Fandel as they take a deeper look at the value proposition associated with using commercially supported OSS in mission-critical environments, like IBM Z. In this webinar we’ll discuss:
How OSS can neutralize the disparity between seasoned IBM Z and emerging developers
The modernization initiatives that involve OSS
What to consider before bringing OSS to IBM Z
How Rocket Software is delivering commercially supported OSS to IBM Z
Webinar: Maximizing the ROI of IT by Simplifying Technology ComplexityFlexera
View this webinar with Forrester analyst Charlie Betz and Forrester consultant Stephen Odell, as they present the detailed findings of their study. After the webinar, you will have a better understanding of the benefits of Flexera Data Platform.
Security Across the Cloud Native Continuum with ESG and Palo Alto NetworksDevOps.com
Today’s enterprises have more compute options than ever before across the cloud native continuum. This continuum, spanning VMs, containers, managed Kubernetes, PaaS and serverless, provides users trade-offs and advantages when it comes to building and running their modern workloads and applications.
Recently, Enterprise Strategy Group conducted a survey titled “Leveraging DevSecOps to Secure Cloud Native Applications.” This research, covers the latest adoption numbers, trends and security concerns across all of the categories in the cloud native continuum—with insights into how organizations are successfully building and securing these technologies.
Join ESG, Senior Analyst and Group Practice Director Doug Cahill and Palo Alto Networks VP of Product John Morello to unpack the latest survey findings and discuss how security plays a vital role in securing cloud native applications.
More Than Monitoring: How Observability Takes You From Firefighting to Fire P...DevOps.com
For some, observability is just a hollow rebranding of monitoring, for others it’s monitoring on steroids. But what if we told you observability is the new way to find out why—not just if—your distributed system or application isn’t working as expected? Today, we see that traditional monitoring approaches can fall short if a system or application doesn’t adequately externalize its state.
This is truer as workloads move into the cloud and leverage ephemeral technologies, such as microservices and containers. To reach observability, IT and DevOps teams need to correlate different sources from logs, metrics, traces, events and more. This becomes even more challenging when defining the online revenue impact of a failed container—after all, this is what really matters to the business.
This webinar will cover:
The differences between observability and monitoring
Why it is a bigger challenge in a multicloud and containerized world
How observability results in less firefighting and more fire prevention
How new platforms can help gain observability (on premises and in the cloud) for containers, microservices and even SAP or mainframes
Security Opening Keynote Address: Security Drives DIGITAL TRANSFORMATION in...CA Technologies
Without security, Digital Transformation cannot be successful. Opening organizational boundaries and providing crucial information to the right people at the right time requires the right controls and a new security model is needed. Identities are at the heart of this transformation. In this presentation, Steve Firestone (GM, CA Security) will show how security is an essential component to the CA strategy for Digital Transformation and how organizations can use the power of Identities to drive their business forward.
For more information, please visit http://cainc.to/Nv2VOe
Navigating the Unknowable: Resilience through Security Chaos Engineering
When applied to Cyber Security, Chaos Engineering is advancing our ability to reveal objective information about the effectiveness of operational security measures proactively through empirical experimentation. In this session we will introduce the core concepts behind this new technique and how you can get started in building and applying it.
Building an Adoption Plan: Think Outside the Box (Part 1 of 2)Cisco Canada
You have made the leap…invested in collaboration solutions…the boxes have arrived and software secured. Now the question is how do I roll it out to my organization and my different line of business users to meet their unique needs?
Our collaboration portfolio has never been more flexible to accommodate the needs of a diverse and ever changing workforce. Whether you are an HR leader, field worker, sales executive or individual contributor, you can leverage the same collaboration investment to meet your distinct requirements. In this session, we will review these distinct requirements and showcase the appropriate collaboration use cases from both a horizontal line of business lens and a vertical lens.
Digital Experience Management—The Key to Delivering Exceptional Digital Exper...Riverbed Technology
Digital Transformation (DX) is driving organizations to adopt Digital Experience Management (DEM) best practices. Companies hoping to provide the best digital experiences to their end users are often met with challenges arising from disjointed point solutions and a lack of unified insights and management tools across all infrastructure types.
With problematic application lifecycles, ineffective tools, and complex application delivery architectures, enterprises must rethink their existing tools and methodologies to ensure their digital channels, applications, and services are optimized for business and end-user success.
This Riverbed presentation covers the following topics:
- What is Digital Experience Management (DEM)?
- Why DEM is important to organizations?
- What roadblocks and hurdles exist?
- How Riverbed's unified DEM solution is different
- What are some next steps you can take to achieve success with DEM?
Find out more about Digital Experience Management with Riverbed here http://rvbd.ly/2y0MHpt
Redington Value is the Value Added Distribution division of Redington Gulf, the largest distributor of IT products in Middle East and Africa. Redington Value helps it’s partners in the channel deliver the most optimal IT solution to their customers in Middle East and Africa. These solutions span across technology domains such as Networking, Voice, Servers, Storage, Software, Security and Infrastructure.
The CA Technologies | Veracode Platform: A 360-Degree View of Your Applicatio...CA Technologies
The CA Technologies | Veracode Platform: A 360-Degree View of Your Application's Security
For more information on DevSecOps, please visit: http://ow.ly/LcyX50g63fO
When You Test Matters: Why Testing Early in the SDLC is ImportantCA Technologies
"This is the second presentation in the series on building application security programs. DevSecOps is starting to ease the tension between security professionals and developers. The more collaborative approach to software development means supporting developers in their responsibility to create functional, high-quality code securing applications no longer sits solely in the realm of security professionals. Developers are responsible for creating secure code as part of creating functional, high-quality code. While the positive impact on developers' and security professionals’ relationships cannot be understated, it does mean that conducting security tests needs to happen earlier in the software development lifecycle (SDLC) than ever before.
Join this presentation to understand why testing early results in higher-quality, secure code and how your organization can bring testing into the earliest phase of the SDLC—all while improving the relationship between developers and security professionals.
Attendees will also get a first-hand look at the tools developers can use to conduct these security tests.
For more information on DevSecOps, please visit: http://ow.ly/s26T50g63eQ
Mainframe as a Service: Sample a Buffet of IBM z/OS® Platform ExcellenceCA Technologies
Join this session for a taste of mainframe excellence deconstructed, with Jean Louis Vignaud, VP of Product Management, sharing the CA Technologies vision for how mainframe as a service breaks silos through a unified, enterprise-grade toolset deployed mobile to mainframe. Learn how a menu of IBM z Systems® services can be intelligently configured and provisioned to deliver at scale delight for the entire IT team—reduced TCO and flawless SLA delivery for CIOs, unparalleled security and compliance management for CISOs, and greater accessibility to mainframe code and data through a redesigned, “cloud-like experience” for enterprise architects and developers.
For more information on Mainframe, please visit: http://ow.ly/GwKO50gkixl
FSV308-Culture Shift How to Move a Global Financial Services Organization to ...Amazon Web Services
Many enterprises that follow regulated, process-driven workflows would like to take advantage of the innate features and benefits of AWS to become more agile, achieve operational excellence, and accelerate time-to-market while leveraging a DevOps culture and development methodology. But building a mature DevOps capability doesn’t happen overnight. Creating and implementing testing, compliance, and security automation frameworks requires time and organizational and process changes. Financial institutions are addressing this challenge by using AWS Service Catalog to help bridge the gap between traditional operations and true DevOps.
DevSecOps is the premise that everyone in the software development lifecycle is responsible for security. DevSecOps aims to embed security in every part of the development process. In this *workshop*, participants explore taking a standard CI/CD pipeline and adding security stages to improve security posture. Learn how to use AWS CodeCommit and AWS CodePipeline to build and publish golden AMI images. Also, learn how to modify pipeline flow to add security test cases. You also have to opportunity to perform CVE analysis and code analysis using Amazon Inspector and perform observational container analysis using Amazon GuardDuty.
Shifting Left…AND Right to Ensure Full Application Security CoverageDevOps.com
Web Applications continue to be one of the primary attack vectors that lead to breaches within organizations all over the world. As more and more organizations adopt DevOps and CI/CD workflows, there has been an added push to shift security testing to earlier stages in the software development lifecycle. Finding flaws earlier can save precious time as release cycles become faster, however, what happens once an application is running? With the ever-changing threat landscape that organizations function in today, even an application initially developed as securely as possible can become vulnerable over time as attackers uncover new ways to exploit weaknesses. Organizations that fail to test their running web applications risk missing exploitable vulnerabilities that could lead to a breach.
In this webinar, product leaders from CA Veracode will discuss the importance of performing Dynamic Application Security Testing (DAST) on web applications during the testing and QA phases to catch exploitable vulnerabilities before release that static testing alone cannot find. They will also discuss how establishing a recurring schedule of DAST scans on your running web applications can help your organization discover new vulnerabilities and help you reduce your risk of a breach.
Securing Container Deployments from Build to Ship to Run - August 2017 - Ranc...Shannon Williams
Security should be integrated into every phase of the container application development life cycle, from build to ship to run. On August 31st, we hosted an online meetup to discuss the issues that need be addressed to achieve continuous security for containers.
The presentation included speakers from Rancher Labs (www.rancher.com), NeuVector (www.neuvector.com) and Black Duck Software (www.blackducksoftware.com) who discussed:
- Best practices for preparing your environment for secure deployment
- How to secure containers during run-time
- Actionable next steps to protect your applications
Scale Continuous Deployment to Production with DeployHub and CloudBeesDeborah Schalm
Moving from a simple Jenkins CI workflow to Continuous Delivery requires a focus on Continuous Deployment. Join us for a discussion on how to integrate DeployHub, an open source application release automation solution, into your CloudBees pipeline to support automated deployments across dev, test and production. You will see how to create a Continuous Feedback loop, track change request and support rollback and version jumping all orchestrated via the CloudBees platform. Maturing your CD process to support continuous deployment using ARA has always been possible, but extremely expensive. DeployHub OSS solves the budget problem, integrated into CloudBees - and it is agentless for fast easy implementation.
Scale Continuous Deployment to Production with DeployHub and CloudBeesDevOps.com
Moving from a simple Jenkins CI workflow to Continuous Delivery requires a focus on Continuous Deployment. Join us for a discussion on how to integrate DeployHub, an open source application release automation solution, into your CloudBees pipeline to support automated deployments across dev, test and production. You will see how to create a Continuous Feedback loop, track change request and support rollback and version jumping all orchestrated via the CloudBees platform. Maturing your CD process to support continuous deployment using ARA has always been possible, but extremely expensive. DeployHub OSS solves the budget problem, integrated into CloudBees - and it is agentless for fast easy implementation.
Securing 100 products - How hard can it be?Priyanka Aash
Many companies establish their Secure Development Lifecycle. The adoption of it crucial especially for corporations with dozens of applications. The main challenges they face are the diversity of architecture, dev languages, methodologies, compliance, regulations, etc. This talk will shed light on scaling up and out the application security capabilities and maximizing the software security maturity.
(Source : RSA Conference USA 2017)
Secure Your DevOps Pipeline Best Practices Meetup 08022024.pptxlior mazor
Our technology, work processes, and activities all depend on if we trust our software to be developed in a safe and secure manner. Join us virtually for our upcoming "Secure Your DevOps Pipeline: Best Practices" Meetup to learn how to integrate security in the development process, DevSecOps advance methods, manage the implement secure coding analysis and how to manage software security risks.
Continuous Delivery: From Mainframe to MobileMark Sigler
The mainframe is a critical platform in the value stream for digital transformation. Learn how to orchestrate a tool chain that brings the mainframe into alignment with your DevOps initiatives to speed innovations to market.
DevOps For Everyone: Bringing DevOps Success to Every App and Every Role in y...Siva Rama Krishna Chunduru
Understand DevOps and it's fitment to various types of applications.
Understand various Organization Roles after Org-restructure.
Understand the way to measure the success.
CA Microgateway: Deploying, Configuring, and Extending CA MicrogatewayCA Technologies
CA Microgateway: Deploying, Configuring, and Extending CA Microgateway
For more information on DevOps: APIs and Microservices, please visit: http://ow.ly/st8i50g5URR
Keeping security top of mind while creating standards for engineering teams following the DevOps culture. This talk was designed to show off how easily it is to automate security scanning and to be the developer advocate by showing the quality of development work. We will cover some high-level topics of DevSecOps and demo some examples DevOps team can implement for free.
GPSWKS404-GPS Game Changing C2S Services To Transform Your Customers Speed To...Amazon Web Services
In this session, we provide insights into the new AWS C2S offering and DevOps best practices so you can be the game changer and help your customers innovate faster and transform their speed-to-mission. Topics include: changes to C2S, C2S practices for DevOps, and tools and integrated security for DevSecOps.
This presentation frames a Microservices Lifecycle Demo given by Jay Thorne at CA World 2016. The presentation discusses Fred Brook's concepts of essential and accidental complexity and how they fit with microservice architecture.
Continuous Delivery Pipeline in the Cloud – How to Achieve Continous Everything CA Technologies
Even if your dev team is agile, there are often bottlenecks that keep your organization from achieving true continuous delivery. We’ll discuss how to eliminate spreadsheets and implement a common workflow that all teams throughout the software delivery lifecycle can rally around. Automate your CD pipeline and get the viability you need for continuous improvement – from planning to production and into performance. Learn more at:
CDDirector.io - https://cddirector.io/
Similar to Securing Your Enterprise Continuous Delivery Pipelines with CA Automation Solutions (Formerly Automic) and CA Privileged Access Manager (20)
In medicine - an MRI can quickly reveal a hidden ailment and actionable insight to get better. For IT and business leaders whose key concern with the mainframe is the platform costs and lean operations - the CA Mainframe Resource Intelligene reveals multiple sources of hidden mainframe costs and operational inefficiencies along with actionable recommendations.View this slideshare to understand how this new SaaS offering from CA brings together automation, speed, analytics and mainframe expertise of 40+ years. CA Mainframe Resource Intelligence reports answer your CIO’s toughest questions about mainframe optimization and potential for digital transformation.
For more information, please contact your account director or mainframe specialist at:
http://ow.ly/PALG50htHgF
Case Study: How CA Went From 40 Days to Three Days Building Crystal-Clear Tes...CA Technologies
Here at CA Technologies, our development teams share many of the same challenges producing quality software as our customers.
For more information on DevOps: Continuous Delivery, please visit: http://cainc.to/CAW17-CD
Case Study: How The Home Depot Built Quality Into Software DevelopmentCA Technologies
This session will cover how The Home Depot built quality into its software development as it migrated from waterfall to agile delivery.
For more information on DevOps: Continuous Delivery, please visit: http://cainc.to/CAW17-CD
Case Study: Putting Citizens at The Center of Digital GovernmentCA Technologies
Around the globe, citizens are demanding 24/7 access to government, and this is driving a dramatic re-architecture of public services putting citizens in control, increasing participation and access to services. From two different parts of the world, The State of Louisiana & The State of Amazonas in Brazil have both become centers for innovation. In this session, they will share and demonstrate how they are designing a government built to change and breaking down silos to make the citizen the center of government.
For more information on Security, please visit: http://cainc.to/CAW17-Security
Keynote: Making Security a Competitive AdvantageCA Technologies
Keynote: Making Security a Competitive Advantage
For more information on Security, please visit: http://cainc.to/CAW17-Security
For more information on DevSecOps, please visit: http://cainc.to/CAW17-DevSecOps For more information on Veracode, please visit: http://community.veracode.com
Leveraging Monitoring Governance: How Service Providers Can Boost Operational...CA Technologies
Leveraging Monitoring Governance: How Service Providers Can Boost Operational Efficiency and Scalability
For more information on MSP, please visit: http://ow.ly/oQ1o50gby0m
Application Experience Analytics Services: The Strategic Digital Transformati...CA Technologies
Application Experience Analytics Services: The Strategic Digital Transformation Play for Service Providers
For more information: Download the white paper, “Five Technologies for the Built-to-Change Business—and How You Can Monetize Them” at: https://www.ca.com/content/dam/ca/us/files/white-paper/five-technologies-built-to- change-business.pdf
Blockchain: Strategies for Moving From Hype to Realities of DeploymentCA Technologies
The promise of blockchain, or specifically distributed ledger technology, has captured the attention of business and IT leaders across multiple industries. Now is the time to move from hype to reality. This session will examine use cases of pioneering companies that apply blockchain in a multi-party entity environment with immutable smart contracts. We’ll share how some DevSecOps requirements are fundamentally different for blockchain pilots and full deployment—from getting started with the right development environment to concerns of security, encryption and operational visibility. We will also discuss integration of blockchain with existing systems of record and the use of shadow blockchain as an evolutionary step towards adoption. Join this session to learn more about developing, deploying, and securing blockchain.
For more information on Mainframe, please visit: http://ow.ly/VnBh50g66bO
Establish Digital Trust as the Currency of Digital EnterpriseCA Technologies
In this keynote session, hear from Ashok Reddy, GM for CA Mainframe to learn how you can establish digital trust using the power of the new IBM Z and the Modern Software Factory to become a digital enterprise. CIO’s can deliver better economics and TCO. IT operations teams can enable self-driving mainframe data centers to deliver 100% SLA’s. CISO’s and auditors can protect sensitive data to avoid fines tied to GDPR and regulations. Enterprise Architects and Developers can use the same open, modern DevSecOps toolset, mobile-to-mainframe. And, get a sneak peek at new innovations: Mainframe as a Service and Blockchain which can put you in the driver’s seat to transform the way your company does business. Joining Ashok will be key leaders from IBM, General Motors, and Southwest Gas who will share their perspectives on digital transformation.
Stay connected at http://ow.ly/4NOy50g63Ji
Case Study: How The Home Depot Built Quality Into Software DevelopmentCA Technologies
This session will cover how The Home Depot built quality into its software development as it migrated from waterfall to agile delivery.
For more information on DevOps: Continuous Delivery, please visit: http://ow.ly/hAXz50g62ZM
Case Study: How CA Went From 40 Days to Three Days Building Crystal-Clear Tes...CA Technologies
Here at CA Technologies, our development teams share many of the same challenges producing quality software as our customers.
For more information on DevOps: Continuous Delivery, please visit: http://ow.ly/3X1E50g62YC
Case Study: Continuous Delivery in a Tech Debt Laden World by Talk Talk.CA Technologies
You have one website, one Web service and a database. If you have an architecture like this, then continuous delivery is trivial. In the real world, the challenges are much more pronounced. Imagine a system of apps and databases measured in the hundreds. Imagine that those apps have been developed over 15 years, fuelled by the growth of the business and numerous acquisitions.
This is the challenge most enterprise-level organizations face. This is not your three-tier beauty but the real world of interconnected systems that lack documentation and subject matter experts. This session will focus on the challenge of getting an estate the size of Talk Talk's into a state where automation gives value. It will focus on the work Talk Talk has done with CA Technologies and where the tooling allows it to reduce technical debt and start on the automation journey, culminating at continuous delivery.
For more information on DevOps: Continuous Delivery, please visit: http://ow.ly/Ycwj50g62tf
Case Study: United Airlines Transforms Release Management for Its Modern Soft...CA Technologies
Release management has played a critical function at United Airlines, but it has been hindered by manual processes and spreadsheets. As a part of an IT-wide reliability effort, the company has transformed the role that IT release management plays in the organization. To begin, United performed a governance model and maturity assessment to formally define the service offering, standards and processes. It launched a pilot to establish an onshore/offshore release model, shifting the role of the release team in the process to ensure the right type of work was fulfilled. United moved from multiple spreadsheets to a centralized dashboard to track and manage releases and engagement levels. As a part of the overall transformation, many decisions were needed to ensure success and data was heavily leveraged across all main decision points. In this session, you will learn how transparency around metrics and a strong governance program is transforming United’s IT release team. You will also see how CA Continuous Delivery Director is helping United’s transformation.
For more information on DevOps: Continuous Delivery, please visit: http://ow.ly/O2lQ50g62s7
Keynote: Unlock the Power of Continuous Delivery with End-to-End, Integrated ...CA Technologies
The modern software factory relies on the ability to deliver software faster, with higher quality—while reducing risk and costs. This is only possible when an organization can delivery software continuously. Historically testing has been the major impediment to achieving continuous delivery, but new tools from CA are eliminating the testing bottleneck and enabling true end-to-end continuous testing. Come to this Continuous Delivery Keynote session from Jeff Scheaffer, General Manager for the Continuous Delivery Business Unit at CA.
For more information on DevOps: Continuous Delivery, please visit: http://ow.ly/bEGh50g62aQ
Industry Keynote: Redefine Operations in a DevOps World—The New Role for Site...CA Technologies
Across industries, modern operations teams have noted the emergence of a new role: the Site Reliability Engineer (SRE). An SRE is a new IT craftsperson who fuses software engineering and operations best-practices to enable highly reliable software systems. Once the domain of Web-scale businesses only, this discipline is both applicable and important for any organization looking to differentiate itself in a world increasingly defined by software. In this session, Todd Palino from LinkedIn explores the SRE role from organizational, team and individual perspectives. He’ll describe how by crafting automation and problem solving, a SRE can permeate across a technical organization—not only ensuring a massively high-performant and always-available site, but also informing optimum decision making—assisting with everything from system procurement to application design, builds and deployment.
For more information on DevOps: Agile Operations, please visit: http://ow.ly/xUXz50g61RR
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Search and Society: Reimagining Information Access for Radical FuturesBhaskar Mitra
The field of Information retrieval (IR) is currently undergoing a transformative shift, at least partly due to the emerging applications of generative AI to information access. In this talk, we will deliberate on the sociotechnical implications of generative AI for information access. We will argue that there is both a critical necessity and an exciting opportunity for the IR community to re-center our research agendas on societal needs while dismantling the artificial separation between the work on fairness, accountability, transparency, and ethics in IR and the rest of IR research. Instead of adopting a reactionary strategy of trying to mitigate potential social harms from emerging technologies, the community should aim to proactively set the research agenda for the kinds of systems we should build inspired by diverse explicitly stated sociotechnical imaginaries. The sociotechnical imaginaries that underpin the design and development of information access technologies needs to be explicitly articulated, and we need to develop theories of change in context of these diverse perspectives. Our guiding future imaginaries must be informed by other academic fields, such as democratic theory and critical theory, and should be co-developed with social science scholars, legal scholars, civil rights and social justice activists, and artists, among others.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
JMeter webinar - integration with InfluxDB and GrafanaRTTS
Watch this recorded webinar about real-time monitoring of application performance. See how to integrate Apache JMeter, the open-source leader in performance testing, with InfluxDB, the open-source time-series database, and Grafana, the open-source analytics and visualization application.
In this webinar, we will review the benefits of leveraging InfluxDB and Grafana when executing load tests and demonstrate how these tools are used to visualize performance metrics.
Length: 30 minutes
Session Overview
-------------------------------------------
During this webinar, we will cover the following topics while demonstrating the integrations of JMeter, InfluxDB and Grafana:
- What out-of-the-box solutions are available for real-time monitoring JMeter tests?
- What are the benefits of integrating InfluxDB and Grafana into the load testing stack?
- Which features are provided by Grafana?
- Demonstration of InfluxDB and Grafana using a practice web application
To view the webinar recording, go to:
https://www.rttsweb.com/jmeter-integration-webinar
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
"Impact of front-end architecture on development cost", Viktor TurskyiFwdays
I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
Knowledge engineering: from people to machines and back
Securing Your Enterprise Continuous Delivery Pipelines with CA Automation Solutions (Formerly Automic) and CA Privileged Access Manager
1. Securing Your Enterprise Continuous Delivery
Pipelines With CA Automation Solutions
(Formerly Automic) and CA Privileged Access
Manager (CA PAM)
Scott Willson
DST45T
DEVSECOPS
Product Marketing Director – CA Automic Release Automation
CA Technologies