DevSecOps alert! Container security alert! Coté talks with Henri van den Bulk about the ideas of a “secure software supply chain.” When you’re building, running, and managing your own software, how you secure your software goes all the way back to development - it shifts left! Henri goes what it means do security governance needed in the development phase through deploying to production. We also discuss thinking about “risk management” in security, a sort of obtuse topic for those of us who aren’t security-heads. Mentioned: Henri in Linkedin: https://www.linkedin.com/in/hvandenbulk/ Henri in Twitter: https://twitter.com/hmvandenb Get my books for free: https://tanzu.vmware.com/content/cote?utmsource=cote&utmmedium=video&utmcampaign=TanzuTalk&utmcontent=henridevsecops Book some time with Tanzu Labs who specializes in bootstrapping your culture change: https://tanzu.vmware.com/office-hours?utmsource=cote&utmmedium=video&utmcampaign=TanzuTalk&utmcontent=henridevsecops
Related content in this Stream
Enabling Efficient Vulnerability Management with VEX, SBoM & CVE Scan Results
Enhance software supply chain security with VEX, SBoM & CVE scan reports. Tanzu Application Catalog optimizes risk assessment for DevSecOps.
Discover the power of a modern software factory: Agile development, DevSecOps, and platform engineering. Deliver better apps faster and forever with this comprehensive white paper.
DevSecOps in Practice with VMware Tanzu - A Discussion with the Authors
What is VMware Tanzu? I get asked this question a lot and, you know, I try to explain it. If you want a really good explanation, you should check out a new book on the topic, DevSecOps in Practice...
Tanzu Application Platform 1.4 Reduces Developer Toil, Enhances Operations and Security Outcomes
With VMware Tanzu Application Platform 1.4, available now, teams can cut down on developer toil and enhance operations and security, improving their overall DevSecOps experiences and outcomes.
VMware Tanzu Application Platform 1.3 Improves Developer Productivity and Simplifies DevSecOps
VMware announces new capabilities in Tanzu Application Platform that enhance developer and application operator experiences for any Kubernetes environment, increase supply chain security, and more!
Leveraging Bitnami’s Capabilities to Unlock New DevSecOps Benefits
VMware is innovatively leveraging Bitnami's capabilities to address the security and tooling challenges faced by enterprises in their multi-cloud and app modernization initiatives.
VMware Image Builder Helps Verify Customized, Secure Software for Any Platform on Any Cloud
Learn how enterprises and ISVs can use VMware Image Builder to securely automate the processes of packaging, verifying, and publishing applications and save their DevSecOps team’s valuable time.
Elevate App Development and DevSecOps Experience with New Integrations in VMware Tanzu Application Platform
Tanzu Application Platform version 1.2 focuses on readiness of more environments, from cloud-first to highly regulated with an enhanced DevSecOps experience.
DevOps vs. DevSecOps: What Are the Differences?
The main difference between DevOps and DevSecOps is security automation, but the nuances and benefits are just as important. Learn more with VMware Tanzu.
VMware Tanzu Community Edition Taps in Cartographer for Building Secure Adaptable Cloud Native Supply Chains
Whether you’re new to or experienced with Cartographer—an open source project designed to build and manage modern, secure software supply chains—discover how it helps boost DevSecOps productivity.
Kpack Now Included in VMware Tanzu Community Edition
Kpack, a Kubernetes-native container build platform and a powerful tool for DevSecOps teams, is now included in VMware Tanzu Community Edition.
11:07K8s DevSecOps with Tanzu
Recently, security has emerged as one of the most important issues in DevOps for modern applications with open source tools being heavily in use. With this, we will look into DevSecOps featuring incre
6:10Overview: See the VMware Tanzu Application Platform DevSecOps Experience
This video demonstrates how you can use the VMware Tanzu Application Platform to help accelerate your organization's DevSecOps culture. We demonstrate how Tanzu Application Platform can use an outer l
5:57Overview: See the VMware Tanzu Application Platform DevSecOps Experience
This video demonstrates how you can use the VMware Tanzu Application Platform to help accelerate your DevSecOps culture. In it, we show how the Tanzu Application Platform can use an outer loop supply
Announcing the Evolution of Tanzu Application Catalog to VMware Application Catalog
This library of validated, production-ready container images will soon support virtual machine images, making it even easier for teams to implement DevSecOps practices.
58:07Security as Code: A DevSecOps Approach
Security as Code (SaC) is the methodology of codifying security tests, scans, and policies. Security is implemented directly into the CI/CD pipeline to automatically and continuously detect security v
