Watch Our On-Demand DevOps Security Webinar
October 29, 2014 | DevOps | Kevin O'Brien
We were very excited to host yesterday’s DevOps security webinar entitled DevOps, Security, and Modern Infrastructure with CTO Kevin Gilpin and founding team member Kevin O’Brien!
Over the course of the discussion, Kevin and Kevin looked at how security for DevOps is evolving, and how the new tools, principles, and methodologies of the DevOps movement are changing the landscape for information security. In considering these changes, the Conjur team outlined a set of best practices for DevOps security, including:
- Establish Principles of Least Privilege
- Enforce Separation of Duties
- Define Role Based Access Control (RBAC)
- Prove Compliance and Adherence
- Manage Authorization (AuthZ) at Scale
We further explored how security for security’s sake inhibits productivity and the benefits that cloud brings, and how to consider and implement risk-appropriate rather than punitive controls.