Phil Kernick, co-founder and CTO of cybersecurity specialist CQR Consulting, has no fundamental problem with DevOps, but asks, from a security perspective, “How many people do it right?” If DevOps is going to work and produce secure systems, then developers must take responsibility for security. It’s not something that can be treated as an additional process. But abstract responsibility isn’t sufficient. It’s rare for developers to have security tools in their kit and an understanding of their results, said Kernick....
Read More