markn.ca

DevOps

Latest

The Help Desk Is a Key to Incident Response
Archive

The Help Desk Is a Key to Incident Response

Outages are hard to handle. There's pressure to get things back up and running, to avoid damage to your reputation, and to avoid getting yelled at by the boss. The Help Desk is often the best positioned team to help...and the most overlooked.

The Unicorn Project Through a Security Lens
Archive

The Unicorn Project Through a Security Lens

The Unicorn Project is the latest book from Gene Kim, one of the leaders of the DevOps movement. The book focuses on developer enablement and culture. What does this have to do with cloud security? Everything.

NULL & Input Validation
Archive

NULL & Input Validation

NULL is one of many special characters that has a long history in computing. What are the consequences of using NULL as a value provided via user input. The easy answer should be "nothing" but reality is a lot messier. Joseph Tataro set out to get a nerdy license plate and found out jus

Exposing Secrets In Code
Archive

Exposing Secrets In Code

A recent study by NCSU found that there are way more API keys and tokens uploaded to GitHub than previously thought. In fact, there's almost a near constant stream of secrets being exposed...why?!?

Developer Workflow 101
Archive

Developer Workflow 101

The push to move to a "DevOps" culture is a great opportunity to improve security. But first, we need to understand the general development workflow!

Security in Devops
Archive

Security in Devops

The DevOps movement is the single biggest opportunity security teams have had in a long time. The goal of DevOps is speed and innovation. That goal can be achieved with systems and automation: why not fully integrate security at the same time for a win-win?

DevOps Overload
Archive

DevOps Overload

DevOps is the "new hotness" but what does it really mean to development, operations, and security?