DZone
DevOps Zone
Thanks for visiting DZone today,
Edit Profile
  • Manage Email Subscriptions
  • How to Post to DZone
  • Article Submission Guidelines
Sign Out View Profile
  • Post an Article
  • Manage My Drafts
Over 2 million developers have joined DZone.
Log In / Join
  • Refcardz
  • Trend Reports
  • Webinars
  • Zones
  • |
    • Agile
    • AI
    • Big Data
    • Cloud
    • Database
    • DevOps
    • Integration
    • IoT
    • Java
    • Microservices
    • Open Source
    • Performance
    • Security
    • Web Dev
DZone > DevOps Zone > Automate or Die (RSA 2016)

Automate or Die (RSA 2016)

Check out this quick interview with Adrian Sanabria of 451 Research about how automation is key to maintaining sustainable security.

Tatiana Crawford user avatar by
Tatiana Crawford
·
Mar. 10, 16 · DevOps Zone · Interview
Like (1)
Save
Tweet
2.85K Views

Join the DZone community and get the full member experience.

Join For Free

Image title

"Most companies out there are having trouble with resources," said Adrian Sanabria (@sawaba), Senior Security Analyst, 451 Research, who realizes throwing more bodies or money at an ever-growing security problem simply isn’t sustainable.

The solution is to automate, said Sanabria, or die. Sure, he’s aware most people are nervous about automation, but it’s necessary. The issue is securing your business. And, the attackers aren’t going to wait.

"Email is not a good API," said Sanabria in our conversation at the 2016 RSA Conference in San Francisco. The standard systems we have in place for securing, chains of human actions (e.g., downloading patches), and human-to-human commands (e.g., assigned tasks) have too many fail points and eat up far too much time.

APIs are the wave of the future, said Sanabria. We need tools and people who can automate things that integrate with all new technologies.

Sanabria is not lost on the obvious complications.

"There’s a constant balance between risk and disruption to the business, or disruption to the users, that you’re going to have to balance with automation," he said.

To start, look for the easy wins, such as compliance, said Sanabria.

It’s not agile IT. It’s not DevOps. It’s just security, added Sanabria. This is the new paradigm of security and that’s how we all have to address it. Automation is key to maintaining security.


Originally posted on CloudPassage

Die (manufacturing)

Published at DZone with permission of Tatiana Crawford, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

Popular on DZone

  • Everything I Needed to Know About Observability, I Learned from ‘Bewitched’
  • A Simple Guide to Heaps, Stacks, References, and Values in JavaScript
  • Ultra-Fast Microservices in Java: When Microstream Meets Open Liberty
  • Package and Deploy a Lambda Function as a Docker Container With AWS CDK

Comments

DevOps Partner Resources

ABOUT US

  • About DZone
  • Send feedback
  • Careers
  • Sitemap

ADVERTISE

  • Advertise with DZone

CONTRIBUTE ON DZONE

  • Article Submission Guidelines
  • MVB Program
  • Become a Contributor
  • Visit the Writers' Zone

LEGAL

  • Terms of Service
  • Privacy Policy

CONTACT US

  • 600 Park Offices Drive
  • Suite 300
  • Durham, NC 27709
  • support@dzone.com
  • +1 (919) 678-0300

Let's be friends:

DZone.com is powered by 

AnswerHub logo