Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

Automate or Die (RSA 2016)

DZone's Guide to

Automate or Die (RSA 2016)

Check out this quick interview with Adrian Sanabria of 451 Research about how automation is key to maintaining sustainable security.

· DevOps Zone
Free Resource

Download “The DevOps Journey - From Waterfall to Continuous Delivery” to learn learn about the importance of integrating automated testing into the DevOps workflow, brought to you in partnership with Sauce Labs.

Image title

"Most companies out there are having trouble with resources," said Adrian Sanabria (@sawaba), Senior Security Analyst, 451 Research, who realizes throwing more bodies or money at an ever-growing security problem simply isn’t sustainable.

The solution is to automate, said Sanabria, or die. Sure, he’s aware most people are nervous about automation, but it’s necessary. The issue is securing your business. And, the attackers aren’t going to wait.

"Email is not a good API," said Sanabria in our conversation at the 2016 RSA Conference in San Francisco. The standard systems we have in place for securing, chains of human actions (e.g., downloading patches), and human-to-human commands (e.g., assigned tasks) have too many fail points and eat up far too much time.

APIs are the wave of the future, said Sanabria. We need tools and people who can automate things that integrate with all new technologies.

Sanabria is not lost on the obvious complications.

"There’s a constant balance between risk and disruption to the business, or disruption to the users, that you’re going to have to balance with automation," he said.

To start, look for the easy wins, such as compliance, said Sanabria.

It’s not agile IT. It’s not DevOps. It’s just security, added Sanabria. This is the new paradigm of security and that’s how we all have to address it. Automation is key to maintaining security.


Originally posted on CloudPassage

Discover how to optimize your DevOps workflows with our cloud-based automated testing infrastructure, brought to you in partnership with Sauce Labs

Topics:
security ,automation ,devops

Published at DZone with permission of Tatiana Crawford, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

THE DZONE NEWSLETTER

Dev Resources & Solutions Straight to Your Inbox

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.

X

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}