Sonatype Selected by Equifax to Support OS Governance Press Release

blog-logo Sonatype Blog

Derek Weeks

Derek serves as vice president and DevOps advocate at Sonatype and is the co-founder of All Day DevOps -- an online community of 65,000 IT professionals.

26% Acknowledge a Web Application Breach in 2019

By Derek Weeks on February 12, 2019 Post security/devsecops

Early this morning news broke that 620 million account details stolen from hacked websites were up for sale on the dark web.  The scale of the stolen

Read More...

Introducing Sonatype's Latest Release: Our Logo

By Derek Weeks on January 28, 2019 News and Views

As Sonatype’s technology and organization have rocketed forward over the years, we noticed that along the way, our i-ching logo’s design fell behind the

Read More...

To Succeed, DevSecOps Must Actually Include DevOps

By Derek Weeks on January 07, 2019 Nexus User Conference

Before implementing any DevSecOps tools, you have to embrace that DevSecOps is disruptive to the entire security tool landscape. Too many tools are just

Read More...

You Can't Manage What You Can't See: Open Source Governance Starts with Visibility

By Derek Weeks on December 17, 2018 open source goveranance

The former CIO for the IRS appeared on television this past weekend to discuss the recent House report on the Equifax breach published by the Energy and

Read More...

Equifax was 100% preventable -- But 18,000 others at risk

By Derek Weeks on December 17, 2018 OSS governance

Earlier today, Sonatype's Bill Karpovich appeared on Fox Business News to discuss the recent House report on the Equifax breach published by the Energy and

Read More...

The Path of DevOps Enlightenment for Infosec

By Derek Weeks on November 20, 2018 Nexus User Conference

Security is in crisis.  Can security, as an industry, rise to the demands of DevOps? Is the DevOps culture able to handle security and all of its baggage?

Read More...

A DevSecOps Maturity Model in 7 Words

By Derek Weeks on November 04, 2018 devsecops

A few weeks ago, I delivered a lightning talk (5 minutes, 20 slides, auto-advancing every 15 seconds) at DevOps Enterprise Summit.  

Read More...

5 Quick Wins for Securing Continuous Delivery

By Derek Weeks on October 04, 2018 CI/CD

“DevOps is Agile on steroids - because Agile isn’t Agile enough.”

Read More...

A DevSecOps Journey at a Dutch Bank

By Derek Weeks on October 03, 2018 devsecops

In many ways, their story is one we’ve heard before. Their struggles showed the need for change: long lead times for software delivery; software quality

Read More...