How The Unicorn Project Aligns with The Phoenix Project

By Mark Miller on October 18, 2019 books

2 minute read time

In this podcast Gene Kim, author of The Phoenix Project, discusses his new book, The Unicorn Project. Gene talks about the overlap in storylines and why he chose to speak for software developers.
Read More...

DevSecOps for a Dollar or Less

By Derek Weeks on October 07, 2019 OWASP

3 minute read time

The DevSecOps Maturity Model (DSOMM) helps you analyze your organization's development pipeline to see where you need to improve.
Read More...

Sonatype Hosts Global Gatherings of DevSecOps Leaders and Innovators

By Katie McCaskey on October 04, 2019 thought leaders

4 minute read time

October is dedicated to intimate gatherings of DevSecOps professionals, thought leaders, and decision makers in cities across North America and Europe.
Read More...

It Pays to Discover Sonatype

By Katie McCaskey on October 03, 2019 open source governance

3 minute read time

Karthik Loganathan and Giri Rao of Discover explain how the financial services company benefits from Sonatype's open source license management platform.
Read More...

Advancing Application Delivery

By Derek Weeks on September 17, 2019 AppSec

3 minute read time

Swati Shah of US Bank describes the steps required to implement Continuous Delivery in a regulated environment.
Read More...

New Micro Focus, Sonatype Partnership Provides 360 Degree View of AppSec

By Michelle Dufty on September 11, 2019 AppSec

2 minute read time

The need to understand both custom and open source code, in a holistic way, is exactly why Micro Focus and Sonatype have come together in partnership.
Read More...

The Three R’s of Software Supply Chains: Reject, Replace, and Respond

By Curtis Yanko on September 09, 2019 devops best practices

7 minute read time

OWASP A9 has been around for over 6 years now. These three R's helps enterprise security manage their software supply chains: Reject, Replace, Respond.
Read More...

Security Should Stop Being a Drag

By DJ Schleen on September 06, 2019 deployment

3 minute read time

An application should withstand automated, manual, or user testing. Security vulnerabilities, although extremely important, are in reality non-functional.
Read More...

DevSecOps & Chaos Engineering: Knowing the Unknown

By Derek Weeks on September 04, 2019 software testing

2 minute read time

Aaron Rinehart (@aaronrinehart) dives into chaos engineering: what it is, why you need it, and how you can implement it in your organization.
Read More...