Trustless Security in Practice

It’s not an overstatement that in today’s world, it’s dangerous to expose software services to the public without robust security…

Introducing KubiScan

Kubernetes permissions are built with role-based access controls (RBAC), which open up potential risks and need to be carefully controlled. ...

On Delivering Quality

I had the pleasure of recently eating dinner at Kitchen Market, a contemporary fusion restaurant in Tel Aviv’s port Namal....

Security Islands

security island ilustration
The last decade has been an exciting time for the tech industry, with the advent of collaborative business practices like...

In Pursuit of Performance 

Fast software is satisfying to use, less costly to operate, and responds better to scale. Yet trying to improve the...

Making Ruby Yours

Pulling at a loose thread One day I noticed an inconsistency as I was joining together lists of words. Consider...

Kubernetes Authentication with Conjur

One of the biggest challenges in containerized environments like Kubernetes is the secure distribution of credentials and other secrets needed...

Microservices First

Martin Fowler’s popular article on microservices contains this advice: Going directly to a microservices architecture is risky, so consider building...

DevOps Security at Scale

This is the sixth and final blog post in a series discussing how high-performing DevOps teams build secure systems at scale….

DevOps Security at Scale

This is the fifth blog post in a series discussing how high-performing DevOps teams build secure systems at scale. If…

Securing Puppet With Conjur

Configuring servers by hand is a costly and error-prone endeavor that increases in difficulty as the number of servers to...

Understanding Conjur Policy

If this article is the first time you’re hearing about CyberArk Conjur, you’ll probably want to read some of the...

Securing Ansible SSH Keys

Managing the SSH keys Ansible uses to connect to remote machines can be challenging. Placing keys on the Ansible Controller...

DevOps Security at Scale

  This is the fourth blog post in a series discussing how high-performing DevOps teams build secure systems at scale….

DevSecOps is an Abomination!

Dr. Frankenstein’s monster is one of the most hated and misunderstood monsters of all time. Frankenstein brought his creation into...

DevOps Security at Scale

  This is the third blog post in a series discussing how high-performing DevOps teams build secure systems at scale….

DevOps Security at Scale

  This is the second blog post in a series discussing how high-performing DevOps teams build secure systems at scale….

The Secure Task Runner

Even if you’ve never heard of Jenkins, you might be benefiting from it already: many companies and open source software...

DevOps Security at Scale

This is the first installment in a series of blog posts on this topic. Years have passed since the software…

Untangling Jenkins

  Our Jenkins cluster had become a paralyzing mass of jobs, executor dependencies, and general complexity, not what you want...