BoxBoat Announces DevSecOps Managed Services Momentum with their BoxOps Platform
by Tim Hohman
| Monday, Apr 12, 2021
| BoxOps DevSecOps
Bethesda, MD – BoxBoat Technologies (BoxBoat), a premier DevSecOps and digital transformation consultancy, today announced that it is realizing significant Managed Services revenue growth driven by greater customer adoption of its BoxOps platform. This mirrors the growth that BoxBoat sees in the adoption of DevOps and cloud native technologies by commercial companies and government agencies across the world.
BoxOps is BoxBoat's DevSecOps managed service platform. BoxOps is a managed Kubernetes offering deployed in your cloud environment, build on top of industry-leading tools such as Rancher, GitLab, Jenkins, Vault, and Harbor.
AWS System Manager: my experience as an Ansible user
by Aldo Perez
| Thursday, Mar 25, 2021
| AWS System Manager Ansible DevSecOps
Being a devops engineer in this day in age is demanding. There are so many technologies that we must learn/know in order to get software tested and deployed faster and safer than ever before. There is always a new tool that we “need” to learn, as it will magically solve all our problems. One of my recent experiences with an unfamiliar tool was with AWS Systems Manager, also known as SSM.
Building Internal Cloud-Native Platforms with Product Thinking
by Faheem Memon
| Wednesday, Feb 3, 2021
| Kubernetes Cloud-Native DevSecOps
In line with the findings reported in the current State of the DevOps Report 2020, organizations such as Apple, Spotify, Eventbrite, and others have been showcasing their internal cloud-native platforms at recent KubeCon events. These organizations have mature DevOps practices and provide compelling self-service platforms to their internal customers that are built with product thinking and backed by end-to-end automation. At BoxBoat, we engage with our clients at different points in their cloud-native or DevSecOps adoption journey, and we believe that most of the foundational ideas, especially product thinking, should be adopted early in the process.
Improving Your Security Posture on the Containerization Journey
by David Widen
| Tuesday, Jan 12, 2021
| DevSecOps GitLab
Building a security-focused culture A DevOps transformation is a massive organizational change with implications for everything about how team members communicate and collaborate. It can also be an opportunity for organizations to integrate security into their applications’ lifecycles at every stage and move security teams from being a roadblock to being a strategic development partner. Here’s how organizations can use the DevOps transformation to improve their approach to security.
Adjust incentives People will focus on the things that they are incentivized to care about and are evaluated on.
Safeguarding the World from the SolarWinds Hack and Future Supply Chain Attacks
by Cole Kennedy, Andrés Vega
| Monday, Dec 14, 2020
Over the weekend, FireEye discovered an active threat (SOLARBURST) from a trojanized software supply chain. CISA has issued an emergency directive to remove SolarWinds from United States Department of Defense IT systems. Supply chain compromises are becoming a frequent occurrence, and this does not come as a surprise to us; as leading practitioners at BoxBoat and VMware, we understand the threat vector and the widespread damage a release compromise can have, and for that reason, we urge the need for Secure Software Supply Chain (SSSC)